Privacy Policy

1. Controller

The controller within the meaning of the General Data Protection Regulation, or GDPR for short, is:

Motorrad Venture MV GmbH

Am Schlag 1b

35580 Wetzlar

Germany

E-mail: order@motorradventure.eu

2. General Information on Data Processing

Protecting your personal data is important to us. We process personal data exclusively within the framework of applicable legal provisions, especially the GDPR, the Federal Data Protection Act, and the TDDDG.

Personal data means all information relating to an identified or identifiable natural person.

We process personal data particularly for the following purposes:

• to provide our website and online shop

• to carry out pre-contractual measures and contract processing

• to handle inquiries

• for payment processing

• for shipping processing

• to fulfill legal obligations

• to ensure IT security

• for reach measurement and marketing purposes, provided that the corresponding consent has been given

3. Legal Grounds for Processing

Unless otherwise regulated in this privacy policy, we base the processing of personal data primarily on the following legal grounds:

• Art. 6 para. 1 lit. a GDPR, when you have given us your consent

• Art. 6 para. 1 lit. b GDPR, when processing is necessary to fulfill a contract or to carry out pre-contractual measures

• Art. 6 para. 1 lit. c GDPR, when processing is necessary to fulfill a legal obligation

• Art. 6 para. 1 lit. f GDPR, when processing is necessary to protect our legitimate interests and no overriding interests, fundamental rights, or freedoms of the data subject oppose it

Our legitimate interests lie particularly in the secure and economical operation of our online shop, in abuse and fraud prevention, in optimizing our offerings, as well as in legally compliant documentation of consents.

4. Hosting and Shop System via Shopify

Our online shop is operated via Shopify. The provider of the shop platform for European merchants is Shopify International Ltd., Victoria Buildings, 2nd Floor, 1-2 Haddington Road, Dublin 4, D04 XN32, Ireland. As part of providing the shop infrastructure, Shopify processes personal data on our behalf or on its own responsibility, insofar as this is necessary for certain technical or regulatory functions.

Data processing via Shopify includes, in particular, hosting, provision of the shop system, shopping cart and checkout functions, customer accounts, security features, as well as technical analysis and logging functions.

Insofar as the transmission of personal data to third countries takes place, this is done exclusively in compliance with the legal requirements of Art. 44 et seq. GDPR.

5. Website Access and Server Log Files

When visiting our website for purely informational purposes, data is automatically transmitted to the server by the browser. This includes in particular:

• IP address

• date and time of access

• time zone difference to Greenwich Mean Time

• accessed page

• access status

• amount of data transferred

• referrer URL

• browser type and browser version

• operating system

• language and version of the browser software

These data are processed to ensure the functionality, stability, and security of the website, to prevent attacks, and to analyze technical errors.

The legal basis is Art. 6 para. 1 lit. f GDPR.

6. Orders and Contract Processing

When you order through our online shop, we process the data required for contract processing. This includes in particular:

• first and last name

• billing and delivery address

• email address

• phone number

• ordered products

• payment data or payment-related information

• order history

• shipping and delivery information

• communication content related to the order

Processing is carried out to perform the contract, process payments, deliver goods, communicate with customers, handle inquiries, returns, and warranty cases, as well as to fulfill commercial and tax law obligations.

Legal bases are Art. 6 para. 1 lit. b GDPR and Art. 6 para. 1 lit. c GDPR.

7. Customer Account

If you create or use a customer account, we process the data you provide for this purpose, especially:

• master data

• login data

• order history

• saved addresses

• wish lists or similar convenience features, if available

Processing serves to provide the customer account and simplify future orders.

The legal basis is Art. 6 para. 1 lit. b GDPR.

You can delete a customer account at any time within the technical and legal possibilities. Legal retention obligations remain unaffected.

8. Contact via Email, Phone, or Contact Form

When you contact us, we process the data you provide, for example:

• name

• email address

• phone number

• address data

• content of your message

• other voluntarily provided information

Processing is carried out to handle your request, to communicate with you, and, if applicable, to initiate or perform a contract.

The legal basis is Art. 6 para. 1 lit. b GDPR, insofar as the request is related to a contract or concerns an existing contract. Otherwise, processing is based on Art. 6 para. 1 lit. f GDPR.

9. Newsletter and Promotional Communication

If you sign up for our newsletter or similar promotional information, we process your email address as well as any additional voluntary information to send you information about products, new releases, offers, promotions, or other company-related content.

Registration is generally only done based on your explicit consent. Where legally required, we use a double opt-in procedure for this. To prove consent, we store, in particular, the registration time, confirmation time, and the technical protocol data used.

The legal basis is Article 6(1)(a) GDPR.

You can revoke any consent given at any time with effect for the future, in particular via the unsubscribe link in the respective email or by contacting us.

