The responsible body for the collection, processing and use of your personal data is:
3300 N. Ashton Blvd
Suite 100 Lehi, UT 84043
Our Data Protection Officer is:
SBS Data Protect GmbH
22085 Hamburg, Germany
Managing Director: Thilo Noack
The user (this can always be an interested party, current or former customer or sales partner of our company) can visit our website anonymously. Every time a web page is accessed, his internet browser transmits the following data to our web server by default: the date and time of access, the sender IP address, the requested resource, the http method and the http user agent header. However, our web server stores this information separately from other data; it is not possible for us to assign this data to a specific person. After an anonymous evaluation for statistical purposes, this information is deleted immediately.
The personal data voluntarily transmitted to us by the user is protected by our company in a data centre in compliance with the current security standards and protected from unauthorised access by third parties. We will not pass on this data - subject to the following deviating transfer regulation - unless we are obliged to do so by law or official order or the user has given us express consent to do so.
We would like to explain what data we collect, what we use it for and how we protect your personal information.
§ 1. General Information about Data Protection and the Purpose of Storage
Which data are collected and processed for which purposes?
(1) If the user performs the customer registration via ZIJA, we collect the data required to perform the contractual relationship; these are: First and last name, address, date of birth and email address ("contact details").
We collect this data on the basis of Art. 6 para. 1 lit.b) GDPR on the basis of the contract concluded with the user for the purpose of contract performance.
(2) If the user as a customer implements an order or registers as a sales partner entitled to commission via ZIJA, we collect the data required for the execution of the respective contractual relationship; these are: First and last name, address, date of birth, email address, telephone number (contact data), based on your voluntary data: Company name and tax number, as well as bank details or credit card details (bank details), depending on the chosen payment method. In addition, we collect the order data, i.e. which products the user has ordered as a customer at which price (order data) and for sales partners, to which customers the sales partner brokers a product and which new sales partner he has recruited for the sale of our goods. We need this data in order to fulfil the contractual relationship. In the case of a customer order, the fulfilment of the contract consists in sending the ordered goods to the customer and in return to settle our purchase price claim.
When registering as a sales partner, the fulfilment of the contract consists of paying the sales partner the commissions for his intermediary activities and sending him ordered goods and, in return, settling our purchase price claim. We collect this data on the basis of Art. 6 para. 1 lit.b) GDPR on the basis of the contract concluded with the user for the purpose of contract fulfilment, and on the basis of Art. 6 lit. a) GDPR on the basis of your consent.
(3) If you use the website for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data, which are technically necessary for us to display our website to you and to guarantee stability and security.
Date and time of request
Time zone difference from Greenwich Mean Time (GMT)
Content of the request (specific page)
Request status/HTTP status code
The amount of data transmitted
The website making the request
Operating system and device
The language and version of the browser software
However, our web server stores this information separately from other data; it is not possible for us to assign this data to a specific person. After an anonymous evaluation for statistical purposes this information will be deleted immediately. The evaluation of the data is in the legitimate interest of ZIJA to optimise our offer. The legal basis is Art. 6 para. 1 p. 1 lit. f of the GDPR.
(4) In addition to the aforementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard disk in association with the browser you are using and through which the body which sets the cookie transmits certain information. Cookies cannot run programs nor deliver viruses to your computer. They serve to make our site more user-friendly and effective.
This website of ZIJA and our services use the following types of cookies, the scope and functionality of which are explained below:
a) Transient cookies are automatically deleted when you close the browser. This especially includes session cookies. These store a so-called session ID with which various requests from your browser can be assigned to the common session. This allows your computer to be recognised when you return to our website. Session cookies are deleted when you log out or close the browser.
b) Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie in question. You can delete the cookies by going to your browser's security settings at any time.
c) Third party cookies are not stored by ZIJA, but by third-party providers on a user's computer and can be read on the TP's computer the next time the website is visited. Unlike cookies, which are used by ZIJA itself, these are service providers that usually collect advertising-relevant information about users.
d) The Flash cookies used are not recorded by your browser, but by your Flash plug-in. These objects store the required data of your browser independently and do not have an automatic expiry date.
