Privacy Policy

1. Introduction

LOLLYS LAUNDRY ApS (hereinafter "Lollys Laundry", "we", "us", and "our") places great importance on your data security and is continuously working to improve the conditions for handling, processing, and storing your data. In this Privacy Policy ("Privacy Policy"), we describe how we process the data we collect when you visit lollyslaundry.de ("Website") and the data you provide us for the purposes specified herein.

2. Controller for Data Processing:

Lollys Laundry is the entity responsible for data processing in connection with the purposes described in this Privacy Policy.

If you wish to exercise any of your rights under Section 6 and its subsections or have questions about the Privacy Policy, you can contact us using the following contact details:

LOLLYS LAUNDRY ApS
CVR No. 31152593
C/O Baghuset
Address: 
Vermundsgade 19, 1st floor, 2100 Copenhagen Ø
Email: info@lollyslaundry.com
Phone: +45 3581 5000

3. Collection of Personal Data

3.1 Visitors to the Website without Using Services

When you visit our Website without using our services (e.g., without placing an order or creating an account), we process the following data:

  • Technical Information: This includes your IP address (including your network location), computer/device information, operating system, time zone settings, and the browser you are using. This information is collected through cookies, among other things.
  • Information about Your Behavior and Website Usage: We collect, for example, information about which products you click on and add to your shopping cart.
  • Contact Information (when using the contact form): Name, email address, phone number, and your message to us.

Purpose of Processing:

  • Creation of statistics to analyze how visitors use the Website and optimize the user experience and functionality of the Website.
  • Improving the security of the Website.
  • Providing product recommendations that might be of interest to you.
  • Conducting marketing activities for our products, including via Facebook and Google.
  • Enabling interactive features like our contact form.

Legal Basis for Processing:

  • Our legitimate interests (Article 6(1)(f) GDPR) or your consent (Article 6(1)(a) GDPR and §3 of the Cookie Policy). For further information regarding the legal basis for cookies, see Section 2.2 of our Cookie Policy.

3.2 Cookies

We use cookies to analyze how our Website is used and to make your visit as easy and pleasant as possible. Functional cookies are necessary for the proper functioning of our online store, such as storing items in the shopping cart and processing orders.

In addition, we use cookies for marketing and analytical purposes to provide personalized advertisements and create statistics that help us improve our Website and offers.

For more information about how we use cookies, please see our Cookie Policy.

3.3 Visitors to Our Social Media Profiles

When you visit our social media profiles (e.g., Instagram, Facebook, TikTok), we process data to:

  • Provide you with a positive experience and ensure that the content is relevant and engaging.
  • Provide interactive features such as chats and comment sections. We ask that you maintain a respectful and constructive tone. In case of inappropriate behavior, we reserve the right to remove content.

Legal Basis for Processing:

Our legitimate interests (Article 6(1)(f) GDPR).

3.4 Customers Who Place Orders

When you place an order on our Website, we process the following data:

  • Contact Information: Name, address, email address, phone number.
  • Payment Information: Payment method, transaction details (Note: We do not store full credit card details).
  • Order Details: Ordered products, delivery address, billing address.

Purpose of Processing:

  • Processing and delivering your order.
  • Communication with you regarding your order.
  • Fulfillment of legal obligations, such as those related to accounting and taxes.

Legal Basis for Processing:

  • Performance of the contract (Article 6(1)(b) GDPR).
  • Compliance with legal obligations (Article 6(1)(c) GDPR).

4. Disclosure of Data to Third Parties

We will only disclose your personal data to third parties in the following cases:

  • Service Providers: We work with selected service providers who perform services on our behalf, such as shipping companies, payment service providers, and IT service providers. These service providers may only use your data in accordance with our instructions and not for their own purposes.
  • Legal Obligations: If we are required to do so by law, such as in response to requests from law enforcement agencies.

4.1 Transfers to Third Countries

Your personal data is generally processed within the European Economic Area ("EEA"). However, in certain cases, it may be necessary to transfer data to countries outside the EEA if we use services from international providers.

If we transfer personal data to a third country that is not recognized as safe by the European Commission (without an adequacy decision), we ensure that appropriate safeguards are in place. Typically, we use the European Commission's Standard Contractual Clauses to ensure an adequate level of data protection comparable to that of the EU/EEA.

For further information about our data transfers to third countries or to obtain a copy of the relevant safeguards, you can contact us using the contact details provided in Section 2.

4.2 Data Sharing with Service Providers

To offer our services and process orders, we work with selected service providers. These may process personal data on our behalf but are only permitted to use it for the purposes we have set.

Our service providers include:

Payment Service Providers: PayPal, Klarna, Stripe

Shipping Service Providers: GLS, UPS

IT and Hosting Providers: Cloud solutions and web hosting providers

Marketing and Analytics Tools: Google (Google Analytics, Google Ads), Meta (Meta Pixel, Facebook Ads)

The aforementioned service providers are contractually obligated to handle your data securely and in compliance with applicable data protection laws. Specifically, Google and Meta process data for marketing purposes, such as targeted advertising and collecting website usage data. These service providers may transfer data to countries outside the EEA, such as the USA, where we ensure that appropriate safeguards are in place in accordance with data protection requirements.

5. Data Retention and Deletion

We only store your personal data for as long as necessary to fulfill the purposes for which it was collected or as required by legal retention obligations. Afterward, your data will be deleted or anonymized.

6. Your Rights

You have the right to request information about the personal data we process. Additionally, you have the right, under certain conditions:

  • Right of Access: To request the correction of inaccurate or incomplete personal data.
  • Deletion: To request the deletion of your personal data if it is no longer necessary for processing or if the processing is unlawful.
  • Restriction of Processing: To request the restriction of the processing of your personal data, e.g., if you dispute the accuracy of the data or if the processing is unlawful.
  • Data Portability: To request that your personal data be provided in a structured, commonly used, and machine-readable format and to transmit that data to another controller, where technically feasible.
  • Objection: To object to the processing of your personal data, particularly if the processing is based on our legitimate interests.
  • Withdrawal of Consent: To withdraw any consent you have provided for the processing of personal data at any time, with effect for the future.

How to exercise your rights:
To exercise one or more of your rights, you can contact us at any time using the contact details provided in Section 2. We will process your request as quickly as possible and in accordance with legal requirements.

Additionally, you have the right to file a complaint with a data protection authority. You can do so by contacting the Danish Data Protection Authority at:
Datasynet, Carl Jacobsens Vej 35, 2500 Valby, Denmark.

7. Data Security

We implement technical and organizational measures to protect your personal data from loss, unauthorized access, misuse, or disclosure. This includes modern security solutions such as encrypted connections (e.g., SSL/TLS) and access restrictions.

8. Links to Other Websites

Our Website may contain links to external websites or embedded content. We are not responsible for the content of these external websites or their practices regarding the handling of personal data. When visiting these websites, we recommend reviewing their privacy policies and other relevant provisions.

8. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time to comply with changing legal or technical requirements. We will inform you of significant changes in a timely manner, such as by posting a notice on our Website or by email, as required by law.

Last updated: 16.01.2025