green.one® – ETHERKRAFT UG (haftungsbeschränkt)
ETHERKRAFT UG (haftungsbeschränkt)
Trading name: green.one®
Mergenthalerallee 73–75, 65760 Eschborn, Germany
Privacy Contact: [email protected]
Commercial Register: HRB 138552, District Court Frankfurt am Main
VAT ID: DE365337460
This Privacy Policy applies to the website and online shop operated under green.one® and all associated functions (payments, shipping, customer account, newsletter, email marketing, social links), including the use of a Content Delivery Network (Cloudflare).
Personal data is processed in strict accordance with the GDPR, and in particular the principle of storage limitation: data is retained only for as long as necessary for the stated purposes or as required by law. Thereafter it is securely deleted or irreversibly anonymised.
We process your data for the following purposes on the legal bases indicated:
| Purpose | Legal Basis (GDPR) |
|---|---|
| Operating the shop, contract performance (orders, payments, shipping) | Art. 6(1)(b) |
| Compliance with legal obligations (e.g. statutory retention for tax purposes) | Art. 6(1)(c) |
| Legitimate interests (IT security, fraud prevention, CDN, anonymised web analytics) | Art. 6(1)(f) |
| Your explicit consent (newsletter subscription, email marketing, social media plugins) | Art. 6(1)(a) |
To enhance the security and performance of our website, we use the Content Delivery Network (CDN) provided by Cloudflare. Each time you access the site, technical data including your IP address is transmitted to Cloudflare servers. This serves our legitimate interest in operating a secure and efficient website (Art. 6(1)(f) GDPR).
To process your order, we handle your personal, contractual and contact data. If you create a customer account, your data is stored to simplify future orders. For payment and delivery, we work with external service providers — Viva.com for payments and DHL for shipping — to whom the necessary data is transmitted.
Your privacy is our priority. Especially in the sensitive CBD sector, we place great importance on maximum discretion. We therefore completely refrain from using external analytics tools such as Google Analytics or similar services that transfer data to the US. Instead, we use Matomo, a privacy-friendly open-source solution operated exclusively on our own private server of ETHERKRAFT UG in Germany.
Processing is based on our legitimate interest in improving our website without compromising your privacy (Art. 6(1)(f) GDPR).
For our newsletter and internal email marketing, we use Mautic, an open-source marketing automation platform. Mautic is operated exclusively on ETHERKRAFT UG’s own private server in Germany — fully owned and under our sole control.
If you have any questions about data stored in connection with the newsletter, please contact: [email protected].
When you contact us via our form or by email, we process your information solely to handle your enquiry (Art. 6(1)(b) or (f) GDPR). The data will not be used for advertising purposes unless you have provided separate consent.
Retention periods are determined according to purpose and legal requirements. Once the purpose has been fulfilled or the retention period has expired, data is routinely deleted, anonymised, or pseudonymised. Specific periods arise in particular from statutory provisions (e.g. 10 years for tax-relevant documents under § 147 German Fiscal Code / § 257 German Commercial Code) and technical requirements (e.g. short-term storage of security log files).
Under the GDPR, you have comprehensive rights regarding your personal data:
To exercise your rights, please contact us at the email address below.
For all enquiries regarding your data and to exercise your rights, please contact:
Email: [email protected]
