Data protection
We, the GreenBox GmbH, operate the website and the online shop offered there at https://berlingreen.com and collect certain data from our visitors and customers as far as this is necessary.
In the following privacy policy, you will learn what we do with your personal data and why we do it. We also inform you about how we protect your data, when it is deleted, and what rights you have.
Whom can I contact?
Responsible for this website is:
GreenBox GmbH
Rheinstraße 10 C
14513 Teltow
Germany / Germany
Please contact us at any time if you have specific questions about your data, its deletion, or your rights.
What are my rights?
You can contact us at any time if you have questions about your data protection rights or wish to exercise your following rights:
-
Right of withdrawal (Art. 7 para. 3 GDPR) – e.g. if you wish to revoke a previously given consent, for example, to a newsletter.
-
Right of access (Art. 15 GDPR) – e.g. if you want to know what data we have stored about you.
-
Right to rectification (Art. 16 GDPR) – e.g. if your email address has changed.
-
Right to erasure (Art. 17 GDPR) – e.g. if we should delete certain data.
-
Right to restriction of processing (Art. 18 GDPR) – e.g. if we should only use your data for strictly necessary emails.
-
Right to data portability (Art. 20 GDPR) – e.g. to receive your data in a structured format.
-
Right to object (Art. 21 GDPR) – e.g. against certain advertising or analysis procedures.
-
Right to lodge a complaint (Art. 77 GDPR) – with the competent data protection supervisory authority of your federal state.
Deletion of Data and Storage Period
Unless otherwise stated, we delete your data as soon as it is no longer needed, e.g. your email address after unsubscribing from the newsletter.
Blocking or deletion also occurs when legal retention periods expire, unless there is a necessity for further storage (e.g., for contractual purposes).
Certain data must be retained longer for legal reasons. You can request information about stored data at any time.
Website Visit
If you merely visit our website, we do not collect any personal data – except for that which your browser transmits to display the page correctly:
-
IP address
-
Approximate location (e.g. Berlin & surroundings)
-
Internet provider
-
Connection speed
-
Date and time
-
Last visited website
-
Browser type
-
Operating system
-
Hardware (e.g. processor)
To protect your privacy, the IP address is anonymized or deleted after the visit.
This data is used exclusively for statistical purposes and technical optimization.
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest).
Online Order / Checkout
For orders, we only collect the data necessary for processing:
-
First and last name
-
Email address
-
Delivery address
-
Phone number
The transmission is encrypted.
Your data is only used for order and payment processing and passed on to the payment provider and shipping service provider.
Legal basis: Art. 6 para. 1 lit. b GDPR (fulfillment of contract).
Data Transfer
For the fulfillment of the contract according to Art. 6 para. 1 lit. b GDPR, we pass on your data to shipping and payment service providers as far as this is necessary.
When using external payment providers, their data protection regulations apply.
Customer Account
For the creation of the customer account, we process:
-
First and last name
-
Email address
-
Order history
This data is stored in the database of our shop provider (see section Shop/Hosting).
Data Processing in the App
Our app can generally be used anonymously.
However, essential functions are not technically possible without logging in.
Further information can be found in the app-specific privacy policy.
Shop / Hosting
Our website and the online shop are operated by Shopify.
Shopify processes all data on behalf of BerlinGreen.
We have concluded a data processing agreement with Shopify in accordance with the GDPR and use the EU standard contractual clauses to ensure an adequate level of data protection.
Chatbot – Tidio
For quick answers to questions, we use Tidio Live Chat (Tidio LLC, 180 Steuart St, San Francisco, USA, https://www.tidio.com)
Tidio uses cookies to personalize usage.
The data is used exclusively for processing chat communication.
Legal basis: Art. 6 para. 1 lit. f GDPR (customer service).
Newsletter
We use the Double-Opt-In procedure.
Your email address will be stored until you unsubscribe.
Unsubscribing is possible at any time via the link in the newsletter.
Email service provider: MailChimp (Rocket Science Group LLC, Atlanta, USA).
Privacy policy: https://mailchimp.com/legal/privacy
We have concluded a GDPR-compliant data processing agreement including EU standard contractual clauses.
Cookies
Cookies are small text files that are stored in the browser and contain information such as website name, expiry date, and values.
We use:
-
Required Cookies – for correct display and function
-
Functional and Performance Cookies – for technical optimization
-
Advertising and Analytics Cookies – for content personalization
Legal basis: Consent pursuant to Art. 6 para. 1 lit. a GDPR via the cookie banner (revocable).
Google Analytics
This website uses (after consent) Google Analytics for web analysis.
Provider: Google Ireland Ltd., Dublin, Ireland.
IP addresses are anonymized.
Legal basis: Art. 6 para. 1 lit. a GDPR (Consent).
Google Tag Manager
The Google Tag Manager manages website tags. It does not set cookies itself and does not collect any personal data.
Hotjar
We use Hotjar (Hotjar Ltd., Malta) to analyze user interactions ("Heatmaps"). No personal data such as entries or names are recorded.
Legal basis: Consent pursuant to Art. 6 para. 1 lit. a GDPR.
Social Plug-ins
We use Social Plug-ins, e.g. Facebook Connect. A connection to the provider is only established by actively clicking. Please note the privacy policies of the respective providers:
-
Facebook Inc.
1601 S California Ave, Palo Alto, California 94304, USA
Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in interaction and reach).
Status of the Privacy Policy
December 2025