Privacy Policy
§ 1 General Information
This Privacy Policy provides detailed information about what happens to your personal data when you visit our website www.crownedbeastart.com.
Any data that allows for your personal identification is considered personal data.
When processing your data, we strictly adhere to legal requirements, in particular the General Data Protection Regulation (“GDPR”).
It is very important to us that your visit to our website is completely secure.
§ 2 Data Controller
The responsibility for the collection and processing of personal data on this website lies with the following entity under data protection law:
Nico Sießegger
c/o Block Services
Stuttgarter Str. 106
70736 Fellbach
Germany DE
Email: contact@crownedbeastart.com
Hosting and Email Services: Our website and email communications are hosted by ALL-INKL.COM (Neue Medien Münnich, Hauptstraße 68, 02742 Friedersdorf).
The web host processes data on our behalf as a data processor pursuant to Art. 28 GDPR.
We have entered into a corresponding contract with the provider regarding data processing (DPA).
§ 3 Access Data (Server Log Files)
When you visit our website, we automatically collect access data that your browser transmits to us and store it in so-called server log files.
The following data may be collected:
- Browser type and browser version of your PC
- Operating system used by your PC
- Referrer URL (source/link from which you accessed our website)
- Hostname of the accessing computer
- Date and time of the server request
- The current IP address used by your PC (in anonymized form, if applicable)
- Amount of data sent
- HTTP status code
Legal basis:
The processing of this data is carried out in accordance with Art. 6(1)(f) GDPR.
Our legitimate interest lies in the technical provision, security, and stability of our website, as well as in defending against attempted attacks.
Email hosting: Since we receive and send our emails via ALL-INKL’s servers, data (e.g., communication metadata) is also processed there.
This is necessary for the handling of correspondence (Art. 6(1)(b) GDPR).
§ 4 Provision of Digital Media
A. Use of External Platforms
We use external platforms such as Telegram and Fur Affinity, among others, to communicate with customers and to provide and transmit digital content (in particular images and videos).
B. Nature and Scope of Data Processing
When using these services, personal data is processed and transmitted to the respective platform operators. This includes, in particular:
- Username / Profile name
- Communication content (e.g., messages, files)
- Transmitted digital content
- Metadata (e.g., timestamps)
- IP address of the accessing device
C. Legal Basis
Processing is based on Art. 6(1)(b) GDPR (performance of a contract or implementation of pre-contractual measures), provided that the use takes place within the scope of an order.
To the extent that the use of the aforementioned platforms is voluntary on the part of the customer, processing is additionally based on Art. 6(1)(a) GDPR (consent).
D. Responsibility and Transfer to Third Countries
The aforementioned platforms do not act as data processors within the meaning of Article 28 of the GDPR, but as independent data controllers. There is no data processing agreement in place.
It cannot be ruled out that data processing may take place outside the European Union. In such cases, a level of data protection comparable to that of the European Union cannot be guaranteed.
E. Voluntary Nature and Alternative Contact Options
The use of Telegram and Fur Affinity is voluntary. Customers may choose alternative communication and transmission channels (e.g., via email) at any time.
F. Further Information
Further information on data protection at the respective providers can be found at:
§ 5 Accounting and Document Dispatch
We use the cloud-based software lexoffice for our accounting, the preparation of quotes and invoices, and the dispatch of these documents.
A. Provider and Data Processing
The provider is Haufe-Lexware GmbH & Co. KG, Munzinger Straße 9, 79111 Freiburg, Germany.
As part of order processing, your personal data (e.g., name, address, email address, order details, and payment information) is transmitted to lexoffice and stored there.
Lexoffice is also used to send you quotes, order confirmations, and invoices directly via email.
In this process, the emails are sent via the provider’s servers.
We have entered into a data processing agreement (DPA) with Haufe-Lexware GmbH & Co. KG.
B. Legal Basis
- Art. 6(1)(b) GDPR (performance of a contract)
- Art. 6(1)(c) GDPR (legal obligation)
The data is stored in accordance with statutory retention periods (generally 10 years) and subsequently deleted.
§ 6 Online Payments
In order to process your order in our online shop, we require certain personal data from you.
The legal basis for processing is Art. 6(1)(b) GDPR.
A. Bank Transfer
Account holder’s name, IBAN, payment reference and amount are processed.
B. PayPal
Payments may be processed via PayPal.
Data may be transferred to the USA under SCCs and Data Privacy Framework.
§ 7 Use and Disclosure of Data
We assure you that personal data you provide to us will not be sold or used commercially.
Your data is processed exclusively for communication and contract purposes.
§ 8 Encryption (SSL/TLS)
Our website uses SSL/TLS encryption to ensure secure transmission.
§ 9 Retention Period
Data is stored only as long as necessary or legally required (up to 10 years).
§ 10 Your Data Protection Rights
As a data subject, you have rights under GDPR including:
- Right to withdraw consent
- Right of access
- Right to rectification
- Right to erasure
- Right to restriction
- Right to data portability
- Right to object
- Right to lodge a complaint
Our competent supervisory authority is:
Authority: The State Commissioner for Data Protection and Freedom of Information of Baden-Württemberg (LfDI)
Address: Lautenschlagerstraße 20, 70173 Stuttgart
§ 11 Validity and Amendment
This Privacy Policy takes effect on 29.04.2026 and may be updated at any time.