Privacy Policy

Privacy Policy

As of: April 2026

1. What this is about

When you visit our website or place an order with us, data is inevitably processed. This text explains in plain language what we do with which data, how long we store it, and what rights you have.

We only process what we actually need to operate our shop. Tracking for advertising purposes does not take place.

2. Who is responsible

The operator of this website is the controller within the meaning of the GDPR. You can find the complete contact details in the legal notice (Impressum). We have not appointed an external data protection officer because we are not legally required to do so. For all data protection matters, you can reach us at info@bunkerlinge.org.

3. Your rights

You have the following rights regarding your personal data:

  • Information about the data stored (Art. 15 GDPR)
  • Correction of incorrect data (Art. 16 GDPR)
  • Erasure, unless statutory retention obligations prevent this (Art. 17 GDPR)
  • Restriction of processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection to processing based on our legitimate interest (Art. 21 GDPR)
  • Withdrawal of consent with effect for the future (Art. 7 para. 3 GDPR)
  • Complaint to a supervisory authority. The authority responsible for us is the State Commissioner for Data Protection and Freedom of Information Baden-Württemberg (baden-wuerttemberg.datenschutz.de).

A short email to info@bunkerlinge.org is enough. We will respond as quickly as possible, at the latest within one month.

4. When visiting the website

4.1 Server log files

Each time a page is accessed, our server automatically stores:

  • IP address
  • Date and time
  • URL accessed and referrer
  • Browser, operating system

We need these logs to detect technical errors, fend off attacks, and ensure operation. The legal basis is our legitimate interest (Art. 6 para. 1 lit. f GDPR). The logs are automatically deleted after 14 days and are not combined with other data.

4.2 Cookies

We only use technically necessary cookies. We do not use tracking or advertising cookies:

  • PHPSESSID – session cookie for shopping cart and checkout. Deleted when the browser is closed.
  • age_gate – confirms that you are of legal age for the current browser session.
  • _icl_current_language, wp-wpml_current_language – remember your chosen language (German or English).
  • woocommerce_*, wp_woocommerce_session_* – set only during checkout and control shopping cart, payment processing, and order entry.

These cookies are strictly necessary for the operation of the website. Consent is not required pursuant to Section 25 para. 2 no. 2 TTDSG (German Telecommunications-Telemedia Data Protection Act).

4.3 Age verification

Our shop displays an age verification prompt on your first visit. This ensures that our content is only accessible to visitors of legal age. The check is carried out on the client side via the “Age Gate” plugin; no data is transmitted to third parties.

4.4 Protection against bot access (Cloudflare Turnstile)

Our contact form is protected against automated bot access by Cloudflare Turnstile. Turnstile checks in the background whether you are human — without puzzles or image riddles. In doing so, technical characteristics of your browser are transmitted to Cloudflare, Inc. (USA).

Legal basis: Art. 6 para. 1 lit. f GDPR (protection against abuse). The transfer to the USA is secured by the EU-US Data Privacy Framework. Privacy policy: cloudflare.com/privacypolicy

5. Contact via form or email

If you write to us via the contact form or directly by email, we store your message including sender data (name, email address) for processing your request. The legal basis is Art. 6 para. 1 lit. b GDPR (pre-contractual measures) or lit. f (legitimate interest in communication).

We handle all email traffic via ProtonMail (Proton AG, Switzerland). Switzerland has an adequacy decision from the EU Commission. We delete inquiries as soon as they have been processed and no retention obligations remain — correspondence relevant under tax law is retained for up to 10 years pursuant to Section 147 AO (German Fiscal Code).

Please note: Standard email is not end-to-end encrypted. For sensitive matters, we will provide a PGP key upon request.

6. Ordering in the shop

You order with us as a guest — we do not create a customer account. To process your order, we process the data you provide at checkout: name, billing and delivery address, email, optionally phone number, and payment data. Legal basis: Art. 6 para. 1 lit. b GDPR (contract performance) and lit. c (tax law obligations).

