プライバシー・ポリシー

 

本ウェブサイトへようこそ!

本ウェブサイトhttps://www.head.com(マイクロサイト、データベース、オンラインストア、アプリ、ソーシャルメディアチャンネルを含み、以下「本ウェブサイト」といいます。)は、HEAD Japan 株式会社(以下「当社」といいます。)により運営されています。本ウェブサイト上で提供されるコンテンツ・機能の提供及びその利用は、当社の本ウェブサイトの利用規約(こちらhttps://www.head.com/ja_JP/terms-of-use)に基づいてのみ行われます。

お客様(当社より商品又はサービスを購入し、若しくは、商品・サービスの購入をご検討されて いるお客様をいいます。以下同様です。)の個人情報を保護することは、当社にとって重要な関 心事です。したがって、当社は、個人情報の保護、個人情報の合法的範囲及び機密性、並びにデ ータセキュリティに関して適用される法令の規定を遵守しております。

以下、お客様が当社のウェブサイトを訪問し又は利用する際(例えば、オンラインストアでの買 い物、懸賞ゲームへの参加、プロモーションその他の広告活動への参加、HEAD Rebels-Club ア プリの使用時)に、当社がどのような情報を収集・利用する可能性があるかについて説明しま す。

当社は、お客様からお預かりした個人情報は、以下に記載の目的のために使用し、他の目的には 使用しません。お客様の個人情報の利用が、本プライバシー・ポリシーに記載された利用目的等 から逸脱する場合、当社は、お客様本人に対してその旨を事前に個別に通知し、お客様の同意の 取得が法律上義務付けられている場合において、当該同意に基づいてのみ個人情報の目的外利用 を行うものとします。

当社は、インターネットのさらなる発展や法的な状況の変化に対応するべく、必要に応じて本プ ライバシー・ポリシーを更新いたしします。 そのため、お客様におかれましては、定期的に本ウェブサイトをご覧いただき、最新の内容をご 確認いただくことをお勧めします。

 

1. 通則
EU 一般データ保護規則(以下「GDPR」といいます。)及び対応する各国のデータ保護法は、 個人の基本的権利と自由、及び個人情報の保護に対する権利を確保するものです。当社は、 個人情報の取扱いにつき、日本の個人情報保護法その他関係法令のみならず、GDPR 及び対 応する各国のデータ保護法をも遵守いたします。

1.1「個人情報」とは?
個人情報とは、生存する個人に関する情報であり、その身元が特定されているか、少な くとも特定することが可能なものを含む個人情報保護法その他関連法令に定められた 「個人情報」をいいます。個人情報とは、例えば、氏名、住所、電話番号、電子メール アドレス、ユーザーID、クレジットカード番号、ソーシャルメディアアカウント ID、 ユーザー名、IP アドレス等が含まれます。

1.2 当社が収集・利用等を行う個人情報

当社は、「2. 個人情報の利用目的」に掲げる目的のために、以下のような個人情報を 収集し、利用することがあります。

      • お客様のユーザーデータ(例えば、登録、注文、当社の HEAD Rebels Club アプ リの使用、ニュースレターの購読、当社への連絡時に提供する氏名、住所、性 別、生年月日、職業、所属する団体名・代表者の氏名、電話番号、メールアドレ ス等の情報)
      • 技術データ(例えば、IP アドレス、日付、時間等のログファイル)
      • その他当社が提供するサービス(例えば、お買上商品の配達、本ウェブサイトに おける取引履歴、商品交換、イベントへの応募、ダイレクトメールによる商品・ サービスのお知らせ、お問合せに対するご回答、アンケートの実施等)のために 必要な個人情報

1.3 16 歳未満の個人情報/要配慮個人情報

当社は、親権者その他法定代理人等の同意がない限り、16 歳未満のお客様から個人情 報を収集することを望んでいません。

16 歳未満の未成年者など、当社による本プライバシー・ポリシーに基づく個人情報の 収集・利用に関して、本人が同意することによって生ずる結果を適切に判断できる能力 を有していないと考えられるお客様が、親権者その他法定代理人等の同意なしに当社 のウェブサイトに登録し、または当社のサービスを利用していることが判明した場合、 当社は、これらの者を当該サービスから排除、ブロック、収集した個人情報の削除その 他必要な対応を行う権利を留保します。

さらに、当社は、お客様の宗教的信条、病歴又は GDPR 第 9 条に記載されているその 他特別な配慮を要する個人情報等のいわゆる要配慮個人情報については、お客様の同 意がない限り取得しません。

2. 個人情報の利用目的
当社は、収集した個人情報を、下記の目的達成に必要な範囲内で利用し、その他の目的には 利用しません。また、当社は、個人情報について、違法又は不当な行為を助長し、または誘 発するおそれがある方法による利用を行いません。

