Contact

Email: info@heelsfit.com

Responsible for content according to § 18 (2) MStV

CRISCHA, Obere Hauptstr. 10, 78532 Tuttlingen, Germany

Liability for content

As a service provider, we are responsible for our own content on these pages in accordance with § 7 (1) DDG and general laws. Pursuant to §§ 8 to 10 DDG, however, we are not obliged as a service provider to monitor transmitted or stored third-party information or to investigate circumstances that indicate illegal activity. Obligations to remove or block the use of information under general laws remain unaffected.

Liability for links

Our website contains links to external third-party websites whose content we have no control over. Therefore, we cannot accept any liability for this third-party content. The respective provider or operator of the linked pages is always responsible for their content. If we become aware of any legal infringements, we will remove such links immediately.

Affiliate disclosure

This website contains affiliate links, including links to the Amazon Associates Program. As an Amazon Associate, we earn from qualifying purchases. This does not result in any additional cost for you.

Copyright

The content and works on these pages created by the site operators are subject to German copyright law. Duplication, processing, distribution and any kind of use outside the limits of copyright law require the written consent of the respective author or creator.

1. Controller

The controller responsible for the processing of personal data on this website is:

CRISCHA, Obere Hauptstr. 10, 78532 Tuttlingen, Germany
Email: info@heelsfit.com

2. General information on data processing

We process personal data of our users only to the extent necessary to provide a functional website and our content and services. Processing generally takes place only with the user's consent (Art. 6 (1) lit. a GDPR) or where another legal basis applies, in particular Art. 6 (1) lit. b (contract), lit. c (legal obligation) or lit. f (legitimate interests) GDPR.

3. Access data / server log files

When you visit our website, our hosting provider automatically collects information that your browser transmits (so-called server log files). This includes in particular: IP address (truncated), date and time of the request, content of the request (URL), access status / HTTP status code, amount of data transferred, referrer URL, browser, operating system and language. Processing is carried out on the basis of Art. 6 (1) lit. f GDPR for the purpose of stable and secure operation of the website. The log files are deleted after a maximum of 30 days, unless they are needed to investigate security incidents.

4. Hosting

This website is hosted via Lovable Cloud. Within the scope of hosting, technically required data (e.g. IP address, browser data) is processed. The legal basis is Art. 6 (1) lit. f GDPR (legitimate interest in a stable web presence).

5. Style Advisor – photo upload & recommendations

When you use our Style Advisor, you may voluntarily upload a photo and provide information about your style, the occasion and, optionally, an email address. This data is processed for the following purposes:

• Providing a personalized heels recommendation based on your inputs.
• Storing your inputs in our database to improve the quality of our service and to display your recommendation.
• Optional: contacting you by email if you have provided an email address.

The legal basis is your consent in accordance with Art. 6 (1) lit. a GDPR, which you grant by submitting the form. You can withdraw your consent at any time with effect for the future by sending us a short message at info@heelsfit.com. In this case, we will delete your data without undue delay, provided no statutory retention obligations apply.

Note: please do not upload any photos showing identifiable third parties without their consent.

6. Recipients / processors

To provide our service, we use carefully selected providers with whom data processing agreements pursuant to Art. 28 GDPR are in place, in particular:

• Hosting & database: Lovable / Supabase (EU servers)

Any transfer to third countries outside the EU/EEA only takes place if necessary to provide the service and on the basis of appropriate safeguards (e.g. EU Standard Contractual Clauses).

7. Affiliate links (Amazon & other partners)

We use affiliate links, including the Amazon Associates Program. If you click such a link and complete a purchase, we receive a commission. When you click an affiliate link, you will be redirected to the respective provider's website; from that point on, their privacy policy applies. Cookies may be set there and data may be processed in order to attribute the purchase to a commission. The legal basis is Art. 6 (1) lit. f GDPR (legitimate interest in financing this free service).

8. Cookies & local storage

This website uses only technically necessary storage mechanisms (e.g. localStorage for session management in the admin area). Tracking or marketing cookies are not set without your consent.

9. Your rights

Under the GDPR, you have in particular the following rights:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR)
• Right to withdraw consent (Art. 7 (3) GDPR)
• Right to lodge a complaint with a supervisory authority (Art. 77 GDPR), e.g. the State Commissioner for Data Protection and Freedom of Information of Baden-Württemberg, Germany

To exercise your rights, an informal message to info@heelsfit.com is sufficient.

10. Storage period

We store personal data only for as long as necessary for the respective purposes or as required by statutory retention periods. After that, the data is deleted or anonymized.

11. SSL/TLS encryption

For security reasons, this website uses SSL or TLS encryption. You can recognize an encrypted connection by the address bar of your browser (https://) and the lock icon.

12. Currency of this policy

This privacy policy is currently valid. As our website evolves or legal requirements change, it may become necessary to amend it. The latest version is always available on this page.