Privacy Policy

Privacy Policy (as of September 2025)

1) Information about the collection of personal data and contact information of the person responsible

1.1 We are pleased that you are visiting our website and thank you for your interest. Below, we inform you about how we handle your personal data when you use our website. Personal data is any data by which you can be personally identified.

1.2 The data controller on this website in accordance with the EU General Data Protection Regulation (GDPR) is:
ISIA Media Verlag UG (limited liability)
Prellerstraße 17, 04315 Leipzig, Germany
Tel.: +49 (0)341 6870612
E-mail: service@isia-m-verlag.de

1.3 For security reasons and to protect the transmission of confidential content (e.g. orders, inquiries), this website uses SSL/TLS encryption. An encrypted connection can be recognized by "https://" and the lock icon in the browser line.

2) Data collection during a visit to our website

When using the website for informational purposes only, we only collect the data that your browser transmits to our server ("server log files"):

Page visited
Date and time
Amount of data transferred
Source/referrer
Browser type/version
Operating system
IP address (possibly (anonymized)

Legal basis: Article 6(1)(f) of the GDPR (legitimate interest in stability and security). Data will not be shared with third parties unless there is a reasonable suspicion of abuse.

3) Cookies and Consent

We use cookies to improve your experience.

Session cookies: automatically deleted after you close your browser.
Persistent cookies: stored for a long period depending on the browser.
Analytics/Marketing cookies: only with your consent (Article 6(1)(a) of the GDPR) via our cookie window.

You can delete or block cookies at any time. Without cookies, the functionality of the site may be limited.

4) Contact

When you contact us (email, form), we process your data exclusively to process your request.
Legal basis:

Art. 6 (1) (f) GDPR (legitimate interest in processing),
Art. 6 (1) (f) GDPR b GDPR (contract or pre-contractual measures).

Erasure: After final resolution of the matter, unless there are retention obligations.

5) Customer Account

To open an account, we process the data you provide.
Legal basis: Art. 6 (1) (b) GDPR.
Erasure: At any time by email; mandatory retention periods (HGB/AO: 6/10 years) remain unaffected.

6) Comment function

When using comments, we store: comment, time, user name, IP address (for security), email address (for communication in case of disputes).
Legal basis: Art. 6 (1) (a) f GDPR.

7) Direct Advertising / Newsletter

7.1 Newsletter

Registration with confirmation (Double-Opt-in).
Required field: email address.
IP address and time are stored as evidence.
Legal basis: Art. 6 (1) (a) (c) (f ... a GDPR.
You can unsubscribe at any time via the link in the email.

7.2 Direct Mail
We reserve the right to use your name and address for direct mail advertising (Article 6 (1) (f) GDPR). You can unsubscribe at any time.

8) Order Processing and Payment Services

8.1 Delivery via SendCloud
SendCloud GmbH, Kanalstr. 10, 80538 Munich.
Legal basis: Article 6 (1) (f) GDPR. b GDPR.

8.2 Payment Services

PayPal (Europe) S.a.r.l., Luxembourg
Klarna/SOFORT GmbH, Munich/Sweden
Stripe Payments Europe Ltd., Ireland

Data: name, address, payment details, invoice amount.
Legal basis: Art. 6 (1) (a) b GDPR.

Credibility checks (PayPal, Stripe): profiling/scoring possible (Article 22 of the GDPR).
Data transfer to the USA: only based on standard contractual clauses (SCCs).

9) Web Analytics

9.1 Google Analytics (with AnonymizeIP)

Provider: Google Ireland Ltd., Dublin / Google LLC, USA.
Legal basis: Article 6 (1) (f) GDPR. a GDPR (consent).
IP is anonymized.
Transfer to the USA: based on SCCs.
Activation only after consent via cookie banner.
Opt-out possible at any time via the consent tool.

9.2 Matomo (formerly Piwik)
We use Matomo for web analytics.

For self-hosted: data is processed exclusively on our server in Germany.
IP is anonymized immediately.
Legal basis: Art. 6 (1) (a) GDPR (consent) or Art. 6 (1) (f) GDPR (legitimate interest in anonymized data).
When using Matomo Cloud (InnoCraft Ltd., New Zealand), processing is based on a data processing agreement. Transfer to New Zealand: EU decision on adequate protection.
Objection: at any time via the cookie tool or the "Do Not Track" browser setting.

10) Website functions

10.1 Google reCAPTCHA
Purpose: Protection against bots/spam.
Legal basis: Art. 6 (1) (f) f GDPR.
Transfer to the USA: SCCs.

10.2 Google Translate
Purpose: Automatic translation.
Legal basis: Art. 6 (1) (a) a GDPR (consent via cookie banner).
Transfer to the US: SCCs.

11) Rights of Data Subjects

You have the following rights:

Access (Article 15 GDPR)
Correction (Article 16)
Erasure (Article 17)
Restriction (Article 18)
Data Portability (Article 20)
Withdrawal of Consent (Article 7(3))
Objection (Art. 21)
Complaint to the supervisory authority (Art. 77)

Competent authority: Data Protection Commissioner of the State of Saxony, Dresden.
Response period: 1 month.

12) Storage period

With consent: until revocation.
Contract: after expiry of mandatory storage periods (6/10 years).
Legitimate interest: until objection, unless there are more compelling reasons.
Direct advertising: until objection.

13) Changes to this Privacy Policy

We reserve the right to change this privacy policy. Changes will be posted on the website.

Cookie name	Provider	Purpose	Expiry
cookiesplus	https://isiaverlag.shop	Stores your cookie preferences.	1 year
ISIA#	https://isiaverlag.shop	This cookie helps keep user sessions open while they are visiting a website, and help them make orders and many more operations such as: cookie add date, selected language, used currency, last product category visited, last seen products, client identification, name, first name, encrypted password, email linked to the account, shopping cart identification.	480 hours