    • お客様の技術データ(IP アドレス、リクエストの依頼日時、グリニッジ標準時 (GMT)からの時差、リクエストの内容(記載された実際のウェブページ)、アクセ ス状況/HTTP ステータスコード、転送データ量、リクエストを受信したウェブサイ ト、ブラウザ、オペレーティングシステムとそのインターフェイス及びブラウザソフ トウェアの言語とバージョン等)を以下の目的で利用します。なお、お客様が Cookie の設定に基づいて任意に提供するデータについても、以下の利用目的の範囲で収集・ 利用します(「3. Cookie の使用」参照)。
      • お客様が本ウェブサイトを閲覧する場合において、お客様に表示する本ウェブサ イトの安定性及び安全性を保証するため
    • お客様のユーザーデータ(登録、注文、当社の HEAD Rebels Club アプリの使用履 歴、ニュースレターの購読、当社への連絡時に提供する氏名、住所、性別、生年月 日、職業、所属する団体名・代表者の氏名、電話番号、メールアドレス等)を以下の 目的で利用します。
      • サービスの提供、商品の手配及びニュースレターのご案内等を行うため

3. Cookie の使用
当社は、本ウェブサイトを利用する際に Cookie を使用することがあります。Cookie の受け 入れを希望されない場合は、いつでもその設定を変更することが可能です。Cookie 及び Cookie により収集される情報の詳細については、Cookie ポリシーをご覧ください。

4. 個人情報の第三者への提供
当社は、下記の場合を除き、個人情報を第三者に提供することはありません。

      • 本人から事前の同意を得た場合
      • 法令に基づく場合
      • 人の生命、身体または財産の保護のために必要がある場合であって、本人の同意を得 ることが困難である場合
      • 公衆衛生の向上または児童の健全な育成の推進のために特に必要がある場合であっ て、本人の同意を得ることが困難である場合
      • 国の機関もしくは地方公共団体またはその委託を受けた者が法令の定める事務を遂行 することに対して協力する必要がある場合であって、本人の同意を得ることにより当 該事務の遂行に支障を及ぼすおそれがある場合
      • その他個人情報保護法その他関係法令により提供が認められている場合

5. 個人情報の共同利用
当社は、以下に従い、取得した個人情報を当社グループで共同利用する場合があります。共 同利用に際して、取得した個人情報が日本国外に所在する共同利用者に提供される場合があ ります。

【共同利用する個人情報の項目】
氏名、住所、性別、生年月日、所属する会社名・団体名、役職、電話番号、メールアドレス等 の連絡先、その他それぞれが保有する下記の利用目的の遂行に必要な範囲の個人情報の項目

【共同利用する者の範囲】
当社グループの構成者(こちら)

【利用する者の利用目的】
当社グループが提供するサービスの遂行
当社グループのサービスに関する情報提供
当社グループのニュースレター等の送付
各種お問い合わせへの対応
人材の採用選考、連絡、採用後の人事管理
上記の各利用目的に付随する目的
その他当社グループの業務の適切かつ円滑な遂行

【共同利用される個人情報の管理について責任を有する者の名称及び住所並びに代表者】
名称:HEAD JAPAN 株式会社
住所:東京都文京区関口 1-44-10 3F
代表者:久保 英二

6. 個人情報の委託に伴う提供
当社は、取得した個人情報の取り扱いを、以下の事業者に委託する場合があります。当社は、 委託先に対して、個人情報の安全管理が図られるよう、必要かつ適切な監督を行います。

      • IT サービス・プロバイダー及びデータ・ホスティング、データ処理その他同種のサー ビスを提供するプロバイダー
      • その他のサービス、ツール又はソフトウェア・ソリューションのプロバイダーであ り、当社のサービス提供をサポートし、当社に代わって業務を遂行する事業者(例え ば、マーケティング・ツールのプロバイダー、マーケティング会社、コミュニケーシ ョンサービス・プロバイダー、コールセンター等)
      • お客様に対する当社の義務を履行するために関与する第三者(例えば、オンラインス トアでの注文品をお客様に発送するために当社が委託する宅配業者、オンラインスト アでの支払処理のための支払サービス業者、支払処理のための銀行等)
      • スノーボード/ヘルメット/ゴーグルをご購入されたお客様の個人情報に関しては、お客様 へのアフターサービスの提供その他商品に関するご連絡を差し上げる目的のため、下記 当社の協力会社と共同利用をする場合があります。
        名称:株式会社 USP ジャパン
        代表者:和田 周一
        住所:千葉県千葉市中央区栄町 35-14 シンテイ千葉ビル8F

7. 国外の第三者へのお客様の個人情報の提供
当社は、当社のサービスの提供、ウェブサイトの運営、お客様の注文の処理、当社の IT シ ステム及びソフトウェアの保守等のために、お客様の個人情報を国外の企業及び契約上のパ ートナーに提供することがあります。ただし、このような提供が行われても、本プライバシ ー・ポリシーに従ってお客様の個人情報を保護する当社の義務は何ら変わるものではありま せん。お客様の個人情報を国外の第三者へ提供する場合、個人情報保護委員会の確認に基づ き適切な保護水準を有する国の第三者に提供するか、当社と個人情報を受け取る国外の第三 者との間で適切な形式の契約を締結することにより、適切な安全対策を保証します。 お客様は、当社(privacy@head.com)宛に電子メールを送信することにより、適切な保証 書の写しを受け取ることができます。

