Privacy Policy

Privacy Policy

Audio Everywhere – Stefan Visbach

Last updated: May 2026 (revised version)

1. Controller

The Controller within the meaning of the General Data Protection Regulation (GDPR) is:

Audio Everywhere – Stefan Visbach

Kurhausweg 16

38644 Goslar-Hahnenklee

Germany

Telephone: +49 151 20270102

Email: info@audio-everywhere.com

Website: www.audio-everywhere.com

VAT ID: DE359112287

A statutorily designated data protection officer is not mandatory for our company (§

38 BDSG). For data protection matters, please contact the above

contact address directly.

2. Further web offerings of the same Controller

In addition to this website, we operate the following further web offering under the same Controller (Stefan Visbach, Audio

Everywhere):

Stereo-Ankauf

Website: www.stereo-ankauf.de

Stereo-Ankauf is an independent offering for the purchase of hi-fi and audio equipment. Both

websites are technically and organisationally separate and each has its own

privacy policy. No automatic exchange of data takes place between the websites.

If you are redirected from this website to www.stereo-ankauf.de via a link, the privacy policy of stereo-ankauf.de applies

from that point onwards. We point out that

both offerings are operated by the same Controller.

3. Hosting – Strato AG

Our website is hosted by:

Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin, GermanyStrato Privacy Policy: https://www.strato.de/datenschutz/

When you access our website, the host automatically records so-called server log files.

These contain:

• IP address of the requesting device

• date and time of access

• URL accessed

• referrer URL (previously visited page)

• browser and operating system

• volume of data transferred and HTTP status code

These data are technically necessary in order to deliver the website and are not merged with other

data sources. The legal basis is Art. 6(1)(f) GDPR.

4. Collection and processing of personal data

We process personal data only insofar as this is necessary for the performance of a contract,

the handling of enquiries or the fulfilment of legal obligations. This includes

in particular:

• first and last name

• address (delivery and billing address)

• email address

• telephone number (if provided)

• payment information

• order and shipping information

• IP address and device information

5. Purposes of data processing

Your data are processed for the following purposes:

• processing of orders and purchase contracts

• dispatch and delivery of goods

• invoicing and accounting

• customer service and communication

• compliance with statutory retention obligations

• analysis and optimisation of our online offering

• sending newsletters to subscribers who have consented

6. Legal bases

The processing of your personal data is carried out on the following legal bases:

• Art. 6(1)(b) GDPR – for the performance of a contract or pre-contractual measures

• Art. 6(1)(c) GDPR – for compliance with legal obligations (e.g. tax

retention obligations under § 147 AO)• Art. 6(1)(f) GDPR – on the basis of our legitimate interests (e.g. web analytics,

IT security, fraud prevention)

• Art. 6(1)(a) GDPR – on the basis of your express consent (e.g. newsletter,

non-essential cookies)

7. Payment providers

PayPal

If you choose payment by PayPal, your payment data are transmitted to PayPal (Europe) S.à

r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg. The legal basis is Art. 6

(1)(b) GDPR.

Privacy Policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

Stripe

For credit card processing we use the service of Stripe Payments Europe, Ltd., 1 Grand

Canal Street Lower, Grand Canal Dock, Dublin, Ireland. Stripe processes your payment data both

as part of processing on our behalf (Art. 28 GDPR) and in part as an

independent Controller within the meaning of Art. 4(7) GDPR. The legal basis for the

transmission is Art. 6(1)(b) GDPR.

Privacy Policy: https://stripe.com/de/privacy

Klarna

If you select the Klarna payment options, your personal data are transmitted to Klarna

Bank AB, Sveavägen 46, 111 34 Stockholm, Sweden. Klarna may carry out

a credit check where applicable. This may constitute an automated individual decision within the

meaning of Art. 22 GDPR, which may have legal or similarly significant effects for you.

You have the right to contest such a decision, to express your point of view

and to request a review by a natural person. The legal basis is

Art. 6(1)(b) GDPR.

Privacy Policy: https://www.klarna.com/de/datenschutz/

Advance payment / purchase on account

In the case of payment by advance payment or on account, only the data required for invoicing and

accounting are processed. No transmission to external payment service providers

takes place.

8. Shipping service providers

In order to deliver your order, we pass on your delivery address and, where applicable, your name to the respective

shipping service provider (e.g. DHL, DPD, Hermes). The legal basis is Art. 6(1)(b)

GDPR.