If we send you advertising for our own similar products in connection with the sale of goods or services based on legal requirements, this is done on the basis of Art. 6 para. 1 lit. f GDPR in conjunction with applicable competition law provisions. You can object to this use at any time.

10. Shopping Cart Abandonment, Product and Availability Information

If corresponding functions are activated in our shop, we may process personal data to remind you of an unfinished purchase or to inform you about the availability of a product. This may include, in particular, name, email address, shopping cart information or specific product inquiry, as well as technical shipping and delivery information.

If prior consent is required for this, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR. Otherwise, processing is carried out, as far as legally permissible, on the basis of Art. 6 para. 1 lit. b or lit. f GDPR.

11. Payment Processing

To process payments, we pass on the necessary data to the payment service provider you selected. Depending on the payment method offered at checkout, these may include:

• Shopify Payments or the payment processors used for this

• PayPal

• Klarna

• Shop Pay

• Apple Pay

• Google Pay

• other payment methods specifically displayed at checkout

The following may be processed in particular:

• name

• billing address

• email address

• order amount

• currency

• order reference

• payment status

• depending on the payment method, additional payment information required for processing

The processing is carried out to execute the payment process, prevent fraud, and fulfill legal obligations.

Legal bases are Art. 6 para. 1 lit. b GDPR and Art. 6 para. 1 lit. c GDPR.

Please note that the respective payment service provider may process your data under its own data protection responsibility. The data protection provisions of the respective payment service provider apply additionally in this regard.

12. Shipping Processing

To carry out the shipment, we transmit the data required for delivery to the shipping and shipping management service providers we use, in particular to DPD and Sendcloud, insofar as this is necessary for label creation, shipping processing, shipment tracking, returns processing, or delivery communication.

The following are processed in particular:

• name

• delivery address

• email address

• phone number, if required for delivery information

• order and shipment data

• tracking and return information

The legal basis is Art. 6 para. 1 lit. b GDPR.

13. Inventory Management, Accounting, and Internal Business Processes

To handle orders, invoicing, accounting, inventory management, and the organization of internal business processes, we use external systems, especially Billbee.

Only the data necessary for the respective function are processed, especially master, order, billing, shipping, and communication data.

Processing is based on Art. 6 para. 1 lit. b GDPR as well as Art. 6 para. 1 lit. c GDPR. If external service providers act on our behalf, processing is based on a contract for order processing according to Art. 28 GDPR.

14. Fraud Prevention and Abuse Detection

To prevent abuse, fraud, payment defaults, IT attacks, and other security-relevant incidents, we and our technical service providers may process certain risk-related data, such as:

• IP address

• Device and browser information

• order and transaction data

• irregularities in the ordering process

• technical security features

Processing is carried out to protect our shop, our systems, and our economic interests as well as to prevent unlawful acts.

The legal basis is Art. 6 para. 1 lit. f GDPR. If processing is legally required, it also takes place on the basis of Art. 6 para. 1 lit. c GDPR.

15. Cookies, Similar Technologies, and Consent Management

Our website uses cookies as well as comparable technologies, especially pixels, tags, web beacons, local storage techniques, and similar mechanisms that can store or read information on your device.

We distinguish in particular between the following categories:

a) Technically Necessary Technologies

These are necessary to technically provide the website and online shop, operate the shopping cart, enable logins, save language settings, ensure security, or provide functions you request.

The legal basis for the subsequent processing of personal data is Art. 6 para. 1 lit. f GDPR. As far as storing or reading information on your device takes place and no consent is required for this, we rely on the legal exceptions of the TDDDG.

b) Analytics and Statistics Technologies

These help us measure the reach, usage, and performance of our website and improve our offerings.

We only use such technologies if you have explicitly consented beforehand.

The legal basis is Article 6(1)(a) GDPR.

c) Marketing and Personalization Technologies

These are used to control marketing measures, measure advertising success, create target groups, deliver personalized advertising, or analyze interactions with advertising campaigns.

We only use such technologies if you have explicitly consented beforehand.

The legal basis is Article 6(1)(a) GDPR.

d) Managing Your Consent

You can adjust or revoke your choices at any time with future effect via our consent management. The legality of processing carried out until revocation remains unaffected.

We store information about granted, denied, or revoked consents as far as necessary to fulfill our documentation obligations.

16. Shopify Customer Privacy and Consent-Based Control

Where technically available, we use Shopify’s privacy and consent mechanisms or a compatible consent management system to control whether non-essential analytics and marketing technologies are loaded or activated.

Non-essential cookies, pixels, or comparable tracking technologies are only activated after obtaining your consent.

17. Google Analytics

If you have consented, we use Google Analytics, a web analytics service from Google. Google Analytics allows us to analyze user behavior on our website and evaluate reach, interactions, and conversion processes.

