Date: 22/06/2023
1.1 Personal data
In the following, we inform you about the processing of personal data when using our website. Personal data is all data that can be related to you personally, e.g. name, address, e-mail addresses, and user behaviour. In this way, we would like to inform you about our processing procedures and at the same time comply with our legal obligations, in particular from the EU General Data Protection Regulation (GDPR).
1.2 Data controller
The data controller pursuant to Art. 4 (7) GDPR is
Doggybag
22 Jln PJU 1a/42a Ara Permata Ara Damansara
When using the website for information purposes, i.e. simply viewing it without registering and without you providing us with any other information, we process the personal data that your browser transmits to our server. The data described below is technically necessary for us to display our website to you and to ensure stability and security and must therefore be processed by us. The legal basis is Art. 6 (1) f GDPR:
3.1 Overview over various offers
In addition to the purely informational use of our website, we offer various services that you can be used if you are interested (e.g. registering an account, purchasing goods) and we use other functions to facilitate sales (e.g. payment method selection) and to analyse or market our offers, which are presented in more detail in Section 4 and 5 below. For this purpose, you usually have to provide further personal data and/or we process such further data that we use to perform the respective services. The aforementioned data processing principles apply to all data processing purposes described here.
3.2 Use of external service providers
In some cases, we use external service providers to process your data (e.g. payment service providers, shipping companies, for more on these see Sections 5 and 6 below). These service providers are carefully selected by us, are bound by our instructions and are regularly monitored.
3.3 Further third-party Involvement
Furthermore, we may pass on your personal data to third parties not already mentioned in this privacy policy if we offer participation in promotions, competitions, conclusion of contracts or similar services together with partners. Depending on the service, your data may also be collected by the partners on their own responsibility. You will receive more detailed information when you provide your data or in the description of the respective offers.
3.4 Third parties outside of the EEA
If our service providers or partners are based in a country outside the European Economic Area (EEA), we will inform you of the consequences of this circumstance in the description of the offer.
When you contact us by e-mail or via a contact form, the data you provide (your email address, name and telephone number, if applicable) will be stored by us in order to answer your questions. When you register a customer account with us, we only collect the information that you voluntarily share with us. This data may include, for example :
5.1 Shopping information
If you order something from our online shop, we collect your shopping data. Depending on the type of purchase and processing status, shopping data may include the following information:
5.2 Payment details
We offer you various payment methods – in particular [credit card], [PayPal]. We collect the payment details shared by you in order to execute the payment. We receive further payment details from external payment service providers and credit agencies which we work with in executing payments and carrying out credit checks. We only forward information to our payment service providers which are necessary for processing payment. Payment details include:
The payment details also include other information directly connected to payment processing and credit checking. This applies, for example, to information which external payment service providers use for identification such as your PayPal ID if you are paying with PayPal.
5.3 Transfer of data on outstanding debts to collection service providers
In the event that outstanding invoices are not settled despite repeated reminders, we may transfer the data required to commission a collection service provider to a collection service provider for the purpose of collecting the debt. Alternatively, we may sell the debt to a collection service provider which is then able to file a claim in its own name. The agencies we charge with collection services are the following [Please fill in the information of the debt collection service provider you cooperate with, if not, delete this paragraph]
Legal basis: The legal basis for transferring data within the framework of fiduciary collection services is Article 6 (1) b GDPR; data is transferred within the framework of selling debt on the basis of Article 6 (1) f GDPR.
6.1 General information about cookies
We may use cookies, tags, web pixels, and similar technologies to collect information on our Services automatically. Cookies or tags are bits of code that allow our technology partners to collect information that usually does not directly identify you. If required by law, we will request your consent before using cookies or other tracking technologies. Information within this section describes our use of cookies and your ability to control the use of cookies for advertising-related purposes. As described below, we will not use cookies or similar tracking technologies that process your personal data, unless they are Strictly Necessary Cookies, or you opt-in, i.e. consent, by using the cookie banner or consent manager found on our Site. You may withdraw your consent or update your preferences at any time by clicking the “Manage Cookies” link within the website footer.
6.2 Cookies
Cookies are small web files that a site or its provider transfers to your device’s hard drive through your web browser that enables the site’s or provider’s system to recognize your browser and remember certain information. Generally, we use first-party and third-party cookies for the following purposes: to make our Services function properly; to provide a secure browsing experience during your use of our Services; to collect passive information about your use of our Services; to measure how you interact with our marketing campaigns; to help us improve our Services; and to remember your preferences for your convenience.
We use the following types of cookies on our Services:
6.3 Your Choices
You can manage browser cookies through your browser settings. Most browsers will tell you how to prevent your browser from accepting new cookies, how to have the browser notify you when you receive a new cookie, how to block cookies, and when cookies will expire. If you block all cookies on your browser, neither we nor third parties will transfer cookies to your browser. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some features and services may not work.
6.4 Web Pixels
To see how successfully our marketing campaigns or other goals of the Services are performing we sometimes use conversion pixels, which fire a short line of code to tell us when you have clicked on a particular button or reached a particular page (e.g. a thank you page once you have completed the procedure for subscribing to one of our services or have completed one of our forms). We also use web pixels to analyze usage patterns on our Services. The use of a pixel allows us to record that a particular device, browser, or application has visited a particular webpage.
