With regard to the personal data provided by a customer/visitor to www.custom-coins.co.uk (“our website”), derTaler GmbH, Friedrichstr. 114a, 10117 Berlin, Germany (hereinafter: “CustomCoins”) is the responsible entity that collects and processes this data.
We describe below how we consider the privacy of all customers/visitors to this site. CustomCoins values the implementation of lawful data processing that protects your personal data. We are convinced that everyone benefits from a free flow of information if the relevant data is collected and used in a responsible manner.
We inform you about the collection, use and processing of personal data when using our website www.custom-coins.co.uk (hereinafter: “website”). Insofar as information relates exclusively to our website, we expressly point this out.
I. Type, scope and purpose of the collection, processing and use of personal data
We therefore only collect, process and use your personal data in accordance with the following data protection declaration. Personal data in this sense are all individual details about personal or factual circumstances of an identified or identifiable natural person, such as your name, your telephone number or your address.
The use of the services of custom-coins.co.uk is on a voluntary basis. Without the provision of all this data in accordance with sections III.1 to III.4, various services can only be used to a limited extent. For this reason, CustomCoins grants users of these services the highest possible standard of data protection. The collection, processing, storage and use of the generated data is exclusively for the purposes stated here.
In the course of using the services of custom-coins.co.uk, CustomCoins processes and stores usage data that is intended to provide information about how and when users use the service. This includes, above all, log data, which shows when the user has logged into the service.
We use this data to provide you with the requested service. For this purpose, it may be necessary to pass on your personal data to companies that we use or arrange for the provision of the service or the processing of the contract. These are, for example, service providers. They only receive the necessary data from us and are in turn obliged to protect your personal data. We need your e-mail address so that we can confirm all necessary information regarding an order and communicate with you (e.g. for sending an ordered newsletter). External service providers may also be used for services that do not directly serve the provision of services requested by users, such as the implementation of marketing measures, which may have their registered office outside the European Union. In such cases, information is passed on to these companies or individuals in order to enable them to carry out further processing. An extract of the relevant companies can be found in section V. (External service providers incl. information on cookies). The relevant service providers are carefully selected by us, linked by legally compliant contracts and regularly checked. The service providers may only use the data for the purposes specified by CustomCoins.
We observe the principle of purpose-related data use and only collect, process and store your personal data for the purposes you have requested. Your personal data will not be passed on to third parties without your express consent, unless this is necessary for the provision of the service or the execution of the contract. The transfer to state institutions and authorities entitled to receive information will also only take place within the framework of the legal obligations to provide information or if we are obliged to provide information by a court decision.
Insofar as we use data for a purpose that requires your consent according to the statutory provisions, we will ask you for your express consent in each case. You can revoke your consent at any time and/or object to future uses of your data.
CustomCoins does not record or collect personal data made available to us via our website for the purpose of passing it on or selling it to third parties for marketing purposes or for host mailings carried out on behalf of third parties.
CustomCoins ensures the confidentiality and security of this information insofar as it is used in the course of business. Access to this data is restricted and we use technical and organisational security measures to protect the data against loss, misuse and improper disclosure.
We would like to point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
II. Responsible office
The responsible office for the collection, processing and use of personal data within the meaning of the Federal Data Protection Act is:
derTaler GmbH, Friedrichstr. 114a, 10117 Berlin
If you have any questions regarding the processing of your personal data, please contact our data protection officer Christian Hemmrich.
III. Notice for children and young people
It is possible for persons under the age of 18 to make a request, but the products cannot be effectively purchased by the person with limited legal capacity. The consent of the legal representatives is required for this.
The collection, processing, use and storage of data (type, scope and purpose of the collection, processing and use of personal data) only takes place if CustomCoins is legally entitled to do so or the user has expressly consented to this beforehand. The content of the declarations of consent, which can be revoked at any time and are logged by CustomCoins, can be accessed by the user at www.custom-coins.co.uk/privacy-data-protection. The user also has the option to revoke his consent to this data protection declaration at any time. With regard to the deletion of data already generated, point XII. (Blocking and deletion).
V. Data collection for informational use of our website
You can visit our website and obtain information without having to provide any personal details. However, each time you access the CustomCoins pages, usage data is transmitted by the respective internet browser and stored in log files, the so-called server log files. No personal data, with the exception of the data transmitted by your browser or the end device you are using, is collected to enable your visit to our website. The following data is transmitted to CustomCoins:
- IP address
- Date and time of the request
- Time zone difference from Greenwich Mean Time (GMT)
- Content of the request (concrete page)
- Access status/http status code
- Transmitted data volume
- Website (from which the request comes)
- Operating system
- Language and version of the browser software
- Advertising Identifier (IDFA)
The IP addresses of the users are deleted or anonymised after termination of use. In the case of anonymisation, the IP addresses are changed in such a way that the individual details about personal or factual circumstances can no longer be assigned to a specific or identifiable natural person, or only with a disproportionate amount of time, cost and labour. We evaluate these log file data records in anonymised form in order to further improve our offer and make it more user-friendly, to find and correct errors more quickly and to control server capacities. For example, we can track at which times the CustomCoins website is particularly popular and provide the corresponding data volume to guarantee you the fastest possible access.