The following data may be processed in particular:

• Shortened IP address or technical online identifiers

• Device and browser information

• Usage data

• Page views

• Duration of stay

• Interactions

• Referrer information

• Approximate location data

• Conversion data

Google Analytics is only activated after your explicit consent.

The legal basis is Article 6(1)(a) GDPR.

If IP anonymization or IP shortening is technically set up, this is done according to the specific configuration. Regardless, personal data processing by Google may occur.

18. Social Media Presence and External Links

On our website, you will find links to external services and social networks, especially Facebook, Instagram, and YouTube.

If you click such a link, you leave our website. The data processing on the websites of the respective providers is solely their responsibility.

An automatic transmission of personal data to these providers does not generally occur through mere linking. It may be different if embedded content, plugins, pixels, or other active third-party components are loaded on individual pages. Such non-essential third-party components are only integrated by us based on your explicit consent, as required by law.

19. Embedded Content, Especially Videos

As far as we embed videos or other content from third-party providers, such as YouTube, on individual pages, loading this content may result in the transmission of personal data to the respective third party, especially your IP address and other technical usage data.

If embedding is not technically necessary, such content will only be loaded after your consent.

The legal basis is Article 6(1)(a) GDPR.

20. Recipients of Personal Data

Recipients of your personal data may include in particular:

• Shopify as the shop and hosting platform

• Payment service providers according to the payment method selected at checkout

• Shipping and shipping management service providers, especially DPD and Sendcloud

• Accounting and inventory management service providers, especially Billbee

• IT and security service providers

• Analysis and marketing service providers, if you have given consent

• Public authorities and agencies, as far as there is a legal obligation

• Consultants, lawyers, insurers, or courts, as far as necessary for legal prosecution or defense

If service providers act as processors for us, processing takes place exclusively on the basis of a contract according to Article 28 GDPR.

21. Transfers to Third Countries

When using certain services, personal data may be transferred to recipients in countries outside the European Union or the European Economic Area, especially to Canada or the United States.

Such a transfer only takes place if the special conditions of Articles 44 et seq. GDPR are met. Depending on the situation, this can be based in particular on:

• an adequacy decision by the European Commission

• the Standard Contractual Clauses of the European Commission

• other legally permissible guarantees or exceptions

Please note that in the case of transfers to third countries, despite contractual and organizational protective measures, a level of data protection may exist that does not fully correspond to that within the EU.

22. Storage Duration

We store personal data only as long as necessary for the respective purposes or as we are legally required to do so.

The following principles apply in particular:

• Server log files are generally stored only for a limited period, as far as they are necessary for security and error analysis

• We store order, invoice, and tax-relevant data for the duration of the statutory commercial and tax retention periods

• We store data from customer inquiries until the final processing and beyond only as far as necessary to fulfill legal obligations or for legal defense

• We store consent data until it is revoked and beyond that as far as necessary to fulfill legal documentation obligations or for legal defense

• We store newsletter data until you unsubscribe or revoke your consent

• Data from a customer account is generally stored until the account is deleted, subject to any conflicting legal obligations

• We store analysis and marketing data according to the respective cookie duration or until you withdraw your consent, unless longer retention is required by law

23. Automated Decisions and Profiling

We generally do not carry out any fully automated decision-making within the meaning of Art. 22 GDPR that has legal effects on you or similarly significantly affects you.

This does not affect automated security and fraud prevention mechanisms of technical service providers, as long as they serve only to prevent risks and do not have a significant effect as defined by Art. 22 GDPR.

24. Your Rights

You have the following rights in accordance with legal provisions:

• Right to information according to Art. 15 GDPR

• Right to correction according to Art. 16 GDPR

• Right to deletion according to Art. 17 GDPR

• Right to restriction of processing according to Art. 18 GDPR

• Right to data portability according to Art. 20 GDPR

• Right to object according to Art. 21 GDPR

• Right to revoke consent given with effect for the future

• Right to file a complaint with a data protection supervisory authority

Right to Object

If we process personal data based on Art. 6 para. 1 lit. f GDPR, you have the right to object to this processing at any time for reasons arising from your particular situation.

If personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such advertising. This also applies to related profiling.

25. Right to Complain to a Supervisory Authority

You have the right to file a complaint with a data protection supervisory authority.

Our company is particularly responsible for:

The Hessian Commissioner for Data Protection and Freedom of Information

P.O. Box 3163

65021 Wiesbaden

Germany

Email: poststelle@datenschutz.hessen.de

Phone: +49 611 1408-0

Regardless, you can also contact any other data protection supervisory authority.

26. Obligation to Provide Data

The provision of personal data is partly required by law or contract or necessary for concluding a contract. Without providing the data required for ordering, payment, delivery, or communication, concluding or executing a contract may not be possible.

27. Amendment of this Privacy Policy

We reserve the right to update this privacy policy with effect for the future, especially in case of changes to legal requirements, the services used, or our offerings.

Status: 03/13/2026