Bergfreunde GmbH Website Privacy Policy

In this Privacy Policy, Bergfreunde GmbH, Bahnhofstr. 26, 72138 Kirchentellinsfurt, Telephone: +49 7121/70 12 0, E-mail: (hereafter "we", "us") would like to provide you with information about how we process your personal data when you visit our website and use our online shop.

1. What personal information do we collect from you?

Personal data is any information relating to an identified or identifiable natural person given to us by you or that arises or is collected by us. This can include:

Registration data: When you order goods through our online shop, you can register and open a customer account. When you register, you must enter your name and contact information (e.g. your address, telephone number, e-mail address) and set a password.

Order data in the online shop: If you order goods through our online shop (using a customer account or as a guest), we process the data entered by you, the data about your person (in particular delivery addresses and payment data) as well as the information provided to you by us. We also collect information about the time, scope and, if necessary, the location of your order.

Other content data: If you use other services on our website, e.g., fill out contact forms, sign up for newsletters, participate in contests or post a comment on our blog, we process the content data you provide and the information we make available to you.

Usage data: We create user profiles under a pseudonym based on how you use our website, which we then use to track how our website is used.

Server log data: When you use our websites, data (such as your IP address, browser type and version, device type and operating system, the date and time of your visit as well as the pages you accessed and the files you requested) are temporarily stored in a log file on our servers.

2. What is the purpose and legal basis for processing your personal data and how long is it stored?

2.1 Your customer account

When you register for a personal customer account, we process the registration data to set up and manage your customer account and process future orders. As a registered customer, you have access to your personal customer account (using your email address and password created by you), in which you can view your order history and save and change your personal settings (e.g. password settings, newsletter settings, invoice and delivery settings).

The legal basis for processing is our legitimate interest according to Art. 6 (1) (f) GDPR to provide you with the service of a "customer account" as described above respectively for the purpose of performance of the user contract with you (Art. 6 (1) (b) GDPR).

This data will be deleted if the registration on our website or the customer account is cancelled or changed.

You may object to the processing of your data on the basis of Art. 6 (1) (f) GDPR unless we can prove compelling reasons for the processing to continue. However, we will not do this for a customer account. In this case, the following applies: The customer account must then be deleted and is no longer available to you. Please note that we may store the data concerning the orders that are visible in your customer account for a longer period of time (see 2.2).

2.2 Your orders

We use your order data (such as your name, address, e-mail address, delivery preferences and other information pertaining to your order) to process the order and to deliver the goods you ordered. In addition, depending on the payment method you have selected, either we or payment service providers commissioned by us (see Section 3.2.1) process the payment information required by the respective payment method. For example, we store IBAN and BIC ourselves, while payment service providers store your credit card number, Paypal account details, etc.).

The legal basis for processing is the conclusion and performance of the sales contract for the purchased goods, Art. 6 (1) (b) GDPR.

This data will be deleted when it is no longer required for contract management (including customer service and warranty), unless we are legally obliged to store it, e.g. due to the legal obligation to retain data for commercial or tax-based reasons.


If you make comments in our blog "Base Camp” where we publish various contributions on topics such as travel, outdoor activities and equipment, we will process your name and e-mail address (which you must provide before using the comment function), the comment itself, any URL (e.g. to your own blog), date and time of the comment, data on the device you are using and your IP address. We do this in order to be able to defend ourselves against liability claims in the event of publication of illegal content and to contact you if a third party should object to your comment. You can also use our website rate and comment on products from our online shop. In order to use this feature, you are required to register as a customer and log in (we can use this to identify you as well). On our web pages we then present your given first name, date and time as well as, if applicable, the municipality from which you come, together with the post office.

The legal basis for processing is our legitimate interest as described above (Art. 6 (1) (f) GDPR).

You may object to the processing of your data on the basis of Art. 6 (1) (f) GDPR. If there are compelling reasons, we can allow the processing to continue; however, for your comments in the context of our blog, the following applies: Your comment will then be deleted.