8. 個人情報のセキュリティ対策
当社は、お客様の個人情報を、意図しない又は不正な削除・変更・閲覧・転送・複製・使 用・アクセス、紛失、盗難から保護するために、適切な技術的及び組織的なセキュリティ対 策を講じています。また、当社及び当社の従業員は、取得する個人情報に関して守秘義務を 負っています。同様に、職務を遂行するためにお客様の個人情報にアクセスしなければなら ない当社グループのパフォーマンス・エージェント及び公認代理人も個人情報へのアクセス 権を得るものの、個人情報に関する機密と守秘義務を遵守する等、当社及び当社従業員と同 様の義務を負います。

9. 個人情報の保管期間
当社は、本ウェブサイトを通じて取得・利用された個人情報を、当社の契約上の義務を履行 するために必要な限りにおいて保存します。お客様の同意に基づく個人情報の取得・利用に ついては、お客様が同意を撤回しない限りにおいて、当社は、当該個人情報を保存します。 また、当社は、法律により保存することが義務付けられている期間、及び当社に対して個人 情報の破棄等の請求がなされるまでの期間、お客様の個人情報を保存します。

10. 個人情報の開示・訂正・利用停止等の権利
お客様は、当社が個人情報をどのように取得・利用するか、また個人情報の保有者として、 お客様の権利に関して、明確・透明かつ分かりやすい方法で情報を受け取る権利がありま す。当社は、お客様が、個人情報の開示・訂正・追加・削除・利用停止・消去・第三者提供 の停止・利用目的の通知等を希望される場合には、下記の問い合わせ先を設け合理的かつ必 要な範囲内で速やかに対応します。
個人情報に関するお問い合わせは、以下のお問い合わせ窓口までご連絡下さい。

Head Sport GmbH
To the attention of the Legal Department
Wuhrkopfweg 1, 6921 Kennelbach
Via e-mail at privacy@head.com

HEAD Japan 株式会社
東京都文京区関口 1-44-10 3F
お問い合わせメールアドレス sales@jp.head.com

特定の Cookie に基づく特定のアプリケーション(例:Google サービス)に関する詳細情報

  1. Google Services
    1. Google Analytics and Universal Analytics
    2. Google Ads (formerly Google Adwords)
    3. Google Remarketing
    4. Google Campaign Manager (formerly Google DoubleClick)
    5. Google reCAPTCHA
    6. Google Maps
    7. Google Fonts
    8. Google Tag Manager
    9. YouTube videos
  2. Facebook Business Manager
    1. Facebook Pixel and CAPI
    2. Facebook/Instagram lead ads
  3. TikTok Pixel
  4. Microsoft Advertising
  5. AB Tasty
  6. YotPo
    1. Ratings and Reviews
    2. Display of social media content
  7. Hotjar
  8. Salesforce

1. GOOGLE SERVICES

All services mentioned under sections 2.2 are provided by Google Ireland Gordon House, Barrow Street, Dublin 4, Ireland and/or Google Inc. 1600 Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA (”Google”).

You can prevent participation in various Google services in several ways: a) by adjusting your browser software accordingly, in particular, the suppression of third-party cookies results in you not receiving any third-party ads; b) by disabling the cookies for conversion tracking by setting your browser to block cookies from the domain ”www.googleadservices.com”, https://adssettings.google.com, although this setting will be deleted if you delete your cookies; c) by deactivating the interest-based advertisements of the providers that are part of the ”About Ads” self-regulation campaign via the link https://www.aboutads.info/choices, although this setting will be deleted if you delete your cookies; d) by permanent deactivation in your Firefox, Internet Explorer or Google Chrome browsers under the link https://www.google.com/settings/ads/plugin, e) by setting your cookie preferences accordingly. We point out that, in this case, you may not be able to use all features of this offer in full.

For detailed information on how Google secures and handles your personal data please see https://policies.google.com/technologies/product-privacy and https://policies.google.com/privacy.

Please also visit the Network Advertising Initiative (NAI) website at https://www.networkadvertising.org/ to find out more about responsible data collection and its use for digital advertising.

1.1 GOOGLE ANALYTICS AND UNIVERSAL ANALYTICS

This website uses Google Analytics, a web analytics service that uses so-called “cookies”, text files that are stored on your computer and that allow an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

This website uses Google Analytics with the extension “_anonymizeIp ()”. We have activated IP anonymization on this website by using the extension “_anonymizeIp ()”, so your IP address will be shortened beforehand by Google within member states of the European Union or other signatory states to the Agreement on the European Economic Area. As a result of this IP anonymization reference to particular individuals can be excluded. Therefore, as far as the data collected about you contains a personal reference, it is immediately excluded and the personal data deleted immediately. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.

Google will use this information on our behalf to evaluate your use of the website, to compile reports on website activity and to provide other services related to website usage and internet usage to us Google may also transfer this information to third parties as required by law or if said third parties process this data on behalf of Google.The IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google information.

You can prevent the storage of cookies by setting your browser software accordingly; however, we point out that in this case you may not be able to use all the functions of this website in full. You may also prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading the browser plug-in available at the following link and installing it: https://tools.google.com/dlpage/gaoptout. If you want to deactivate the tracking via Google Analytics for your mobile devices please follow the following link http://tools.google.com/dlpage/gaoptout to activate the respective opt-out cookie.

We use Google Analytics to analyze and regularly improve the use of our website. With the statistics we can improve our offer and make it more interesting for you as a user. For the exceptional cases in which personal data is transferred to the US,

The legal basis for the use of Google Analytics is Art. 6 Para. 1 (f) GDPR.

