Arts Unique Store

Privacy Policy

Last updated: January 2026 · Arts Unique Store — store.arts-unique.com

1. Data Controller

Arts Unique
Andreas Burget
Spitzackerweg 13
79576 Weil am Rhein
Germany

Email: store@arts-unique.com
Phone: +49 (0) 7621 4 24 89 90

2. Overview

This Privacy Policy explains what personal data we collect when you visit or make a purchase at store.arts-unique.com, how we use it, and what rights you have under the General Data Protection Regulation (GDPR).

We operate a self-hosted digital product store. When you purchase a product, you receive a license key immediately — no third-party licensing platform is involved. Your data stays with us and our payment processor, Stripe.

We do not use automated decision-making or profiling. Our store is intended for adults aged 18 and over.

3. Data We Collect and Legal Bases

3.1 Purchase & License Delivery

When you complete a purchase, we collect:

  • Email address (for license key delivery and order confirmation)
  • Name (for invoicing)
  • Country (for VAT determination)
  • Order details (product, amount, currency, date)
  • License key issued to you

Legal basis: Contract performance (Art. 6(1)(b) GDPR) and legal obligation (Art. 6(1)(c) GDPR) for invoicing and tax purposes.

3.2 Optional Account

You may create an optional account to manage your licenses, download updates, and view order history. If you do, we additionally store:

  • Username and password (hashed)
  • Account creation date
  • License activations linked to your account

Legal basis: Consent (Art. 6(1)(a) GDPR). You can delete your account at any time.

3.3 License Validation

Our software products perform license key validation against our server. During validation, we receive:

  • Your license key
  • The domain or machine identifier the software is activated on
  • Timestamp of the activation request

This data is used solely to verify license validity and enforce activation limits. No usage data, telemetry, or personal content is transmitted during validation.

Legal basis: Contract performance (Art. 6(1)(b) GDPR).

3.4 Support Requests

If you contact us via email, we store your email address and the content of your message for the duration of the support interaction and as required by retention obligations.

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) and, where applicable, legal obligation (Art. 6(1)(c) GDPR).

3.5 Server Logs

Our web server automatically records standard access logs, including:

  • IP address (anonymised after 7 days)
  • Browser type and version
  • Pages visited and timestamps
  • Referrer URL

Logs are used solely for security monitoring and technical troubleshooting.

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR).

4. Payment Processing — Stripe

Payments are processed exclusively by Stripe Payments Europe, Ltd., a PCI-DSS certified payment processor. When you check out, you submit payment details directly to Stripe. We never see or store your card number, CVV, or full payment credentials.

Stripe may collect and process your payment data, IP address, and device information in accordance with their own privacy policy: stripe.com/privacy

We receive from Stripe only a payment confirmation, transaction ID, and the last four digits of the card used — solely for order records.

Legal basis: Contract performance (Art. 6(1)(b) GDPR).

5. Right of Withdrawal & Digital Products

5.1 General Right of Withdrawal

As a consumer within the EU, you generally have the right to withdraw from a purchase within 14 days without giving any reason (§ 355 BGB, EU Consumer Rights Directive 2011/83/EU).

5.2 Expiry of the Right of Withdrawal for Digital Products

For digital content not supplied on a physical medium (such as license keys and software downloads), the right of withdrawal expires before the end of the 14-day period once delivery has begun, provided that:

  1. You have given your express consent to delivery beginning immediately, and
  2. You have acknowledged that you thereby lose your right of withdrawal.

At checkout, you are asked to confirm both conditions explicitly. Once your license key has been delivered, the right of withdrawal is forfeited in accordance with § 356 Abs. 5 BGB.

5.3 Withdrawal Form

If withdrawal is applicable in your case (e.g. delivery has not yet taken place), you may use the following model form:

Model Withdrawal Form

To: Arts Unique, Andreas Burget, Spitzackerweg 13, 79576 Weil am Rhein, Germany
Email: store@arts-unique.com

I/We () hereby give notice that I/We () withdraw from my/our () contract of sale of the following goods () / for the provision of the following service (*):

Ordered on () / received on (): _______________
Order number: _______________
Name of consumer(s): _______________
Address of consumer(s): _______________
Signature of consumer(s) (only if this form is notified on paper): _______________
Date: _______________

(*) Delete as appropriate.

5.4 Voluntary Refund Policy

Although the right of withdrawal does not apply once a license key has been delivered, we offer a 14-day voluntary refund if the product has a critical defect that cannot be resolved, or if the product does not work in your environment as described. Contact us at store@arts-unique.com with your order number and a description of the issue.

6. Invoicing & Tax Records

We are required by German law to retain invoicing data (name, address, order amount, VAT status) for 10 years. This data cannot be deleted on request during the statutory retention period, but is restricted from any other use.

7. Data Sharing

We do not sell, rent, or trade your personal data. Data is shared only as follows:

  • Stripe — payment processing (see Section 4)
  • Hosting provider — server infrastructure; bound by data processing agreement
  • Legal authorities — only if required by law

No data is transferred to advertising networks or analytics platforms.

8. Data Retention

Data Retention Period
Order & invoice records 10 years (legal obligation)
License activation logs Duration of license validity
Optional account data Until account deletion
Support correspondence 3 years after resolution
Server logs (raw IP) 7 days, then anonymised

9. Your Rights (GDPR)

You have the right to:

  • Access (Art. 15 GDPR) — request a copy of the data we hold about you
  • Rectification (Art. 16 GDPR) — correct inaccurate data
  • Erasure (Art. 17 GDPR) — request deletion, where no legal retention obligation applies
  • Restriction (Art. 18 GDPR) — limit processing in certain circumstances
  • Portability (Art. 20 GDPR) — receive your data in a structured, machine-readable format
  • Objection (Art. 21 GDPR) — object to processing based on legitimate interest
  • Withdraw consent (Art. 7(3) GDPR) — at any time, where processing is based on consent

To exercise any of these rights, contact us at store@arts-unique.com. We will respond within 30 days.

You also have the right to lodge a complaint with the supervisory authority in Baden-Württemberg:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg
lfdi.bwl.de

10. Cookies

We use only essential cookies required for the store to function (session management, CSRF protection, cart state). No tracking or marketing cookies are set without your explicit consent.

If you create an account or are logged in, an authentication cookie is stored for the duration of your session.

11. Security

We take appropriate technical and organisational measures to protect your data, including TLS encryption for all data in transit, hashed password storage, and restricted access controls on our systems.

12. Automated Decision-Making

We do not use automated decision-making or profiling as defined in Art. 22 GDPR.

13. Minors

Our store is intended for users aged 18 and over. We do not knowingly collect personal data from minors. If you believe a minor has submitted data to us, please contact us and we will delete it promptly.

14. Changes to This Policy

We may update this policy from time to time. The date at the top of this page reflects the latest revision. For significant changes, we will notify registered account holders by email.

15. Contact

For any privacy-related questions or requests:

Arts Unique — Andreas Burget
store@arts-unique.com
Spitzackerweg 13, 79576 Weil am Rhein, Germany

We use cookies to ensure our website functions properly and to improve your experience. You can customize your preferences below. Privacy Policy

Cookie Preferences

Choose which cookies you want to allow.

Essential

Required for basic functionality like login, cart, and security. Cannot be disabled.

Analytics

Help us understand how visitors use our website to improve the experience.

Marketing

Used to deliver relevant advertisements and track campaign performance.

Privacy Policy