In addition, this data will be deleted if it is no longer required for the aforementioned purpose.

2.4 Your enquiries

If you send us enquiries using a contact form, via e-mail or by phone, we will process the information you provide in order to answer your query as well as your IP address and the date/time of the enquiry to prevent misuse of the contact form.

The legal basis for processing is our legitimate interest (Art. 6 (1) (f) GDPR) to provide you with the “enquiries" service described above. If your enquiry concerns the initiation or performance (including customer service or warranty) of a contract, the additional legal basis for processing is Art. 6 (1) (b) GDPR.

You can object to the processing of your data on the basis of Art. 6 (1) (f) GDPR. We can then continue processing if there are compelling reasons for processing. This may be necessary in order to provide evidence for enquiries from you and past communication with you. If there are no such compelling reasons, we will stop communicating with you and delete the data that has been collected.

This data will be deleted when our communication with you has been terminated, i.e. when the relevant facts have been clarified and no further legitimate interests exist for storage or no further legal obligations exist for storage.

2.5 Contests

If you take part in one of our contests, we use your data (e.g. name, e-mail address) to carry out the contest, for information purposes and to send you a prize, if applicable.

The legal basis for the processing is the consent you have given when participating in the contest (Art. 6 (1) (a) GDPR). Your data will be deleted when the contest is over and the prizes have been distributed. Your data will be used for other purposes, e.g. advertising, only if you have explicitly given your consent.

2.6 Advertising and product development (newsletters, etc.), right to object

We would also like to use the data you have entered or accrued when using the websites to inform you about our products and services (advertising) or to improve our offerings and services (product development).

On the basis of your explicit consent, you can subscribe to our free e-mail newsletter on our website. We use our e-mail newsletter to inform you regularly about all areas of our offering. The data collected during registration will be processed (the data displayed as mandatory fields are absolutely necessary for receipt of the newsletter, while voluntary data fields are only used for a more personal form of address and selecting the information displayed). We process data about your usage behaviour after we have sent you e-mails (e.g. click behaviour). You can object to receiving our newsletter at any time (see below for how to object).

Without having separate consent, we will contact you directly via email outside of our email newsletter with customer satisfaction surveys as well as information, offers and promotions that are tailored to you and your interests only if and to the extent that (a) we have received your email address from you in connection with a service or the sale of a product, (b) we use you for direct marketing of our similar products or services, and (c) you have not objected to receiving it (see below for how to object). We will inform you about this use and your right to object each time you enter your e-mail address. We also process data about your usage behaviour after we have sent you e-mails (e.g. click behaviour).

We will contact you by telephone only with your express consent in order to provide you with information, special sales and offers for Bergfreunde services tailored to your personal interests or usage of our site.

We will contact you by post with advertisements in written form, even without your consent to the extent permitted by law for Bergfreunde services.

The legal basis for processing is your consent (Art. 6 (1) (a) GDPR) and our legitimate interests (Art. 6 (1) (f) GDPR) in conjunction with § 7 (3) of the German Act against Unfair Competition (UCA), if applicable.

The following applies to objecting to advertising: You can object at any time to the processing of your personal data for the purposes of advertising and product development as well as the establishment of contact via a specific form, either in whole or in part, or revoke any consent you may have given. Please use the corresponding options provided for you (e.g. the logout link in your personal customer account) or contact our data protection officer via e-mail or in writing (keyword: data protection) using the contact information specified under section 8. This objection is free of charge, i.e. there are no costs other than the costs for the transmission of your objection according to the respective basic tariffs. All objections received and confirmed by us will be accounted for starting at 6:00 a.m. on the next day/working day. Please keep in mind that we may still contact you during the time needed to process the request.

This data will be deleted or stored only in aggregated, anonymous form after your objection or withdrawal of any consents you have given or after cessation of use by us at the very latest. If necessary, we will store the data of your objection in order to prevent further contact with you.

2.7 Providing the website and services

The processing of server log data is necessary for technical reasons in order to provide the websites and services and in order to ensure system security thereafter.

