Privacy policy

Last updated: May 9, 2026

1. Controller

The controller responsible for the processing of personal data on this website is:

BARIMAH GbR
Frongasse 13
53121 Bonn
Germany
Email: info@barimah.de

2. General Information

With this privacy policy, we inform you about which personal data we process when you visit our website, use our online shop, place an order or contact us.

Personal data means any information relating to an identified or identifiable natural person, for example name, address, email address, telephone number, order data or IP address.

We process personal data only to the extent permitted by law or where you have given your consent.

3. Hosting and Shop System Shopify

Our online shop is operated via Shopify. The provider is Shopify International Limited, 2nd Floor, 1–2 Victoria Buildings, Haddington Road, Dublin 4, D04 XN32, Ireland.

Shopify processes personal data that is generated when you visit and use our online shop. This may include, in particular, IP address, device and browser information, usage data, order data, payment information, delivery and billing data as well as communication data.

The processing is carried out to provide, secure and improve our online shop and to process orders.

The legal bases are Art. 6(1)(b) GDPR, insofar as the processing is necessary for the performance of a contract or pre-contractual measures, Art. 6(1)(c) GDPR, insofar as legal obligations exist, and Art. 6(1)(f) GDPR based on our legitimate interest in a secure and functional online shop.

Further information on data processing by Shopify can be found in Shopify’s privacy policy.

4. Collection of Personal Data When Visiting the Website

When you visit our website, information transmitted automatically by your browser to our server or to Shopify is processed. This may include:

IP address
Date and time of access
Browser type and browser version
Operating system
Referrer URL
Pages accessed
Device information

This data is processed in order to technically provide the website, ensure the security of the shop and analyze errors.

The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest lies in the secure and functional provision of our online shop.

5. Orders in the Online Shop

When you place an order in our online shop, we process the data required to handle the order. This includes in particular:

Name
Billing address
Shipping address
Email address
Telephone number, if provided
Order data
Payment information
Shipping information

The processing is carried out for the acceptance, processing, payment, delivery and handling of your order as well as for the processing of returns, complaints and customer inquiries.

The legal basis is Art. 6(1)(b) GDPR. Where we are legally obliged to store certain data, the processing is additionally based on Art. 6(1)(c) GDPR.

6. Payment Processing

For payment processing, we use the payment service providers displayed during checkout, for example Shopify Payments, PayPal, credit card or other payment methods offered.

Depending on the selected payment method, the data required for payment processing is transmitted to the respective payment service provider. This may include, in particular, name, billing address, email address, order amount and payment information.

The processing is carried out for the execution of the payment and the processing of the purchase contract.

The legal basis is Art. 6(1)(b) GDPR. Where legal obligations exist, Art. 6(1)(c) GDPR is also the legal basis.

Please also refer to the privacy information of the respective payment service provider.

7. Shipping and Delivery

For the delivery of your order, we pass on the data required for this purpose to shipping service providers. This may include, in particular, name, delivery address, email address and, where applicable, telephone number.

The processing is carried out for the performance of the purchase contract and the delivery of the ordered goods.

The legal basis is Art. 6(1)(b) GDPR.

8. Customer Account

If you create a customer account, we process the data you provide, in particular name, email address, login data, address data and order history.

The processing is carried out to provide and manage your customer account.

The legal basis is Art. 6(1)(b) GDPR. You may request the deletion of your customer account at any time, provided that no statutory retention obligations prevent this.

9. Contacting Us

If you contact us by email, contact form, social media or by any other means, we process the data you provide in order to handle your inquiry.

This may include, in particular, name, email address, message content and any other information voluntarily provided by you.

The legal basis is Art. 6(1)(b) GDPR if your inquiry is related to an order or a contract. In other cases, the legal basis is Art. 6(1)(f) GDPR based on our legitimate interest in handling your inquiry.

10. Newsletter and Email Marketing

If you subscribe to our newsletter, we process your email address and, where applicable, other voluntarily provided data in order to send you information about BARIMAH, products, promotions and news.

The newsletter is sent only with your consent.

The legal basis is Art. 6(1)(a) GDPR.

You can withdraw your consent at any time with effect for the future, for example via the unsubscribe link in the newsletter or by email to info@barimah.de.

11. Cookies and Similar Technologies

Our website uses cookies and similar technologies. These may include technically necessary cookies required for the operation of the shop as well as optional cookies for analytics, marketing or personalization purposes.

Technically necessary cookies are used to provide basic functions of the shop, for example shopping cart, checkout, language settings or security.

We use optional cookies and similar technologies only if you have given your consent.