6.5 Analytics
We may use third-party service providers to monitor and analyze the use of our Services. Presently, we use Google Analytics. Google Analytics is a web analytics service that tracks and reports Site traffic. For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy?hl=en. Google Analytics Opt-out Browser Add-on provides visitors with the ability to prevent their data from being collected and used by Google Analytics, available at: https://tools.google.com/dlpage/gaoptout.
6.6 Behavioral Remarketing
We also use remarketing services to advertise on third-party websites to you after you visited our Services. For this purpose, visitors are grouped by certain actions on our Services, e.g., by the duration of a visit. This enables us to understand your preferences and to show you personalized advertising even if you are currently surfing on another website that also participates in the Google advertising network.
We use the following tools and services for these purposes:
6.7 Other Tracking Technologies
We may also use Tracking Technologies to collect data, such as the domain name of the service providing you with Internet access, your device type, IP address used to connect your computer to the Internet, your browser type and version, operating system and platform, the average time spent on our Site, web pages viewed, content searched for, access times and other relevant statistics, and assign unique identifiers to the device or other credentials you use to access the Site for the same purposes.
Pages of our Site may also use Java scripts, which are code snippets embedded in various parts of websites and applications that facilitate a variety of operations including accelerating the refresh speed of certain functionality or monitoring usage of various online components; entity tags, which are HTTP code mechanisms that allow portions of websites to be stored or “cached” within your browser to accelerate website performance; and HTML5 local storage, which allows data from websites to be stored or “cached” within your browser to store and retrieve data in HTML5 pages when the website is revisited.
6.8 Do Not Track
Some Internet browsers, such as Internet Explorer, Firefox, and Safari, include the ability to transmit “Do Not Track” or “DNT” signals. Since uniform standards for DNT signals have not been adopted, our Site does not currently process or respond to “DNT” signals.
6.9 Location Information
You may be able to adjust the settings of your device so that information about your physical location is not sent to us or third parties by
7.1 Transfer Only Where Allowed By Law
We only forward your data if this is allowed by German or European law. We work particularly closely with certain service providers, for example in the area of customer service (e.g. hotline service providers), with technical service providers (e.g. running computer centres) or with logistics companies (e.g. postal companies such as [Please enter the name of a logistics company you cooperate with]). These service providers may generally only process your data on our behalf under special conditions. Where we use them to process orders, the service providers only receive access to your data in the scope and for the time period required for provision of the relevant service. If you shop with one of our partners, we forward particular shopping data regarding you to the partner (e.g. your name and your delivery address), so that the partner can send you the goods ordered.
7.3 Technical Service Providers
We work with technical service providers in order to be able to provide our services. These service providers include, for example, SHOPLINE. If they process your data outside the European Union, this may mean that your data is transmitted to a country with a lower data protection standard than the European Union. In such cases, we will ensure that the relevant service providers contractually or otherwise guarantee an equivalent data protection level.
7.5 Shipping Companies
We work with external shipping companies (e.g. LALAMOVE & Last Mile) to deliver orders. These shipping companies receive the following data to execute the relevant order:
For more info: https://www.lalamove.com/malaysia/kualalumpur/en/privacy#:~:text=We%20do%20not%20sell%2C%20trade,keep%20this%20Personal%20Data%20confidential.
7.6 Authorities and Other Third Parties
If we are obliged by an official or court decision or it is for prosecution purposes, we will if necessary forward your data to prosecution authorities or other third parties.
We will store your personal data as long as is necessary for the purposes named in this Privacy Notice, especially for the fulfilment of our contractual and legal obligations. We may also store your personal data for other purposes if or as long as the law allows us to store it for particular purposes, including for defence against legal claims.
If you close your customer account, we will delete all the data we have stored regarding you. If it is not possible or necessary to completely delete your data for legal reasons, the relevant data will be blocked for further processing. If data is blocked, technical and organisational measures are used to ensure that only a few employees can access the relevant data, based on need to know and only for select purposes (e.g. in the event of a tax audit). Blocking will occur, for example, in the following cases:
Deletion may be waived in the cases allowed by law if the data is anonymous or pseudonymous and deletion would rule out or seriously hinder processing for scientific research or statistical purposes.
We use technical and organisational measures to secure our systems. With regard to your order and your customer login, we transmit your personal data securely using SSL encryption (Secure Socket Layer).
10.1 Your rights against us as data controller
You have the following rights against us as a data controller in respect of personal data
relating to you:
10.2 Information requests
In order to ensure that your data is not disclosed to third parties in the course of requests for information, please attach sufficient proof of identity to your request.
10.3 Withdrawal of consent.
If you have given your consent to the processing of your data, you may revoke this consent at any time. Such revocation affects the permissibility of the processing of your personal data after you have expressed it to us. The permissibility of the processing of your data up to the time of your revocation remains unaffected.
10.4 Objection in case of processing on the basis of balancing of interests
Further improvements to our website or changes in legal or regulatory requirements may require changes to this privacy notice. Thus, we encourage you to re-read this Privacy Notice from time to time.
You can reach our data protection officer at [Please fill in the data protection email] or our postal address [Please enter company name, address, email] with the addition “data protection officer”.