For further information please see the following links: Google Analytics Terms of Service: https://marketingplatform.google.com/about/analytics/terms/gb/, Overview on Google Analytics security and privacy principles: https://support.google.com/analytics/answer/6004245.

This website also uses Google Analytics for a cross-device analysis of visitor traffic conducted via a user ID. You can disable the cross-device analysis of your use in your customer account under “My Data”, “Personal Information”.

Universal Analytics enables cross-device tracking of users and leads to more refined information for those responsible (generally https://support.google.com/analytics). The opinion of the supervisory authorities is not yet available. In any case, the data subject must be informed about the extended use and be shown the possibility to opt-out.

1.2. GOOGLE ADS (FORMERLY GOOGLE ADWORDS)

We use the offer of Google Ads, in order to draw attention to our attractive offers with the help of advertising (so-called Google Ads) on external web pages. In relation to the data of the advertising campaigns, we can determine how successful the individual advertising measures are. We are interested in showing you advertisements that are of interest to you, to make our website more interesting to you and to achieve a fair calculation of advertising costs.

These advertising materials are supplied by Google via so-called “ad servers”. To do this, we use ad server cookies, from which certain performance metrics such as ads or user clicks can be measured. If you access our website through a Google ad, Google Ads will store a cookie on your PC. These cookies usually lose their validity after 30 days and should not serve to personally identify you. As a rule, the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wants to be addressed) are usually stored as analysis values for this cookie.

These cookies allow Google to recognize your internet browser. If a user visits certain pages of an Ads customer’s website and the cookie stored on their computer has not yet expired, Google and the customer may discover that the user clicked on the advertisement and was redirected to that page. Each Ads customer is assigned a different cookie. Thus cookies cannot be tracked via the websites of Ads customers. We ourselves do not collect and process any personal data in the aforementioned advertising measures. We receive only statistical evaluations provided by Google. On the basis of these evaluations, we can identify which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material; in particular, we cannot identify the users on the basis of this information.

Due to the marketing tools used, your browser automatically establishes a direct connection to the Google server. We have no influence over the scope of the data collected by the employment of this tool by Google and the further use of such data, and inform you therefore according to our level of knowledge: By including Ads Conversion, Google receives the information that you have accessed the relevant part of our website or have clicked on an advertisement from us. If you are registered with a service provided by Google, Google may associate the visit with your account. Even if you are not registered with Google or have not logged in, there is a chance that the provider will find out your IP address and store it.

The legal basis for the processing of your data is Art. 6 Para. 1 (a) GDPR.

1.3 GOOGLE REMARKETING

In addition to Ads Conversion, we use the Google remarketing application, which enables you to see our ads after visiting our website as you continue to use the internet. This is done by means of cookies stored in your browser, through which your usage behavior when visiting various websites is recorded and evaluated by Google. This is how Google determines your previous visit to our website. Consolidation of the data collected during the remarketing with your personal data, which may be stored by Google, does not occur by Google according to its own statements. In particular, according to Google, pseudonymization is used in remarketing.

With the use of remarketing, information about your browsing behavior is collected for marketing purposes in anonymous form and stored on your computer using cookies (targeting / retargeting). Based on an algorithm, we can then show you targeted product recommendations as personalized banner ads on other websites (so-called publishers). If you do not want this to occur, you can disable it via the Ads Preferences Manager (https://www.support.google.com/ads/answers/2662922).

The legal basis for the processing of your data is Art. 6 Para. 1 (a) GDPR.

1.4 GOOGLE CAMPAIGN MANAGER (FORMERLY GOOGLE DOUBLECLICK)

This website uses the online marketing tool Campaign Managerby Google. Campaign Manager uses cookies to place ads that are relevant to users, to improve campaign performance reports, or to prevent a user from seeing the same ads multiple times. Google uses a cookie ID to determine which ads are shown in which browser and can prevent them from being displayed multiple times. In addition Campaign Manager uses cookie IDs to track so-called conversions related to advertising requests. This is the case if, for example, a user sees a Campaign Manager advertisement and later goes to the advertiser’s website with the same browser and buys something there. According to Google, Campaign Manager cookies do not contain personal information.

Due to the marketing tools used, your browser automatically establishes a direct connection to the Google server when you visit our website. We have no influence over the scope of the data collected by the employment of this tool by Google and the further use of such data, and inform you therefore according to our level of knowledge: By including Campaign Manager, Google receives the information that you have accessed the relevant part of our website or have clicked on an advertisement from us. If you are registered with a service provided by Google, Google may associate the visit with your account. Even if you are not registered with Google or have not logged in, there is a chance that the provider will find out your IP address and store it.

Furthermore Campaign Manager cookies (DoubleClick Floodlight) help us to understand whether you complete certain actions on our website after viewing any of our display/video ads on Google or other platforms through Campaign Manager or clicking through one of these ads (conversion tracking). Campaign Manager applies this cookie to understand the content with which you have interacted on our website to be able to send you targeted advertising later on.

If you want to prevent Google from collecting the data generated by the cookies please download and install the browser plugin available under “Display settings”, “Extension for Campaign Manager deactivation” at https://support.google.com/adsense/answer/142293.

Further information on Campaign Manager is available at https://www.google.de/doubleclick.