In addition, cookies are set on your terminal device when you use our website. You can find more information about the cookies used under IX.
VI. Data processing in the context of ordering CustomCoins products
1. data collection and processing upon request of a CustomCoins medal production
For the purpose of requesting a medal order from CustomCoins (“Request”), you voluntarily provide personal information and the following data will be collected, used and processed:
- First and Last Name
- Postal Code
- E-Mail address
- Individual Message
Your data will be passed on to the delivery company commissioned with the delivery of the medals, insofar as this is necessary for the delivery of your postal consignment.
We use this data to fulfil your order in accordance with the contract or to provide you with the requested service. For this purpose, it may be necessary to pass on your personal data to companies that we use or arrange for the provision of the service or the processing of the contract. These are, for example, service providers. They only receive the necessary data from us and are in turn obliged to protect your personal data. We need your e-mail address so that we can confirm receipt of your order and communicate with you (e.g. for sending an ordered newsletter). For services that do not directly serve the provision of services requested by users, such as in the areas of hosting or the implementation of marketing measures, external service providers may be used who may have their registered office outside the European Union. In such cases, information will be passed on to these companies or individuals in order to enable them to carry out further processing. An excerpt of the relevant companies can be found in section IX (External service providers including information on cookies). The relevant service providers are carefully selected by us, linked by legally compliant contracts and regularly checked. The service providers may only use the data for the purposes specified by CustomCoins.
VII. payment service provider
For the processing of payments in the context of the use of our products and services, theTaler uses various payment service providers, which collect, store and process the data in each case:
- Payment by credit card: When paying by credit card, the payment is processed via Stripe by the payment service provider Stripe Payments Europe Ltd, Block 4, Harcourt Centre, Harcourt Road, Dublin 2, Ireland. You can find more information about Stripe’s data protection at https://stripe.com/de/privacy#translation . For the use of this service, Stripe collects, stores and processes your personal data such as your name, address, telephone number and email address as well as your credit card or bank account details. Stripe is solely responsible for the protection and handling of the data collected by Stripe.
CustomCoins uses so-called “cookies” on the website, i.e. text files that are stored on your access device. Cookies are smaller files with text information that are stored on your hard drive while you access the website. Cookies are used on certain pages of our website to track your interests when using the internet. This allows us to understand what is important to you and to better tailor our content to you.
However, cookies also serve to store the preferences of visitors. This allows us to specifically tailor the content of our website to the needs of our customers. We cannot establish a link to customers with the cookies. Cookies are not used to determine the identity of people who merely visit our website. You can deactivate the option to store these cookies at any time in the system settings of your browser and delete existing cookies. Every user can also view the offer without cookies. However, if you do not accept cookies, this may lead to a restriction in the functionality of the website.
IX. Social Plugins
In this context, we would like to point out that theTaler is not liable for any kind of misuse of this personal information by third parties.
In the case of links to social media platforms of third party providers or private individuals, which are managed on separate servers, CustomCoins has no control over the presentation and use of the content provided there. CustomCoins accepts no liability for the accuracy and use of content provided on these servers. Linking to a third party website does not imply any recommendation or endorsement by CustomCoins of the relevant third party or the products and services of the third party provider.
CustomCoins accepts no liability for the storage and/or use of customer data on the servers of third-party providers. We recommend that you familiarise yourself with the privacy policies of the respective third-party providers to which we link.
1. use of Facebook plugins on our website
Plugins of the social network Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) are integrated on our services. You can recognise the Facebook plugins by the Facebook logo or the “Like” button (“Like”) on our page. You can find an overview of the Facebook plugins here: http://developers.facebook.com/docs/plugins/.
When you visit our services and click on the Facebook plugin, a direct connection is established between your browser and the Facebook server. Facebook thereby receives the information that you have visited our site with your IP address. If you click the Facebook “Like” button while logged into your Facebook account, you can link the content of our pages on your Facebook profile. This allows Facebook to associate the visit to our services with your user account. We would like to point out that we, as the provider of the services, have no knowledge of the content of the transmitted data or its use by Facebook. If a user is not a member of Facebook, there is still the possibility that Facebook will find out and store his or her IP address. According to Facebook, only an anonymised IP address is stored in Germany.