The legal basis for processing is our legitimate interest in providing the website and our services (Art. 6 (1) (f) GDPR). The processing is absolutely necessary for the use of our website, and there is no right to object.

This data will be deleted after 12 days at the very latest.

The server log data may then be analysed anonymously for statistical purposes and to improve the quality of our website. The server log data is not linked to your personal data, nor will it be merged with other personal data sources.

3. Data transfer

3.1 Data transfer to processors

In some cases, we employ service providers in compliance with legal requirements for order processing, i.e. on our behalf, in accordance with our instructions and under our control.

Processors are

  • technical service providers we use to provide the website, e.g. service providers for software maintenance, data centre operation and hosting
  • technical service providers we use to provide functionalities, e.g. essential cookies for technical purposes.
  • service providers for the practical implementation of advertising and marketing, e.g. service providers for e-mail and analytics cookies.

In these cases, we remain responsible for data processing; the transfer and processing of personal data to or by our processors rests on the legal basis that allows us to process the data in each case. A separate legal basis is not required.

3.2 Data transfer to third parties

In some cases, we also transfer your data to third parties, i.e. to partners with whom we cooperate outside of commissioned processing. Such partners provide their services and are as such the responsible parties. For the processing of your data by partners, only their data protection policy applies.

3.2.1 Payment Service Providers

To process your orders, we send payment information to payment service providers who then process the payment transactions associated with the orders. These include PayPal and your financial institution. The legal basis for the transmission is the performance of the contract with you, Art. 6 (1) (b) GDPR.

When you pay upon invoice and/or use other payolution payment methods as defined by our general terms and conditions, we also transmit data about the order you placed to Payolution GmbH as well as net-m privatbank 1891 AG to which we assign the invoice you are to pay. The companies mentioned above then do a credit check in order to determine whether or not to purchase the receivable. The legal basis for the transmission of the data is your express consent provided during the ordering process not only to the transfer your data to Payolution GmbH and net-m privatbank 1891 AG by us but also to the subsequent processing of your data by net-m privatbank 1891 AG as the responsible party (Art. 6 (1) (a) GDPR). The wording of the consent can be retrievedhere.

The Payolution GmbH’s Privacy and Data Protection Policy on the processing of your personal data as the responsible party can be found here.

The net-m private bank 1891 AG’s Privacy and Data Protection Policy on the processing of your personal data as the responsible party can be found here.

3.2.2 Buyer protection/Ratings

The Trusted Shops Trustbadge is displayed on this website in order to show our Trusted Shops seal of approval, any ratings accumulated from users as well as to offer Trusted Shops products to buyers following an order.

This serves to protect our legitimate interests in the optimal marketing of our offer according to Art. 6 (1) (f) GDPR. The Trustbadge and the services advertised with it are an offer of Trusted Shops GmbH, Subbelrather Str. 15C, 50823 Köln, Germany. Each time the Trustbadge is used, the web server automatically saves a so-called server log file, which contains your IP address, date and time of the request, volume of data transferred and the requesting provider (access data) and documents the request. This access data is not analysed and is automatically overwritten no later than seven days after the end of your website visit.

Other personal data is transferred to Trusted Shops only if you decide to use or have already registered to use Trusted Shops products after placing an order. In such a case, the contract between you and Trusted Shops applies.

3.2.3 Logistics companies

In order to ship goods to you, we transfer your address and contact data, when necessary, to parcel delivery companies (usually DHL). For shipment within Germany, this includes the name, company (if applicable) as well as the postal address/Packstations and any additional information regarding the address. In this context, we may provide you with links or tracking numbers to track shipments; please note that we do not provide your e-mail address to logistics companies for these purposes. If you are contacted by them directly (e.g. to agree on a specific delivery time), you have probably subscribed to a corresponding service provided by the logistics company and agreed to this particular use in doing so. In other delivery countries, additional information may be required (e.g. e-mail address or telephone number) to enable the parcel service to find or reach you because of the type of delivery or the circumstances there; this will then be displayed when you enter the address. The legal basis for the transmission is the performance of the contract with you, Art. 6 (1) (b) GDPR.