The legal basis for the processing of your data is Art 6 Para. 1 (a) GDPR.

1.5 GOOGLE RECAPTCHA

This website uses Google reCAPTCHA to check whether the data entered on our website (such as on a contact form) has been entered by a human or by an automated program (“bots”).

reCAPTCHA analyses the behaviour of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website.

This service allows Google to determine from which website your request has been sent and from which IP address the reCAPTCHA input box has been used. In addition to your IP address, Google may collect other information necessary to provide and guarantee this service.

The legal basis for this processing is Art. 6 Para. 1 (f) GDPR.

1.6 GOOGLE MAPS

This website uses Google Maps to display our location and to provide directions (e.g. via our store finder and event calendars). To enable the display of certain fonts on our website, a connection to the Google server in the USA is established whenever our website is accessed. If you access the Google Maps components integrated into our website, Google will store a cookie on your device via your browser. All user settings and data are processed to display a location and describe a certain route.

By connecting to Google in this way, Google can determine from which website your request has been sent and to which IP address the directions are transmitted.

The legal basis for this processing is Art. 6 Para. 1 (f) GDPR.

1.7. GOOGLE FONTS

This website uses Google Fonts to display external fonts. For this purpose, your browser loads the required web fonts into your browser cache to display texts and fonts correctly, which requiresyour browser to establish a direct connection to Google Servers. Google can identify the website from which your request has been sent and to which IP address the fonts are being transmitted for display.

The legal basis for this processing is Art. 6 Para. 1 (f) GDPR.

1.8. GOOGLE TAG MANAGER

This website uses the Google Tag Manager that allows website tags to be managed using an interface. The Google Tag Manager only implements tags. This means that no cookies are used and no personal data is collected. The Google Tag Manager triggers other tags, which in turn collect data if necessary. However, the Google Tag Manager does not access this information. If recording has been deactivated on domain or cookie level, it remains valid for all tracking tags implemented with Google Tag Manager.

The legal basis for this processing is Art. 6 Para. 1 (f) GDPR.

1.9. YOUTUBE VIDEOS

We have also incorporated YouTube videos into our websites. The videos are stored at www.youtube.com and can be played directly from our websites. These videos are incorporated in such a way that no personal data related to you as the user is sent to YouTube if you do not play the videos.

If you do play the videos, YouTube cookies will be stored on your computer and data will be sent to Google, Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, as the YouTube operator. When playing videos stored with YouTube, the following personal data is sent to Google, Inc.: the IP address and cookie ID, the specific address of the page visited on our websites, language setting of the browser, system date and time of access and your browser’s identifier. The data is transmitted regardless of whether you are registered with or logged in to Google. If you are logged in, this data will be attributed directly to your account.

If you do not want this attribution to your profile, you must log out before activating the button. YouTube or Google, Inc., stores this data as use profiles and uses this data for the purposes of advertising, market research and/or designing its websites based on demand. Such use is meant in particular (not only for logged-in users) to provide advertising based on demand and to inform other users of your activities on our website. You have a right to oppose the creation of these user profiles, and to exercise this right, you must address yourself to Google Inc. as the operator of YouTube. Additional information on the purpose and scope of data collection and processing by Google, Inc., can be found at www.google.at/intl/policies/privacy/. We do not process the personal data collected when the YouTube video is accessed.

2. FACEBOOK BUSINESS MANAGER

The Facebook Business Manager is a tool that helps us to create, manage, monitor, and report on various business-related assets on Facebook and Instagram in an organized and targeted way, such as our Facebook company pages, Instagram profiles, and advertising. The Facebook Business Manager also includes a wide range of Facebook Business Tools that are explained below:

The Facebook Business Tools are technologies offered by Facebook Inc. and Facebook Ireland Limited that help website owners and publishers, app developers, and business partners, including advertisers and others, integrate with Facebook, understand and measure their products and services, and better reach and serve people who use or might be interested in their products and services.

All of these tools can be used for the so called „Facebook Products“ which include Facebook (including the Facebook mobile app and in-app browser), Messenger, Instagram (including apps like Boomerang), Facebook Shops, Spark AR, Audience Network and any other features, apps, technologies, software, products, or services offered by Facebook Inc. or Facebook Ireland Limited under the Data Policy of Facebook. For details please also see sections 2.3.1 and 2.3.2 below.

All services mentioned under section 2.3.1 and 2.3.2 are provided by Facebook, Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook“).

2.1. FACEBOOK PIXEL AND CAPI

For conversion measurement, our website uses the pixel visitor promotion as well as the Conversions Application Programming Interface (“CAPI”) of Facebook.

Because we use the “Custom Audiences” remarketing feature, which you can disable an time as described below, your behaviour can be tracked after you have been redirected to our website by clicking on a Facebook ad. As a result, the effectiveness of Facebook ads can be evaluated for statistical and market research purposes and future advertising measures optimized.

The data collected is anonymous to us as operators of this website; we cannot draw any conclusions about the identity of users. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and Facebook can use the data for its own advertising purposes, in accordance with the Facebook data usage directive. As a result, Facebook can enable advertising to be displayed on Facebook sites and outside of Facebook. This use of the data cannot be influenced by us as a site operator.

See the data protection notice of Facebook for more information on how to protect your privacy: https://www.facebook.com/about/privacy/.

