PRIVACY & LEGAL POLICY

1.1 Introduction and Contact Information

We are pleased that you are visiting our website and thank you for your interest. This policy informs you about the handling of your personal data when using our website. Personal data are any information that can identify you personally.

1.2 Responsible parties for data processing under the EU General Data Protection Regulation (GDPR):
Sophie Schiller & Noémi Zak
Schwedter Strasse 16, 10119 Berlin, Germany
Email: info@affectmag.com

The responsible parties decide alone or jointly with others on the purposes and means of processing personal data.

2. Data Collection During Website Visits

When you use our website purely for information (without registering or providing other information), we only collect data that your browser transmits to our server (“server log files”). This includes:

  • Visited website pages

  • Date and time of access

  • Amount of data transmitted (in bytes)

  • Referring website

  • Browser and version

  • Operating system

  • IP address (possibly anonymized)

This processing is based on Art. 6(1)(f) GDPR, as it is necessary to ensure the stability and functionality of the website. No personal data collected here is shared with third parties. Server logs may be reviewed retrospectively only if there are concrete indications of illegal use.

3. Hosting & Content Delivery

We use Shopify for hosting and website display. Data may also be transferred to:

  • Shopify International Limited, Victoria Buildings, Dublin 4, Ireland

  • Shopify Inc., Ottawa, Canada

  • Shopify Data Processing (USA) Inc., Shopify Payments (USA) Inc., Shopify (USA) Inc.

All data collected is processed on the provider’s servers. We have a data processing agreement ensuring protection of visitor data and prohibiting unauthorized third-party access. Transfers to Canada rely on the EU adequacy decision; transfers to the USA rely on Standard Contractual Clauses of the European Commission.

4. Contact Forms and Email Communication

If you contact us via contact form or email, your personal data will only be processed to handle your request. The legal basis is Art. 6(1)(f) GDPR (legitimate interest) or Art. 6(1)(b) GDPR if the communication relates to a contract. Your data will be deleted once the inquiry is fully processed, unless legal retention obligations exist.

5. Customer Accounts

When you create a customer account, we collect and process personal data as required for contract fulfillment (Art. 6(1)(b) GDPR). Required fields are indicated in the registration form.

You may delete your account at any time by contacting the responsible parties above. After deletion, your data will be removed, provided all contracts are fully executed and no legal retention periods or legitimate interests require continued storage.

6. Newsletter and Direct Marketing

6.1 Newsletter Subscription

By subscribing to our newsletter, you agree to receive information about our offerings. Only your email address is required; other data is optional.

We use a double opt-in procedure. Your IP address, date, and time of subscription are recorded for verification and protection against misuse. You may unsubscribe at any time via the link in the newsletter or by contacting us directly. After unsubscribing, your email will be deleted unless you have consented to further use.

6.2 Direct Marketing to Existing Customers

If you provide your email for purchases or services, we may send offers for similar products or services, based on our legitimate interest (Art. 6(1)(f) GDPR) without separate consent. You may object at any time without costs, and marketing communications will cease immediately.

7. Order Processing

For contract fulfillment, including shipping and payment, personal data is shared with shipping companies and banks only as necessary (Art. 6(1)(b) GDPR).

If we owe updates for digital goods or services, your contact data will be used solely for these updates (Art. 6(1)(c) GDPR).

7.1 Cancellation of Recurring Contracts

Consumers with subscription contracts may cancel electronically according to applicable deadlines. Data required for identification and confirmation of the cancellation will be processed (Art. 6(1)(b) and (c) GDPR) solely for this purpose.

8. Rights of Data Subjects

Under the GDPR, you have the following rights:

  • Access (Art. 15)

  • Correction (Art. 16)

  • Deletion (Art. 17)

  • Restriction of processing (Art. 18)

  • Notification (Art. 19)

  • Data portability (Art. 20)

  • Withdraw consent (Art. 7(3))

  • Complaint (Art. 77)

You may object to data processing based on legitimate interest at any time (Art. 21 GDPR). Processing will stop unless we have overriding legitimate grounds or it serves legal claims.

9. Data Retention

  • Data based on consent: stored until withdrawal.

  • Data for contracts: stored until legal retention periods expire.

  • Data for legitimate interests: stored until objection or overriding legitimate reasons no longer exist.

10. Liability for Content

We take care in creating editorial content. Liability for our content is per §7 TMG and general laws. We are not obliged to monitor third-party content, but will remove any illegal content once known.

11. Liability for Links

Our site may contain links to third-party websites. We are not responsible for external content. Links will be removed immediately upon notice of illegality.

12. Copyright

All content by AFFECT Magazine is protected under German copyright law. Reproduction or commercial use requires written permission. Third-party content is clearly marked. Report copyright infringements and we will remove the content immediately.

13. Security

We use appropriate technical and organizational measures to protect your personal data. Complete security during transmission (e.g., email) cannot be guaranteed.
14. Cookies & Tracking

Our website uses cookies and similar technologies to ensure functionality and to analyze traffic.Essential cookies are always active. Non-essential cookies (e.g., for analytics or marketing) are only used if you consent.
You can manage or withdraw your consent at any time via your browser settings or the cookie preference panel on our website.
By continuing to use our site without changing settings, you consent to the use of cookies as described.

15. Data Transfers to Third Countries

Some of our service providers, such as Shopify, process data outside the European Economic Area (EEA), including in the USA and Canada.
In these cases, Standard Contractual Clauses approved by the European Commission are used to ensure an adequate level of data protection in compliance with GDPR.