If a user is a Facebook member and does not want Facebook to collect data about him or her via this offer and link it to his or her membership data stored on Facebook, he or she must log out of Facebook before visiting the website. Further settings and objections to the use of data for advertising purposes are possible within the Facebook profile settings:
2. use of Facebook pixel on our website
On our website, we use the “Visitor Action Pixel” of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). With its help, we can track the actions of users after they have seen or clicked on a Facebook ad. This allows us to track the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous to us, which means that we do not see the personal data of individual users. However, this data is stored and processed by Facebook, which we inform you about according to our level of knowledge.
Facebook may associate this data with your Facebook account and also use it for its own advertising purposes, in accordance with Facebook’s data use policy
https://www.facebook.com/about/privacy/. You can enable Facebook and its partners to serve ads on and off Facebook. A cookie may also be stored on your computer for these purposes.
Please send us an email to firstname.lastname@example.org if you wish to withdraw your consent.
X. Use of tracking technologies
1. use of Google Analytics and Google Tag Manager on our website
Our website uses Google Analytics and Google Tag Manager, web analytics services provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: “Google”). Google Analytics and Google Tag Manager use “cookies”, which are text files placed on your computer/smartphone, to help the website analyse how users use the site. The information generated by the cookie about your use of our website is usually transmitted to a Google server in the USA and stored there. On our website, however, your IP address is shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area.
Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics and Google Tag Manager will not be merged with other Google data.
For more information, see:
2. use of Double Click by Google on our website
By using our website, you consent to the processing of data about you by Google and to the processing of such data as described above and for the purposes set out above. You can prevent the storage of cookies by selecting the appropriate settings on your browser software.
However, we would like to point out that in this case you may not be able to use all the functions of our websites to their full extent. You can also prevent the collection of the data generated by the cookies and related to your use of the websites to Google as well as the processing of this data by Google by clicking on the following link:
Download and install the browser plug-in available at www.adssettings.google.com/anonymous under the item DoubleClick deactivation extension.
Alternatively, you can deactivate the Doubleclick cookies on the page of the Digital Advertising Alliance under the following link:
3. use of Bing Adds on our website
On our website, we use Bing Ads technology (bingads.microsoft.com), which is provided and operated by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (“Microsoft”). Microsoft sets a cookie on your terminal device if you have accessed our website via a Microsoft Bing advertisement. In this way, Microsoft Bing and we can recognise that someone has clicked on an advertisement, been redirected to our website and reached a previously determined target page (conversion page). We only learn the total number of users who clicked on a Bing ad and were then redirected to the conversion page. Microsoft collects, processes and uses information via the cookie, from which usage profiles are created using pseudonyms. These usage profiles are used to analyse visitor behaviour and are used to display advertisements. No personal information about the identity of the user is processed.
If you do not want information about your behaviour to be used by Microsoft as explained above, you can refuse the setting of a cookie required for this – for example, by using a browser setting that generally deactivates the automatic setting of cookies. You can also prevent the collection of data generated by the cookie and related to your use of the website, as well as the processing of this data by Microsoft, by declaring your objection at the following link: www.choice.microsoft.com/de-DE/opt-out.
For more information on data protection and the cookies used by Microsoft and Bing Ads, please visit the Microsoft website at
4. use of Facebook Custom Audience on our website
The communication tool Website Custom Audiences from Facebook is used on our website. For this purpose, so-called Facebook pixels are integrated on our websites, which mark you as a visitor to our website in anonymised form, i.e. without identifying you as a person. If you are later logged in to Facebook, a non-reversible and therefore non-personal checksum (hash value) from your usage data is transmitted to Facebook for analysis and marketing purposes. This enables Facebook to assign the visit to our pages to your user account. We can use the information obtained in this way to display Facebook Ads. For the Website Custom Audiences product, the Facebook cookie is addressed.
If you do not want information about your behaviour to be used by Facebook Custom Audience, you can set this under your Facebook account via this link: www.facebook.com/ads/website_custom_audiences/.
XI. Retargeting – Use of Google Adwords (Remarketing / Conversion Tracking) on our website
CustomCoins uses the Google Adwords service from Google. Our website uses the remarketing function of Google Adwords. This function is used to present interest-based advertisements to website visitors as part of the Google advertising network. The browser of the website visitor saves so-called “cookies”, text files that are stored on your end device and which make it possible to recognise the user when he or she visits websites that belong to the Google advertising network. On these pages, the user can then be presented with advertisements that relate to content that the visitor has previously accessed on websites that use Google’s remarketing function.
According to its own information, Google does not collect any personal data during this process. However, if you do not wish to use Google’s remarketing function, you can deactivate it by changing the corresponding settings under:
XII Email Newsletter
With our e-mail newsletter we inform you about our offers. If you would like to receive the e-mail newsletter, we require an e-mail address from you. We will only send you our newsletter if you expressly agree to this when opening a customer account. In doing so, we will check whether you are the owner of the given e-mail address or whether its owner agrees to receive the e-mail newsletter.
