Privacy Policy

Last updated: 2 October 2025

This Privacy Policy explains how Stephan Dietz Modevertrieb GmbH (“we”, “us”, “our”) collects, uses, and protects your personal data when you visit incentive-cashmere.com or shop with us.

We are committed to handling your data responsibly and in compliance with the General Data Protection Regulation (GDPR) and other applicable laws.

1. Controller

Stephan Dietz Modevertrieb GmbH

Hinter dem Hain 3

63454 Hanau, Germany

Tel.: +49 6181 97450

Email: s.dietz@dietz.fashion

Website: https://www.incentive-cashmere.com/

2. Shopify Hosting & Processing

Our store is hosted on Shopify Inc., which provides the e-commerce platform we use to sell our products.

• Shopify processes personal data on our behalf (e.g., hosting, checkout, fraud prevention, analytics).
  
• Depending on your location, Shopify may process data in the EU, Canada, the USA, and other regions.
  
• Shopify safeguards international transfers using mechanisms such as Standard Contractual Clauses.
  

More information is available in Shopify’s Privacy Policy.

3. What Data We Collect & Why

Website usage (server logs & cookies)

• Data: IP address, date/time, browser/device, referrer.
  
• Purpose: deliver the site, ensure security, prevent misuse, optimize performance.
  
• Legal basis: Art. 6(1)(f) GDPR (legitimate interests).
  

Contact & customer support

• Data: name, email, phone (optional), message content.
  
• Purpose: respond to enquiries, provide support.
  
• Legal basis: Art. 6(1)(b) GDPR (pre-contract/contract steps).
  

Orders & accounts

• Data: contact details, billing/shipping address, order history.
  
• Purpose: order processing, delivery, invoicing, fraud prevention.
  
• Legal basis: Art. 6(1)(b) GDPR; Art. 6(1)(c) GDPR (legal obligations).
  

Payments

• Payment details are handled directly by your chosen provider (e.g., Shopify Payments/Stripe, PayPal).
  
• We do not store your full payment information.
  
• Each provider acts as its own controller for that processing.
  

Marketing (with your consent)

• Data: email address, preferences, interaction data.
  
• Purpose: newsletters, product updates, personalized campaigns.
  
• Legal basis: Art. 6(1)(a) GDPR (consent).
  

4. Cookies & Similar Technologies

We use cookies and similar tools:

• Essential cookies – required for site functionality (cart, login, checkout).
  
• Analytics cookies – to measure traffic and improve the site (Google Analytics 4 with IP anonymization).
  
• Marketing cookies – to show you relevant ads (Meta/Facebook, Instagram, Pinterest, Google Ads).
  

You can manage your choices via our cookie banner or delete cookies through your browser at any time.

5. Analytics, Ads & Social Plugins

If you consent, we may use:

• Google Analytics 4 (IP anonymized).
  
• Google Ads for conversions and remarketing.
  
• Meta (Facebook/Instagram) Pixel.
  
• Pinterest Tag.
  
• YouTube embeds (video content).
  

These providers may process data in the USA or other third countries. Where applicable, we rely on Standard Contractual Clauses and supplementary safeguards.

6. Sharing of Data

We only share data with:

• Shopify (hosting & e-commerce services).
  
• Payment providers (for transactions).
  
• Logistics/shipping partners.
  
• IT/security & analytics providers.
  
• Public authorities where required by law.
  

All third parties are contractually bound to process data securely and in line with GDPR.

7. Retention

We store personal data only as long as necessary:

• Server logs: 30–90 days.
  
• Customer service enquiries: up to 24 months.
  
• Orders & invoices: up to 10 years (German tax law).
  
• Marketing: until you withdraw consent.

8. Your Rights

You have the right to:

• Access your personal data.
  
• Correct inaccurate or incomplete data.
  
• Delete data (“right to be forgotten”).
  
• Restrict processing.
  
• Object to processing, including marketing.
  
• Data portability.
  
• Withdraw consent at any time.
  

To exercise your rights, please contact us at: s.dietz@dietz.fashion.

You also have the right to complain to your local supervisory authority.

9. Security

We use appropriate technical and organizational measures (encryption, access controls, secure hosting) to protect your personal data. No system is 100% secure, but we take all reasonable steps to safeguard your information.

10. Children

Our services are not directed at children. We do not knowingly collect data from minors.

11. Updates

We may update this Privacy Policy to reflect legal or technical changes. The latest version will always be available on this page.