You can also disable the “Custom Audiences” remarketing feature in advertisement settings at https://www.facebook.com/ads/preferences/. For this you have to be logged in to Facebook.

If you do not have a Facebook account, you can opt out of Facebook Commercial Advertising on the website of the European Interactive Digital Advertising Alliance: http://www.youronlinechoices.com/uk/your-ad-choices.

The legal basis for the processing of your data is Art. 6 Para. 1 (a) GDPR.

2.2. FACEBOOK/INSTAGRAM LEAD ADS

To enable subscription to our newsletter and/or your participation in a prize game or contest via Facebook/Instagram we use lead ads on our Facebook and Instagram accounts (for example Facebook: HEAD Tennis, Instagram: HEAD Tennis).

Please note that

if you register for our newsletter via lead ads, the information provided under 4.7 applies mutatis mutandis with the following deviation: Apart from you IP address, which we don’t collect, we use the same personal data (namely first name, email address, country and language) but we included a mandatory field “country” and your language is automatically allocated based on the language that you used on your social media channel when signing up for the newsletter (instead of allocating the country/language via the Browser Regional Manager);

if you register for our newsletter in connection with your participation in one of our prize games or contests via lead ads, the information provided under section 4.8 applies with the following deviation: We don’t process your IP address.

Based on your freely granted consent to receive the newsletter and after confirmation of the double opt-in e-mail by clicking on the button contained therein, your first name, your e-mail address, country and your IP address will be processed by us for the purposes of sending (i) personalised marketing and product information related to goods and services from the HEAD's Group sports product range, (ii) personalised promotional information and news matching your interest categories and based on your website use (for example, frequent viewing of products within your selected interest categories and geolocalisation), (iii) satisfaction surveys regarding services, products and advice of the HEAD Group and demand analyses, (iv) contests, coupons, discount campaigns and prize games, (v) electronic greeting cards via e-mail, and will be transmitted for these purposes to the companies of the HEAD Group mentioned above.

Subscription via the form is only effective if you activate the subscription by “clicking” on the confirmation link in the confirmation e-mail that you receive. At the time of subscription, only your personal data recorded with Facebook/Instagram or entered voluntarily by you, such as your email address and name in all cases (and usually also your country), are required in the form. We use the personal data provided exclusively to send to you via e-mail our newsletter as described above, provided that you have explicitly provided consent. You may revoke your consent to receive the newsletter at any time with effect for the future without specifying the reasons. For details on how we generally handle your personal data when you sign up for our newsletter please see section 4.7.

The legal basis for the processing of your data is Art. 6 Para. 1 (a) GDPR.

3. TIKTOK PIXEL

On our website, we use the "TikTok pixel" of the provider TikTok (For users in the EU, EEA and Switzerland: TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland; for UK: TikTok Information Technologies UK Limited, WeWork, 125 Kingsway, London, WC2B 6NH, United Kingdom.) If you have given your explicit consent, which you can revoke at any time with effect for the future (e.g. via your cookie settings), the TikTok pixel allows TikTok, to determine you as a user of our online offer as a target group for the display of advertisements (so-called "TikTok ads").

We use the TikTok pixel to display the TikTok ads placed by us only to those TikTok users who have also shown an interest in our online offers or who have certain characteristics (e.g. interests in certain topics or products ) that we transmit to TikTok (so-called "Custom Audiences"). With the help of the TikTok pixel, we also want to ensure that our TikTok ads correspond to the potential interest of users and are not harassing. The data collected is anonymous and not visible to us and is only used by us to track the effectiveness of the TikTok ads for statistical and market research purposes by seeing the users behavior after they have been redirected to our website after clicking on a TikTok ad (so-called "conversion").

For further information please see the following links:

TikTok’s Privacy Policy: www.tiktok.com/legal/new-privacy-policy

TikTok’s Terms of Service: www.tiktok.com/legal/new-terms-of-service

The legal basis for the processing of your data is Art. 6 Para. 1 (a) GDPR.

4. MICROSOFT ADVERTISING

On our website, we use Microsoft Advertising by Microsoft Corporation (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA; “Microsoft“).

Data processing serves marketing and promotional purposes as well as the purpose of measuring the success of advertising measures (Conversion Tracking). We find out the total number of users who clicked on one of our ads and were forwarded to a website provided with a conversion tracking tag. A personal identification of those users is not possible in this way, however. Microsoft Advertising uses technologies such as cookies and tracking pixels with which your use of the website can be analysed. When you click on an ad placed by Microsoft Advertising, a cookie for the conversion tracking will be saved on your computer. This cookie has limited validity and does not serve the purpose of personal identification. If you visit specific pages on our website and the cookie has not yet expired, we and Microsoft can see that you clicked on the ad and were forwarded to this page. The following information may be collected: IP address, identifiers (tags) allocated by Microsoft, information about your browser and your device, referrer URL (website from which you visited our website), URL of our website.

Furthermore, we use the so-called “Remarketing function” which enables Microsoft to track your consumption behaviour and therefore show you personalised advertising on Microsoft websites or in Microsoft apps.

