Privacy Policy

The controller responsible for processing personal data on this website is:

Patrick Mautsch, Van Godfrey Fashion, Am Klausenberg 68, 51109 Cologne, Germany, contact@vangodfrey.com, phone +49 (0) 178-1890069

For data protection enquiries, please contact us using the details above.

All data are transmitted over an encrypted TLS (Transport Layer Security) connection. You can recognise this by the https:// in the address bar and the padlock symbol in your browser. Orders, enquiries and other confidential content are thereby protected from access by third parties.

Even without registration or active input, technically necessary connection data are generated when you visit a page. Your browser transmits these automatically to the server so that content can be delivered at all:

• •page visited
• •date and time of access
• •volume of data transferred in bytes
• •referring URL (referrer)
• •browser used
• •operating system used
• •IP address (where applicable in truncated form)

The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest lies in stable, secure and functional delivery of the website. Log files are not shared with third parties. If there are concrete indications of unlawful use, we reserve the right to review them subsequently.

On your first visit to the website, we display a banner that lets you decide which cookie-based services may be loaded. Cookies requiring consent are only activated if you explicitly allow them, for example by clicking “Accept all”. Via “Essential only” you reject all optional services.

To preserve your choice on subsequent visits, the banner sets technically necessary cookies. As a rule, no further processing of personal data takes place.

If personal data are nevertheless processed in individual cases, for example your IP address to log your decision, we rely on two legal bases:

• •Art. 6(1)(f) GDPR: legitimate interest in demonstrable and user-friendly consent management.
• •Art. 6(1)(c) GDPR: legal obligation to make non-essential cookies dependent on your consent.

Where required, we have a data processing agreement with the banner provider; your data are not disclosed to unauthorised third parties. Details on the provider used and configuration options can be found directly in the banner itself.

The fonts used on this website are stored entirely on our own server. When a page loads, no connection to Google servers is established. Your IP address is therefore not transmitted to Google in connection with fonts.

If you contact us (via the contact form or directly by email), we process the data you submit exclusively to handle your enquiry and only to the extent necessary.

The legal basis is Art. 6(1)(f) GDPR; our legitimate interest lies in responding to your enquiry. If your enquiry concerns the conclusion or initiation of a contract, Art. 6(1)(b) GDPR applies additionally.

Once your enquiry has been finally resolved and no statutory retention obligations apply, we delete the related correspondence.

How long we retain personal data depends on three factors: the applicable legal basis, the specific purpose of processing and, where relevant, statutory retention periods, in particular under commercial and tax law.

In detail:

• •Processing based on your consent (Art. 6(1)(a) GDPR): retention until withdrawal of consent.
• •Processing for performance or initiation of a contract (Art. 6(1)(b) GDPR): retention at least until the end of the contract. Where statutory retention periods apply, routine deletion takes place after they expire, unless further processing is required for contract performance or a legitimate interest continues to apply.
• •Processing based on legitimate interests (Art. 6(1)(f) GDPR): retention until an effective objection under Art. 21(1) GDPR, unless we can demonstrate compelling legitimate grounds that override your interests, rights and freedoms, or processing serves the establishment, exercise or defence of legal claims.
• •Direct marketing (also Art. 6(1)(f) GDPR): retention until an objection under Art. 21(2) GDPR.

Unless otherwise stated in the sections above, we delete personal data once the original purpose of processing no longer applies.

Applicable data protection law grants you the following rights vis-à-vis us:

• •Right of access (Art. 15 GDPR): free information about personal data stored about you, their origin, recipients and purpose of processing.
• •Right to rectification (Art. 16 GDPR): correction of inaccurate and completion of incomplete data.
• •Right to erasure (Art. 17 GDPR): deletion of your data, subject to statutory retention obligations.
• •Right to restriction of processing (Art. 18 GDPR): restriction of use of your data in the cases provided by law.
• •Right to data portability (Art. 20 GDPR): provision of data processed automatically on the basis of consent or contract in a common, machine-readable format to you or a third party you designate.
• •Withdrawal of consent (Art. 7(3) GDPR): withdrawal of consent given at any time with effect for the future. Lawfulness of processing before withdrawal remains unaffected.
• •Right to lodge a complaint (Art. 77 GDPR): complaint to a data protection supervisory authority, in particular in the member state of your habitual residence, place of work or the place of the alleged infringement.

To exercise these rights, an informal message to the contact details in Section 1 is sufficient.