For returns from you to us, we offer a voluntary service (to simplify and save costs) of generating the postage and return label via our website. To generate the label, you will be forwarded from our website to DHL's returns portal (you can also go directly to a logistics company instead). In order to provide you with the best possible service, we transfer personal data from your order that is necessary for creating the return label (i.e. receipt number, zip code, name, address and e-mail address). This information is required for billing purposes, correctly filling in the label and sending it to you via e-mail so that you can print it. While this eliminates the need for you to enter this information yourself, it does require us to forward the information to DHL (using a secure form). We also point this out to you on our website before you use this service. The legal basis for the transmission is the provision of a service requested by you or the steps taken by you prior to entering a contract with the logistics company, Art. 6 (1) (b) GDPR.

3.2.4 Social networks

Our presence on social media networks and platforms serves to provide better, more active communication with our customers and interested parties. There we inform you about our products and special offers. When you visit our online presence on social media, your personal data may be automatically collected and processed for market research and advertising purposes. From this data, so-called usage profiles are created using pseudonyms. These may be used, for example, to place advertisements inside and outside the platforms that are presumably in line with your interests. Cookies are generally used on your device for these purposes. Visitor behaviour as well as the interests of the users are stored in these cookies.

In accordance with Art. 6 (1) (f) GDPR, the processing of the data serves to protect our legitimate interests - which predominate when weighed against the interest of the data subject - in providing an optimised presentation of our offerings and more effective communication with customers. If you are asked by one of the social media platform providers for your consent to data processing, e.g. by means of a checkbox, this is the legal basis for data processing Art. 6 (1) (a) GDPR.

If the aforementioned social media providers are headquartered in the USA, the following applies: the European Commission has issued an adequacy decision for the USA on the basis of the EU-US Privacy Shield. Current certification for the respective company can be viewed here.

For detailed information on the data processing carried out by providers on their pages, contact support as well as your rights and options to protect your own privacy, including opt-out options, please refer to the links to the provider’s data protection information below. If you still need assistance with this matter, you can also contact us.


If you wish to share one of our websites on a social network (e.g. Facebook or Twitter) by clicking on one of our "Share" buttons, this information will be transferred to the social network. This assumes that you are logged in to the social network. The legal basis for the transmission is our legitimate interest in offering you the possibility of “sharing", Art. 6 (1) GDPR.

Facebook Fan Pages

We operate a fan page on Facebook to provide information about our products and special offers. These can be found at: Visitor data is collected and processed for various purposes on our fan page.

By means of this data concerning the use of the fan page, Facebook creates anonymous analyses, which we then receive to improve our offerings. This analysis, called "Insights", is a joint responsibility of Facebook and us. The basis for this is an agreement between responsible parties in accordance with Art. 26 GDPR, which you can view here. Accordingly, Facebook Ireland Ltd. is primarily responsible for data processing and compliance with data subjects' rights, in particular for providing information, deleting it or objecting to the processing of the data. You can find more information about Facebook Ireland's data processing for Insights and exercising data subjects' rights here.

Apart from Insights, Facebook is also responsible for further processing of personal data, e.g. for the provision of services or advertising. You can find more information about this here.

4. Cookies and web analysis

4.1 What are cookies?

In order to make our website as user-friendly as possible and improve the relevance of our advertising for visitors to our website, we and our partners use "cookies". Cookies are small text files that are stored on a visitor's device. They make it possible to retain information for a specified period of time and identify the visitor's device. In some cases, this occurs using tracking pixels that are not stored on a visitor's hard drive but that can be useful in the same way as a cookie in order to identify the device. In the following, the term "cookie" is used to refer both to cookies in the technical sense as well as tracking pixels and other technical methods.

When you visit our website for the first time, a banner will be displayed on our home page with the consent text concerning cookies. If you grant your consent there or in our cookie settings, this consent will be stored on your browser so that we will not have to show you this notice again on every page. If this information is lacking in your browser (for instance because you delete the browser history), this notice will be displayed again the next time you visit our website.