By subscribing to our newsletter, you agree to receive it and to the procedures described. We send newsletters and emails with promotional information (hereinafter “newsletter”) only with the consent of the recipients or a legal permission.
Our newsletters also contain information about interesting medal projects from the past, new products and production techniques, as well as about CustomCoins itself. This includes references to blog posts, publications, trade fair appearances, events, our services or online presences.
Double opt-in and logging
Registration for our newsletter takes place in a so-called double opt-in process. This means that after registration you will receive an email in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other people’s email addresses.
The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes the storage of the registration and confirmation time, as well as the IP address. Changes to your data stored at CleverReach are also logged.
Use of the “CleverReach” dispatch service provider
The newsletter is sent using “CleverReach”, a newsletter sending platform of the German provider CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany.
The email addresses of our newsletter recipients, as well as their other data described in this notice, are stored on Cleverreach’s servers. CleverReach uses this information to send and evaluate the newsletter on our behalf. Furthermore, CleverReach may, according to its own information, use this data to optimise or improve its own services, e.g. for the technical optimisation of the dispatch and presentation of the newsletters or for economic purposes in order to determine from which countries the recipients come. However, CleverReach does not use the data of our newsletter recipients to write to them itself or to pass it on to third parties.
We trust in the reliability and IT and data security of CleverReach. All CleverReach data centres have undergone independent certifications and audits. They have received DIN ISO/IEC 27001 certification and have been confirmed as a Level 1 service provider for the credit card industry data security standard (DSS/PCI). In addition, they undergo annual SOC 1 audits and have been successfully confirmed at the Moderate level for US government systems and at DIACAP Level 2 for DoD systems. CleverReach uses a TÜV-approved Information Security Management System, which ensures excellent data security and impeccable data protection compliance.
To register for the newsletter, it is sufficient to enter your e-mail address. Optionally, we ask you to enter your first and last name. This information is only used to personalise the newsletter.
Statistical survey and analyses
The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from the CleverReach server when the newsletter is opened. Within the scope of this retrieval, technical information, such as information on the browser and your system, as well as your IP address and the time of the retrieval are initially collected. This information is used for the technical improvement of the services based on the technical data or the target groups and their reading behaviour based on their retrieval locations (which can be determined with the help of the IP address) or the access times.
The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our intention nor that of CleverReach to observe individual users. The analyses serve us much more to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
Online call and data management
Termination / Revocation
You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. Your consent to the sending of the newsletter via CleverReach and the statistical analyses will then expire at the same time. Unfortunately, a separate revocation of the dispatch via CleverReach or the statistical analysis is not possible.
You will find a link to cancel the newsletter at the end of each newsletter.
In accordance with the provisions of the General Data Protection Regulation (DSGVO) applicable as of 25 May 2018, we inform you that the consent to the sending of e-mail addresses is based on Art. 6 para. 1 lit. a, 7 DSGVO as well as § 7 para. 2 no. 3, resp. para. 3 UWG. The use of the dispatch service provider CleverReach, the performance of statistical surveys and analyses as well as the logging of the registration process are based on our legitimate interests pursuant to Art. 6 para. 1 lit. f DSGVO. We are interested in the use of a user-friendly and secure newsletter system that serves our business interests and meets the expectations of users.
XIII. Transfer of personal data abroad
If CustomCoins transfers personal data to countries outside the scope of Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, CustomCoins shall ensure that the recipient of the data guarantees an adequate level of data protection. When transferring data to the USA, CustomCoins will oblige the recipient to observe and comply with the Privacy Shield principles (i.e. to recognise minimum standards in the handling of personal data). In addition, to ensure an adequate level of protection for the recipient of the data, we use the European Union’s model contracts for the transfer of data to other EU countries, as amended from time to time.
XIV. Information, correction, deletion and revocation
You have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing. In addition, you have the right to correction, blocking or deletion of your personal data in the legally regulated cases of § 35 BDSG. CustomCoins points out that in order to authenticate a person, appropriate documents may be requested before information is provided, as personal data may not be released to unauthorised persons.
If you have given your consent to the use of data, you can revoke this consent at any time with effect for the future. The revocation of consent may result in our services no longer being available to you without restriction or the user relationship being terminated. Please note that certain data collection and storage may also be based on a legal basis, irrespective of the existence of consent. In this case, we will discontinue further processing and use of your personal data and delete or block it, unless we are obliged to further processing, in particular further storage, due to legal provisions.
Please direct all requests for information, information questions or objections to data processing by e-mail to email@example.com or in writing to the address given in the imprint.
XV. Amendments to this Directive
CustomCoins may change this privacy statement as necessary. If changes are made to the statement, it may take up to 30 business days for new privacy practices to be implemented. Please visit this page periodically to identify any changes.