9. Google Analytics 4Our website uses Google Analytics 4 (GA4), a web analytics service provided by Google Ireland

Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses cookies and similar technologies to collect information about your

use of our website. We have activated IP anonymisation, so that your

IP address is truncated within the EU/EEA before transmission. A contract for processing on our behalf (Art. 28 GDPR)

is in place with Google.

Legal basis: Art. 6(1)(a) GDPR (consent via cookie banner).

You can prevent collection by declining in the cookie banner or by means of a browser plug-in:

https://tools.google.com/dlpage/gaoptout

Google Privacy Policy: https://policies.google.com/privacy

10. Facebook/Meta Pixel

Our website uses the Meta Pixel of Meta Platforms Ireland Limited, 4 Grand Canal

Square, Grand Canal Harbour, Dublin 2, Ireland.

The Meta Pixel enables us to identify visitors to our website as a target audience for advertisements and

to measure their effectiveness. With Meta we have entered into an agreement on

joint controllership (Art. 26 GDPR) as well as on processing (Art. 28 GDPR),

duly concluded.

Legal basis: Art. 6(1)(a) GDPR (consent via cookie banner).

Opt-out: https://www.facebook.com/settings?tab=ads

Meta Privacy Policy: https://www.facebook.com/privacy/policy/

11. Cookies and consent management

Our website uses cookies. Consent management is carried out via the cookie banner system integrated in Shopify

(Shopify Inc., 151 O'Connor Street, Ground Floor, Ottawa,

Ontario K2P 2L8, Canada). In doing so, Shopify processes your cookie consents as

a processor pursuant to Art. 28 GDPR.

Shopify Privacy Policy: https://www.shopify.com/legal/privacy

We distinguish between the following cookie categories:

Technically necessary cookies: required for the operation of the website and the shop,

are set without consent (Art. 6(1)(f) GDPR).

Analytics and marketing cookies: are set only after your express consent via

our cookie banner (Art. 6(1)(a) GDPR).

You can withdraw your consent at any time with effect for the future by accessing the

cookie settings on our website or by deleting cookies in your browser.If you visit our website with a Global Privacy Control (GPC) opt-out signal,

we recognise this as an automated objection to non-essential data processing operations

accordingly.

12. Newsletter

If you subscribe to our newsletter, we process your email address and, where applicable, your

name exclusively for the purpose of sending the newsletter. The legal basis is your express

consent pursuant to Art. 6(1)(a) GDPR.

The subscription is carried out by means of a double opt-in procedure: after registering you receive a

confirmation email in which you must confirm your registration by clicking.

Newsletter dispatch system (developed in-house, no third-party provider):

The dispatch of our newsletter is carried out via our own, internally developed system. Emails

are sent via our email account hosted with Strato AG (info@audio-everywhere.com).

No email addresses or other subscriber data are passed on to external

newsletter service providers.

Note on AI-assisted processing (Claude / Anthropic):

For the creation of newsletter content we use the AI system Claude of Anthropic, PBC,

548 Market St, PMB 90375, San Francisco, CA 94104, USA. This does not happen with every

dispatch, but regularly to support the creation of text. In doing so, in individual cases

personal data such as your name may, for the personalisation of email content, flow into the AI system

accordingly.

The transfer of data to the USA is carried out on the basis of the EU-US Data Privacy Framework as well as

supplementarily on the basis of EU Standard Contractual Clauses (Art. 46(2)(c) GDPR). Anthropic has

contractually undertaken not to use transmitted data for the training of its own models

and not to store these permanently.

Legal basis: Art. 6(1)(a) GDPR (consent) as well as Art. 6(1)(f) GDPR

(legitimate interest in efficient communication).

Anthropic Privacy Policy: https://www.anthropic.com/legal/privacy

You can withdraw your consent at any time and unsubscribe from the newsletter – either via

the unsubscribe link in every email or by means of a message to info@audio-everywhere.com.

13. Sales on marketplaces

eBay

We sell products via eBay. If you purchase from us via eBay, your data are also

processed by eBay. For this processing, we and eBay are joint controllers within the

meaning of Art. 26 GDPR.eBay Privacy Policy:

https://www.ebay.de/help/policies/member-behaviour-policies/datenschutzerklarung?id=4260

Amazon

We sell products via Amazon. In the case of a purchase via Amazon, your data are processed by

Amazon Europe Core S.à r.l., 38 Avenue John F. Kennedy, 1855 Luxembourg.