6.1 Payment

  • SEPA bank transfer: You transfer directly from your bank account. Your bank details go exclusively to your bank; we only receive the information that your payment has been credited.
  • Credit card / debit card: Payment is processed via Trust Payments Ltd. (London, UK). You enter your card details on a secured page of Trust Payments — we ourselves do not see or store the card details. There is an adequacy decision from the EU Commission for the United Kingdom. Privacy policy: trustpayments.com/privacy-policy

6.2 Shipping

For parcel shipping, we pass on your delivery address to DHL (Deutsche Post AG). Shipping labels and tracking information are generated internally via the Shiptastic plugin. DHL privacy policy: dhl.de/datenschutz

6.3 Invoicing and accounting

Your invoice is generated automatically and transmitted to our accounting system Lexware Office (Haufe-Lexware GmbH & Co. KG, Freiburg). The transmission takes place via an encrypted API. Legal basis: Art. 6 para. 1 lit. c GDPR (tax retention obligations). Privacy policy: lexware.de/datenschutz

6.4 Backup of invoice PDFs

We additionally back up invoice and cancellation PDFs at Backblaze, Inc. (USA). Transmission is encrypted via HTTPS; Backblaze stores the files with server-side encryption. Legal basis: Art. 6 para. 1 lit. c GDPR (safeguarding of tax-relevant records). Privacy policy: backblaze.com/privacy.html

7. Deletion and pseudonymization of order data

It is important to us that your order data is not kept any longer than necessary. We have an automatic mechanism for this that goes beyond what is legally required:

  • Completed orders: 7 days after completion – or 21 days for international shipments, due to the longer delivery time – we automatically replace the name, address, email, phone number, IP address, usage and transaction identifiers in the order with the placeholder “[PSEUDONYMIZED]”. After pseudonymization, the order can no longer be attributed to a natural person.
  • Cancelled orders: 3 days after cancellation.
  • Shipment tracking: Tracking numbers are deleted 40 days after shipment.
  • Invoice and shipping label PDFs: Are cryptographically securely destroyed after pseudonymization. The file is encrypted with a one-time key (AES-256-GCM), the key is immediately removed from memory, and the SSD TRIM command is subsequently triggered. The file cannot be recovered afterwards, even with forensic means.

Records relevant under tax law (invoices) must be retained for up to 10 years pursuant to Section 147 AO. This retention concerns exclusively the invoice data stored in Lexware Office; it is independent of the pseudonymization in our shop.

8. Reviews

After receiving your order, you can leave a review via a personalized link. We only store the initials of your name, the review text, the star rating, and the date. The reviews are stored exclusively on our server. They are not passed on to Trustpilot, Google, or other review platforms. Technically, the review system is based on the “Site Reviews” plugin (Geminilabs). Legal basis: Art. 6 para. 1 lit. f GDPR.

9. Newsletter

If you subscribe to our newsletter, we store your email address and — voluntarily — your name in our local database. Registration takes place using the double opt-in procedure: We send you a confirmation email that you must actively click.

Management takes place via the MailPoet plugin; dispatch runs via our SMTP provider ProtonMail (Switzerland). In the configuration we have chosen, your newsletter data is not transmitted to MailPoet or its provider Automattic Inc.

You can cancel the newsletter at any time via the unsubscribe link in every email or by sending us a message. After unsubscribing, we delete your newsletter data.

10. Disclosure to third parties

We only disclose your personal data if:

  • you have expressly consented (Art. 6 para. 1 lit. a GDPR),
  • it is necessary for the performance of the contract, e.g. to shipping service providers and payment providers (Art. 6 para. 1 lit. b GDPR), or
  • we are legally obliged to do so (Art. 6 para. 1 lit. c GDPR).

Disclosure for advertising purposes or to data brokers does not take place.

11. Security

For the operation of our shop, we rely on the following security measures:

  • Encrypted transmission of all data via HTTPS
  • Server-side access exclusively via SSH key pair – no password login, no root login
  • IP blocklists and fail2ban for automatically blocking brute-force and scanner attacks (active rule sets for SSH, WordPress login, XML-RPC, and form spam)
  • Automatic installation of Debian security updates (unattended-upgrades, daily run)
  • AppArmor as additional process isolation
  • Regular rootkit checks with rkhunter
  • Encrypted cloud backup of invoice PDFs (see section 6.4)

12. Unwanted advertising

The use of the contact details published in the legal notice for sending unsolicited advertising is prohibited. In the event of infringement, we reserve the right to take legal action.

13. Changes to this privacy policy

If legal requirements or our processing activities change, we will adapt this policy. The version currently published on this page always applies.