If you do not want your information about your consumption behaviour to be used by Microsoft as described above, you can decline the placing of required cookies. The automatic placing of cookies can be deactivated via your browser settings. Furthermore, you can prevent the collection and processing of data generated by the cookie as well as data related to the use of the website by entering an objection using the following link: https://account.microsoft.com/privacy/ad-settings/signedout

Further information on data protection and the cookies used by Microsoft can be found on Microsoft's website at: https://privacy.microsoft.com/en-us/privacystatement

The legal basis for data processing is Article 6 Para 1 (a) GDPR.

5. AB TASTY

We use the web analytics service of AB TASTY SAS, 17 - 19 Rue Michel-le-Comte 75003, Paris ("AB Tasty") to perform A/B or multivariate tests to continuously improve our online services. For this purpose, AB Tasty collects statistical information about visitor traffic. This usage data (such as browser used, number of pages viewed/visits, order and duration of visits to a website, filling/emptying of a shopping basket, recording of the use of individual web pages [except in the check-out and registration process], etc.) is recorded anonymously and statistically evaluated. It is not possible to draw conclusions about a specific person or purchase. In addition, AB Tasty carries out geolocation (regional details of your location) using your IP address immediately when you visit the website; the IP address is deleted immediately after geolocation. Based on your interests, AB Tasty designs personalised pattern, which are encrypted and do not allow any conclusions to be drawn about you personally. Cookies are stored for the storage and recognition of site visitors and will be automatically deleted after a maximum duration of 13 months. Further information can be found in our cookie policy.

Opt Out: If you do not wish to participate in these tests, you can deactivate this function on the AB Tasty website (at https://www.abtasty.com/terms-of-use/) by following the instructions given there. If you delete your browser cookies, you will need to opt out again via this link. We would like to point out that with an opt-out, some functions of the website will not be available or will only be available to a limited extent.

Further information on data protection and the cookies can be found on AB Tasty's website: https://www.abtasty.com/terms-of-use/.

The legal basis for this processing is Art. 6 Para. 1 (a) GDPR.

6. YOTPO

If you have made a purchase on head.com we might send you an email with a request to review the purchased products. For this purpose, we use the service provider YotPo Inc, 400 Lafayette St. Fl. #4, New York, NY 10003, USA ("YotPo"). In addition, we use the services of said provider to display content from Instagram or a submitted review on our website, in our newsletter, on Google and/or on our social media channels as explained in detail below.

Use of these services is only permitted on the basis of our current Terms of Use, which you can find here.

Further information on data protection with regard to YotPo’s services can also be found on YotPo's website: https://www.yotpo.com/privacy-policy/.

6.1. RATINGS AND REVIEWS

Ratings and reviews shall help to provide an improved user experience of our web shop through individual and independent evaluations of our products and services by verified buyers and verified reviewers or simply interested users.

Everyone who has already had their own experience with one of our products and would like to share it has the opportunity to rate and review the respective product on head.com under the conditions described below. For this purpose, you simply have to access our review form via our website and provide the respective details. After you have submitted your review, you will receive a confirmation email asking you to confirm that you have written the submitted review. After your confirmation, we will include the note that the review was written by a verified reviewer so that our customers know they can trust it. If you fail to confirm your submission, no information will appear next to your name. Apart from that, confirming your review will not affect its display or publication. After you have made a purchase on our website you will receive different emails, including possibly a requests to review and to rate the purchased product(s) as verified buyer, a reminder to submit a review, if you have not already done so, and a thank you message in case that you have submitted a review. For this purpose we will forward your email address, name and details on the purchased products (like name, color and size, date of purchase, purchase ID) to YotPo, who acts as our processor in this regard.

Before submitting a product review we ask for your consent to the processing of the personal data provided by you in your review as described below and the use of such content provided by you according to this Privacy Policy and our Terms of Use. You can withdraw your consent at any time with effect for the future by sending an email to privacy@head.com.

To submit a review, you must fill in the required fields indicated in the review form. Furthermore, you can optionally provide additional information about yourself, the purchased product or the purchase or upload content. Which information is required and which is optional depends on the product purchased, as clearly shown in each review request, and therefore may vary. Information we may request include: Your review title, review text, email address, name, age, gender, height, fit, athletic skills, athletic style, width, length, grip, recommendation, rating of quality, rating of comfort, rating of vision, rating of flex, rating of warmth, frequency of usage, preferred usage, preferred sport, preferred specs, preferred features, preferred court as well as picture content you choose to upload in connection with your review.

After you submit your review you will also have the option to share your review with certain service providers (e.g. Facebook, Twitter, Google, LinkeIn, Instagram). After your submission, your review, your review title, your status as “verified buyer”, the date of review, your first name and the first letter of your last name (but not your clear featured name), any picture or video content provided by you and any other content provided by you within your review submission may be published on our website (e.g. in our image gallery or on our product pages), in our newsletter, on Google and/or on our social media channels to promote our products and services without charge.

If you choose to share your review with another service provider, said data will be also forwarded to the chosen service provider. Further information on the purpose and scope of data processing, as well as your rights and setting options for protecting your privacy can be found in the privacy policy of the respective service provider as listed under Section 3 of this Privacy Policy.

The legal basis for this processing is Art. 6 Para. 1 (a) and (f) GDPR.