4.2 What types of cookies do we use?

On this website, we use four (4) different categories of cookies: Required cookies without which the functionality of our website would be restricted, as well as optional functional cookies, analysis cookies and marketing cookies that generally come from third-party providers:

4.2.1 Required Cookies

These cookies are essential in order to enable you to browse our website and make use of its functions. For example, they store information concerning which products you have saved in your cart or the progress of your order process, or they store whether you have consented to the use of cookies and your configurations in cookie settings.

These cookies do not collect any information about you that will be used for marketing purposes or where you have accessed the internet. These cookies are generally session-dependent and expire after your visit to the website (session), unless the functionality in question requires a longer period of storage (e.g. saving cookie settings.

Deactivating this category of cookies would restrict the functions of this website entirely or in part. Therefore it is not possible to deactivate them.

The legal basis for the use of technically required cookies and the processing of your data using these cookies is our legitimate interest in displaying our website functions to you and providing them for your use, Art. 6 (1)(f) GDPR.

4.2.2 Functional cookies

We use functional cookies in order to improve and simplify the use and performance of our website and to offer you other optional functions.

For instance, to enable the website to load faster, we use technology provided by RichRelevance Inc., 303 Second Street, Suite 350, San Francisco, CA 94107, USA.

The legal basis for the use of functional cookies and the processing of your data by the providers of these cookies is your prior consent (Art. 6 (1)(a) GDPR). You can withdraw your consent at any time in the cookie settings which you can access on the website using the link below.

4.2.3 Analysis cookies

Analysis cookies collect information about how visitors use a website overall, for example, which pages they visit most frequently and whether they receive error messages from websites.

These cookies do not collect any data either which could be used to identify visitors. The data collected with these cookies is not aggregated with other information about our visitors. All information collected using these cookies is exclusively used to understand and improve the functionality and service of the website.

The legal basis for the use of analysis cookies and the processing of your data by the providers of these cookies is your prior consent (Art. 6 (1)(a) GDPR). You can withdraw your consent at any time in the cookie settings which you can access on the website using the link below.

(1) Google Analytics
To analyse our website, we use services such as Google Analytics, a web analytics service provided by Google, Inc. The information generated by Google Analytics about your use of the website will be transmitted to and stored by Google on servers in the USA. Because IP anonymisation is activated on this website, your IP address will first be truncated by Google within a member state of the European Union or within another contracting state to the agreement on the European Economic Area. Only in exceptional cases will your full IP address be transferred to a Google server in the USA and truncated there.

In particular, Google will use this information to analyse the user’s use of our website, to compile reports about website activity and to perform other services associated with website use and internet use on our behalf. In this context, pseudonymous usage profiles may be created for users using the processed data. Google may also process information for its own purposes.

(2) Webtrekk Analytics
We also use Webtrekk Analytics, a product provided by Mapp Digital/Webtrekk GmbH, in order to collect statistical data about the use of this website and optimise our service accordingly. This is a statistics program that records use anonymously or pseudonymously. The use of Webtrekk enables us to perform a pseudonymous analysis of user behavior, which involves collecting and analysing information transmitted by your browser.

4.2.4 Marketing cookies

Marketing cookies are used in order to tailor ads more specifically to you and your interests. They can also be used to restrict how often you are shown the same advertisement, to measure the effectiveness of an ad campaign and to understand the behaviour of users after viewing an ad.

These cookies are typically placed by ad networks with the consent of the website operator (in this case, us) on the operator's website. They recognise that a user visited a website and pass this information on to other companies, for instance advertising companies, or use this information to adapt the ads accordingly. They are often connected with a website functionality that is provided by this company. Therefore, we use these cookies in order to establish a connection with social networks that are then able to use the information about your visit to show you targeted ads on other websites and to provide information about your visit to the advertising networks we use in order to show you specific advertising in the future that could actually be of interest based on your browsing behaviour. In these cases as well, we do not connect the data collected using these cookies with other information about our visitors.

