Go to homepage
Wishlist
Shopping cart

Privacy Policy of LUIBAN GmbH (Status: January 2026)

Below we inform you about the processing of personal data by LUIBAN GmbH in accordance with the General Data Protection Regulation (GDPR). If you have any questions, you can contact us at any time at the address provided in Section 2.

1. Overview

Data processing by LUIBAN GmbH essentially falls into two categories:

  • Contract Processing: We process data required to fulfill your purchase. This includes the transfer of data to logistics partners (e.g., DHL) and payment service providers (e.g., Stripe, PayPal).
  • Website Optimization & Marketing: When visiting our website, technical data is exchanged to ensure the site is secure and user-friendly, as well as to perform anonymized analyses (subject to your consent).

2. Name and Contact Details of the Controller

Responsible Controller: LUIBAN GmbH, Rosa-Luxemburg-Str. 28, 10178 Berlin, Germany.
Email: info@luiban.com. Website: www.luiban.com

3. Details on Data Processing

3.1 Visiting the Website

When visiting our website, log files (IP address, date, browser type) are automatically saved. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in security and stability). The data is deleted after 90 days.

3.2 Contract Processing and Payment Services

To fulfill the purchase contract (Art. 6(1)(b) GDPR), we process your name, address, email, and payment data.

3.2.1 Shipping via DHL

We pass your address data to DHL (Deutsche Post AG). We only transmit your email address for parcel notifications if this is necessary for contract execution or based on your legitimate interest in shipment tracking.

3.2.2 Payment Service Provider Stripe

If you choose a payment method provided by Stripe, the payment data you enter will be transmitted to Stripe (Stripe Payments Europe Ltd., Ireland). Stripe acts partly as an independent controller. Stripe may process data for identity verification and fraud prevention. Details can be found in the Stripe Privacy Policy.

3.2.3 Payment Service Provider PayPal

When paying via PayPal, we pass your order data to PayPal (Europe) S.à r.l. et Cie, S.C.A., Luxembourg. PayPal reserves the right to carry out a credit check. Mathematical-statistical procedures (score values) are used for this purpose. Details can be found here: PayPal Privacy Policy.

3.3 Advertising and Newsletter

We use your data for direct marketing purposes (Art. 6(1)(f) GDPR), provided you have not objected. You can object to the use of your data for advertising purposes at any time.

3.4 Online Presence and Analysis

3.4.1 Cookies

We use technically necessary cookies (session cookies) and (if you consent) analysis cookies. You can deactivate cookies in your browser settings at any time.

3.4.2 Google Analytics

We use Google Analytics for web analysis. IP addresses are anonymized. Since data may be transferred to the USA, this is done on the basis of Standard Contractual Clauses and the EU-U.S. Data Privacy Framework.

3.4.3 Own web analytics (LUIBAN Analytics)

In addition to Google Analytics, we use our own, self-hosted analytics tool to better understand the use of our website and to improve our services. The following data is collected:

  • Page views: URL, page title, time on page, scroll depth
  • Technical data: Screen resolution, browser window size, browser language
  • Interactions: Clicks on purchase buttons and marked elements
  • Product views: Which product pages are visited (product name, price)
  • Referral: Referring URL and UTM campaign parameters

The data is stored on our own server in Germany (Hetzner, Falkenstein) and is not shared with third parties. IP addresses are pseudonymised before storage (daily rotating hash). No cookies are set; session assignment is based solely on your browser's session storage and ends when you close the browser tab.

Logged-in customers: If you are logged into your customer account, your customer number is additionally recorded in pseudonymised form (one-way hash) in order to recognise returning visits across multiple sessions. Re-identification is possible only by us and serves to improve our product range and service.

The legal basis is Art. 6(1)(f) GDPR (legitimate interest in optimising our online shop). You may object to this data collection at any time by contacting us at the address set out in section 2.

3.5 Recipients outside the EU

Some of our service providers (e.g., Google, Stripe) are headquartered in the USA. We ensure through Standard Contractual Clauses of the EU Commission that an adequate level of data protection is maintained.

4. Your Rights

You have the right to access, rectification, erasure, and restriction of processing of your data, as well as the right to data portability and objection.

Presentation options

Zoom
%
Font size
px
Line height
Letter spacing
px
Wir nutzen Cookies!
Wir nutzen Cookies, um Ihren Einkauf zu verbessern und unseren Shop weiterzuentwickeln. Weitere Informationen finden Sie in unserer Datenschutzerklärung.