6.2 Display of social media content

We also use the services of YotPo to display social media content from Instagram (an offering of Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA - hereinafter "Instagram") on our website in a widget. Specifically, we use YotPo to embed posts from third-party Instagram channels, which have been published on Instagram and are related to our products and/or services, on our website (e.g. in our image gallery or on our product pages), our social media channels and/or in our newsletters free of charge, provided that you have given us your consent to do so.

That’s how it works: When we see a post that we like (usually because we and/or our products have been tagged or mentioned by you on your Instagram channel), we will contact you via Instagram and ask you to consent to the use of the personal data contained therein (like your picture or video, text of you post, your Instagram username, time of post) in accordance with this Privacy Policy and our Terms of Use. Only if and after you consent to such use, which you can revoke any time with effect for the future by sending an email to privacy@head.com, your content may be published on our website (e.g. in our image gallery or on our product pages), our social media channels and/or in our newsletters to promote our products and services without charge. The content of the widget is then transmitted directly from Instagram to your browser through a connection to the Instagram servers and integrated into the website by the latter.

Further information on the purpose and scope of data processing, as well as your rights in this regard and setting options for protecting your privacy can be found in the terms of use and privacy policy of Instagram: https://help.instagram.com/.

You have the right to object to the creation of user profiles or the allocation, whereby you must contact the social media provider or Instagram directly to exercise this right. In addition, we point out that you can prevent this assignment by logging out of your Instagram profile before visiting the website and deleting the cookies used by Instagram. Alternatively, you can prevent the storage of cookies set by Instagram by adjusting your browser software accordingly.

The legal basis for this processing is Art. 6 Para. 1 (a) GDPR.

7. HOTJAR

On our website we use the Hotjar tool from Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta (“Hotjar”).

The use of Hotjar allows us to better track visitor behavior on our website and helps us understand how long users stay on which pages, which links are clicked, etc. This allows us to better adapt our offer and services to the needs of our users.

We process information such as the IP address of the device used (collected and stored anonymously), screen size, device type (unique device identifiers), information about the browser used, location (country only) and the preferred language for viewing our website using cookies and other technologies. Hotjar stores this information on our behalf in a pseudonymized user profile. You can managed and disable the use of Hotjar via your cookie settings.

The legal basis for this processing is Art. 6 Para. 1 (a) GDPR.

8. SALESFORCE

Data that you provide to us via our website (e.g. in forms for purchase, newsletter registration, as part of a prize game/contests or via your cookie settings) is currently stored in the Salesforce Service Cloud (salesforce.com Germany GmbH, Erika-Mann-Str. 31, 80636 Munich, Germany) on servers in the EU and are e.g.used to send order confirmations and shipment notices.

For sending our newsletters and for automated mailings (e.g. welcome mailing) we use the Salesforce Marketing Cloud. For this purpose, the newsletter subscriber's data is transferred from Service Cloud to Marketing Cloud. The Salesforce Marketing Cloud data is also generally stored and processed on Salesforce servers in the EU. Only in the event of a disaster are services restored in the USA.

Salesforce has committed itself with binding internal data protection rules in accordance with Art. 46 (2) b) and Art. 47 EU-DSGVO (so-called binding corporate rules) to maintain an appropriate level of data protection even when processing data outside the European Union.

Further information on data processing by Salesforce can be found here:

Salesforce privacy policy: https://www.salesforce.com/company/privacy/

Documents on Salesforce's compliance with the provisions of the GDPR: https://compliance.salesforce.com/en/gdpr

With the help of so-called web beacons and pixels, we receive information about the click behavior of users via the Marketing Cloud. Interaction data is stored in the Marketing Cloud directly on the user.

The legal basis for this processing is either based on our legitimate interest in using a customer relationship management system pursuant to Art. 6 Para. 1 (f) GDPR or on your consent pursuant to Art. 6 Para 1 (a) GDPR.

With regard to the exercise of your data subject rights under the GDPR we point out that these can be asserted most effectively with the Social Media providers. Only the social media providers have access to your personal data and can directly take appropriate measures and provide information to you. Should you nevertheless need help, please let us know.

For a detailed description of the respective processing operations and the opt-out options, please refer to the privacy policy of the respective service provider:  Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland), Privacy Policy: https://www.facebook.com/about/privacy/, Opt-Out: https://www.facebook.com/settings, www.youronlinechoices.com

Google/ YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland) – Privacy Policy: https://policies.google.com/privacy, Opt-Out: https://tools.google.com/dlpage/gaoptout

Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy Policy/ Opt-Out: https://help.instagram.com/519522125107875

Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA) – Privacy Policy: https://twitter.com/en/privacy, Opt-Out: https://help.twitter.com/en/safety-andsecurity/privacy-controls-for-tailored-ads

Pinterest (Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA) – Privacy Policy / OptOut: https://policy.pinterest.com/en-gb/privacy-policy.

TikTok (For users in EU/EEA/Switzerland: TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Irland; for users in UK: 6th Floor, One London Wall, London, EC2Y 5EB, United Kingdom) – Privacy Policy: https://www.tiktok.com/legal/privacy-policy

LinkedIn (For users in EU/EEA/Switzerland: LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland; for all other users: LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA) – Privacy Policy : https://www.linkedin.com/legal/privacy-policy, User Agreement: https://www.linkedin.com/legal/user-agreement, Cookie Policy / OptOut: https://www.linkedin.com/legal/cookie-policy