The legal basis for the use of marketing cookies and the processing of your data by the providers of these cookies is your prior consent (Art. 6 (1)(a) GDPR). You can withdraw your consent at any time in the cookie settings which you can access on the website using the link below.

4.3 List of functional cookies, analysis cookies and marketing cookies

Here you can access a list of the cookies we use and the providers who obtain your personal data using the cookies, as well as the duration for which the cookies are stored. There you will receive more information about the individual providers and cookies.

If you would prefer to receive more information about these cookies from us instead, please contact us using the contact details provided in Section 8.

4.4 How can i grant or withdram my consent to the use of cookies?

When you visit our website for the first time, a privacy notice will be displayed on our home page with the consent text concerning optional cookies. By clicking "SELECT ALL" on the home page or the individual categories (functional, analysis and marketing cookies) in the "COOKIE SETTINGS" menu, you grant your consent to the use of these cookies. You can adjust and modify these settings at any time in the cookie settings which you can access on the website using the link below.

You can also prevent the use of all cookies by changing your browser settings concerning cookies accordingly. However, we inform you that the functionality of our website will be restricted in this case if technically required cookies are also blocked. Finally, you can read more information about cookies and the individual providers on websites such as, where you have the option of rejecting usage-based online marketing using specific tools or all available tools.

5. Links

We use links to our other web presences on websites and third-party services, e.g. on social media channels like Facebook, Twitter or Youtube. The data processing of these other service providers on their websites is the sole responsibility of these third parties and their data protection policy applies.

6. Security

We and our service providers employ technical and organisational security measures to protect your personal data against accidental or intentional manipulation, loss, destruction or against access by unauthorised persons. Our data processing and security measures are continually being improved with technological developments.

When your personal data is transmitted to us, it is encrypted with Secure Socket Layer (SSL). Personal data exchanged between you and us or other participating companies is generally transmitted via encrypted connections that correspond to the current state of the art.

Our employees and our service providers are, of course, bound to a confidentiality agreement.

7. Your rights to information, correction, blocking and deletion

Every natural person whose personal data we process has the following rights (i.e. depending on the respective conditions):

  • If you have any questions regarding the processing of your personal data by us, we would be happy to provide you with information about your stored personal data at any time free of charge (Art. 15 GDPR).
  • You have the right to correct inaccurate data and complete incomplete data (Art. 16 GDPR).
  • You have a right to block/restrict the processing or delete your personal data that is no longer required or stored on the basis of legal obligations (Art. 17, 18 GDPR).
  • You have the right to transfer the data in a structured, commonly used and machine-readable format, provided that you have provided us with the data on the basis of an agreement or a contract between us and you (Art. 20 GDPR).
  • You have the right to object to the processing of your data for direct marketing purposes at any time (Art. 21 (2 and 3) GDPR).
  • You have a right to object to processing of personal data on the basis of a legitimate interest, unless we can explain our compelling legitimate grounds (Art. 21 (1) GDPR). We have pointed out above in what cases such a right is available.
  • If you have given your consent to data processing, you can withdraw this with effect for the future at any time, i.e. the legality of the data processing carried out up to the time of the revocation remains unaffected by your withdrawal of consent. After withdrawing your consent, you may no longer use our services.

Please contact us with your request in writing (keyword: data protection) or via e-mail using the contact information under section 8. We reserve the right to check your identity to ensure that your personal data is not disclosed to unauthorised persons.

You also have the right to file a complaint with a data protection authority.

8. Data Protection Officer

Our data protection officer is:

Christian Volkmer, Project 29 GmbH & Co. KG

Contact: Ostgasse 14, 93047 Regensburg Germany

9. Changes

From time to time, it is necessary to change the content of this Privacy and Data Protection Policy. We therefore reserve the right to change it at any time. We will publish the amended version of the Privacy and Data Protection Policy here as well. If you visit us again, we kindly ask you to read the Privacy and Data Protection Policy again.

Last changed: August 2020

€ 5 now
For your next order
No thank you.