Amazon Privacy Policy:

https://www.amazon.de/gp/help/customer/display.html?nodeId=GX7NJQ4ZB8MHFRNJ

Otto

We have a presence on the Otto platform. In the case of purchases via Otto, your data are processed by Otto

(GmbH & Co KG), Werner-Otto-Straße 1-7, 22179 Hamburg. For this processing

we and Otto are joint controllers within the meaning of Art. 26 GDPR, insofar as it concerns the

purchase handling via our shop.

Otto Data Protection: https://www.otto.de/shoppages/service/datenschutz

Idealo

We have a presence on the price comparison platform Idealo. Price comparisons via Idealo are subject to the

privacy policy of Idealo Internet GmbH, Zimmerstraße 50, 10888 Berlin.

Idealo Data Protection: https://www.idealo.de/preisvergleich/datenschutz.html

14. Embedded third-party content on the website

Content from YouTube, Instagram, Facebook and TikTok may be embedded on our website.

When this content is loaded, the platforms may collect data such as IP address and

device information – even without an account.

Legal basis: Art. 6(1)(a) GDPR. Content is loaded only after consent via the

cookie banner (two-click solution).

YouTube: https://policies.google.com/privacy

Instagram/Facebook/Meta: https://www.facebook.com/privacy/policy/

TikTok: https://www.tiktok.com/legal/page/eea/privacy-policy/de-DE

15. Our social media presences

We maintain our own presences on Instagram, Facebook, YouTube and TikTok. When you visit

our profiles, data are collected by the platform operators – even without an account. Following the

CJEU judgment "Fashion ID" (C-40/17), we, as the page operator, are jointly responsible together with the respective

platform operator (Art. 26 GDPR). The legal basis is Art. 6(1)(f) GDPR.

Instagram (Meta)

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

Data Protection: https://www.facebook.com/privacy/policy/ | Opt-out:https://www.facebook.com/settings?tab=ads

Facebook (Meta)

Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Page Insights Addendum

(Art. 26 GDPR) concluded.

Addendum: https://www.facebook.com/legal/terms/page_controller_addendum

YouTube (Google)

Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Data Protection: https://policies.google.com/privacy

TikTok

TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland. Data may be transferred to the

USA; EU Standard Contractual Clauses pursuant to Art. 46 GDPR concluded.

Data Protection: https://www.tiktok.com/legal/page/eea/privacy-policy/de-DE

16. Data transfer to third countries

Some of the services we use (in particular Google Analytics, Meta Pixel, TikTok,

Claude/Anthropic) transfer data to the USA or other third countries. The transfer is carried out on the

basis of the EU-US Data Privacy Framework (adequacy decision of the EU Commission of

10 July 2023) as well as supplementarily on the basis of EU Standard Contractual Clauses (Art. 46(2)(c)

GDPR).

17. Retention period

Personal data are stored only for as long as necessary:

• Order data and invoices: 10 years (§ 147 AO, § 257 HGB)

• Communication data (emails, enquiries): 3 years (§ 195 BGB)

• Newsletter subscriber data: until withdrawal of consent

• Web analytics data (GA4): 14 months

• Server log files: 7 to 30 days

18. Your rights as a data subject

Under the GDPR, you have the following rights:

• right of access (Art. 15 GDPR)

• right to rectification (Art. 16 GDPR)

• right to erasure (Art. 17 GDPR)

• restriction of processing (Art. 18 GDPR)

• data portability (Art. 20 GDPR)

• right to object (Art. 21 GDPR)

• right of withdrawal where consent has been given

Special note on the right to object (Art. 21 GDPR):Insofar as we process your personal data on the basis of legitimate interests (Art. 6(1)(f)

GDPR), you have the right to object to this processing at any time.

This applies in particular to processing for the purposes of direct marketing. The

objection may be made informally and is to be addressed to: info@audio-everywhere.com

To exercise your rights, please contact: info@audio-everywhere.com

19. Right to lodge a complaint with the supervisory authority

You have the right to lodge a complaint with the competent data protection supervisory authority (Art.

77 GDPR):

Die Landesbeauftragte für den Datenschutz Niedersachsen (LfD Niedersachsen)

Prinzenstraße 5, 30159 Hannover

Website: https://www.lfd.niedersachsen.de

20. Data security

We employ appropriate technical and organisational security measures in order to protect your

personal data against loss, manipulation or unauthorised access.

Our website is transmitted via an encrypted HTTPS connection (TLS/SSL). The

security measures are reviewed regularly and adapted to the state of the art.

21. Currency and amendment of this Privacy Policy

This Privacy Policy is currently valid and has the status: May 2026.

We reserve the right to amend this policy where necessary – in particular in the event of changes

to our offerings, the legal situation or the technologies used. The respective current version is

available on our website at any time.