The legal basis for technically necessary cookies is Art. 6(1)(f) GDPR. The legal basis for optional cookies and tracking technologies is Art. 6(1)(a) GDPR.

You can change your cookie settings or withdraw your consent at any time.

12. Analytics and Marketing Services

We may use analytics and marketing services to evaluate the use of our online shop, improve our offering and display advertising for our products.

Such services are only used to the extent permitted by law or where you have given your consent.

The legal basis, where consent is required, is Art. 6(1)(a) GDPR.

If we use services such as Meta Pixel, Google Analytics, TikTok Pixel, Pinterest Tag, Klaviyo or affiliate tracking tools, we will provide separate information about this in this privacy policy or in the cookie banner.

13. Social Media

We may include links to our social media profiles on our website, for example Instagram or TikTok.

When you click on these links, you leave our website. The respective provider is generally responsible for data processing on the relevant platform.

Please refer to the privacy notices of the respective platforms.

14. Customer Reviews and Feedback

If you submit a review, feedback or other content about our products, we process the data you provide in order to review, publish or use the review or feedback to improve our offering.

The legal basis is Art. 6(1)(f) GDPR based on our legitimate interest in customer feedback and improving our offering. Where consent is required, the processing is carried out on the basis of Art. 6(1)(a) GDPR.

15. Recipients of Personal Data

We only share personal data to the extent necessary for the provision of our services, where a legal obligation exists, where there is a legitimate interest or where you have given your consent.

Recipients may include in particular:

Shopify as shop and hosting provider
Payment service providers
Shipping service providers
IT and technical service providers
Tax advisors and accounting service providers
Marketing and analytics providers, where used and permitted
Authorities, where legally required

16. Transfer to Third Countries

As part of the use of Shopify and other service providers, personal data may be transferred to countries outside the European Union or the European Economic Area.

Such transfers only take place if the requirements of the GDPR are met, for example through an adequacy decision by the European Commission, standard contractual clauses or other appropriate safeguards.

17. Storage Period

We store personal data only for as long as necessary for the respective purposes or as long as statutory retention obligations exist.

Order and invoice data are generally stored for the statutory retention periods due to commercial and tax law obligations.

Data from inquiries are stored for as long as necessary to process the inquiry and provided that no statutory retention obligations prevent deletion.

Data processed on the basis of consent are generally stored until the consent is withdrawn or until the purpose of the processing no longer applies.

18. Your Rights

In accordance with the GDPR, you have the following rights:

Right of access to the personal data processed
Right to rectification of inaccurate data
Right to erasure of personal data
Right to restriction of processing
Right to data portability
Right to object to certain processing activities
Right to withdraw consent given with effect for the future

To exercise your rights, you can contact us at any time at info@barimah.de.

19. Right to Lodge a Complaint with a Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your personal data violates data protection law.

The supervisory authority likely responsible for us is:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Kavalleriestraße 2–4
40213 Düsseldorf
Germany

20. Data Security

We take appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access, alteration or disclosure.

Please note that data transmission over the internet can never be completely secure.

21. Changes to This Privacy Policy

We reserve the right to amend this privacy policy if this becomes necessary due to legal, technical or organizational changes.

The current version available on our website applies.

22. Contact

If you have any questions about data protection or wish to exercise your rights, you can contact us at:

BARIMAH GbR
Frongasse 13
53121 Bonn
Germany
Email: info@barimah.de

Your cart is empty

Privacy policy

1. Controller

2. General Information

3. Hosting and Shop System Shopify

5. Orders in the Online Shop

6. Payment Processing

7. Shipping and Delivery

8. Customer Account

9. Contacting Us

10. Newsletter and Email Marketing

11. Cookies and Similar Technologies

13. Social Media

14. Customer Reviews and Feedback

15. Recipients of Personal Data

16. Transfer to Third Countries

17. Storage Period

18. Your Rights

19. Right to Lodge a Complaint with a Supervisory Authority

20. Data Security

21. Changes to This Privacy Policy

22. Contact

Sign up for our email list

Country/Region

Language

Country/Region

Language

Your cart is empty

Privacy policy

1. Controller

2. General Information

3. Hosting and Shop System Shopify

5. Orders in the Online Shop

6. Payment Processing

7. Shipping and Delivery

8. Customer Account

9. Contacting Us

10. Newsletter and Email Marketing

11. Cookies and Similar Technologies

13. Social Media

14. Customer Reviews and Feedback

15. Recipients of Personal Data

16. Transfer to Third Countries

17. Storage Period

18. Your Rights

19. Right to Lodge a Complaint with a Supervisory Authority

20. Data Security

21. Changes to This Privacy Policy

22. Contact