You can configure your browser settings according to your needs and, for example, refuse to accept third-party cookies or all cookies. If you do not wish the Flash cookies to be processed, you must install an appropriate add-on, e.g. "Better Privacy" for Mozilla Firefox (https://addons.mozilla.org/de/firefox/addon/betterprivacy/) or the Adobe Flash killer cookie for Google Chrome. You can prevent the use of HTML5 storage objects by using private mode in your browser. We also recommend that you regularly delete your cookies and your browser history manually.
Please note that if you deactivate cookies you may not be able to use all functions of this website.
§ 2. Data Collection and Transfer
(1) Personal data is only collected if the user provides it voluntarily during the registration process (or later order process). ZIJA uses the transmitted personal data (e.g. title, name, address, e-mail address) without separate express consent in accordance with the provisions of the applicable data protection law exclusively for the purpose of fulfilling the contract, i.e. for delivery and payment at customers as well as for commission payment at sales partners.
This data processing is carried out on the basis of Art. 6 para. 1 lit. b) GDPR on the basis of the contract concluded with you for the purpose of contract fulfilment.
(2) If the user places an order with ZIJA as a customer or sales partner, his contact and order data will be forwarded to our internal order department and accounting, to the forwarding agent, as far as this is necessary for the delivery of the goods, as well as to the respective payment provider.
The aforementioned third parties are also required to use the customer's personally identifiable data exclusively in accordance with the provisions of applicable data protection legislation. The aforementioned data processing shall be carried out on the basis of Art. 6 para. 1 lit.
b) GDPR on the basis of the contract concluded with you for the purpose of contract fulfilment.
(3) As a registered sales partner, you also have access to the back office. This back office provides you with an overview of the orders you have placed. The following information is displayed:
Order Number, Order Date, Reseller ID, Name, Products, Order Status and Payment Status, Default, Payment Amount, Commission Claim.
This information is required to calculate and track your commission claims. The legal basis for the processing of this data is Art. Art. 6 para. 1 s.1 lit. b of the GDPR.
You can also see a team overview in the back office. There you will find information about the sales partners you have recruited in your downline. The following information is displayed: user name, email, telephone number, user ID.
This information is required to calculate and track your commission claims. The legal basis for processing is Art. 6 para. 1 s.1 lit. b of the GDPR.
You will also find information on orders placed by your other sales partners and/or customers. The following information is displayed: Order number, order date, Reseller ID, name, products, order status and payment status, failure.
This information is required to calculate and track your commission claims. The legal basis for processing is Art. 6 para. 1 s.1 lit. b of the GDPR.
(4) To calculate the difference commission of the sales partners from your upline, the above information about your orders and your team overview will also be displayed to the sales partners in whose downline you are located.
The sales partners receive the following information from your Up-Line:
Order number, order date, name, Reseller ID, products, order status and payment status, failure. As an upline, you only receive information about your direct customers and business partners. If you are entitled to commissions from non-direct partners, you will see these in abridged form without providing personal data.
This information is required to calculate and track your up-line differential commission. The legal basis for processing is Art. 6 para. 1 p. 1 lit. a GDPR.
§ 3. Newsletter and Consent
If the user registers for sending newsletters to ZIJA, he gives ZIJA separate consent to use his personal data such as name and email address for the purpose of advertising our products and our company.
To subscribe to our newsletter, we use the double opt-in procedure. This means that after your registration we will send you an email to the specified email address in which we ask you to confirm that you would like the newsletter to be sent. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we store your IP addresses and the time of registration and confirmation. The purpose of the procedure is to be able to prove your registration and, if necessary, to clarify a possible misuse of your personal data.
The only required information for sending the newsletter is your email address. Any other further information is voluntary and is used to address you personally. After your confirmation we will save your email address for the purpose of sending you the newsletter.
You can revoke your consent to receive the newsletter at any time and unsubscribe from the newsletter. You can declare your revocation by clicking on the link provided in each newsletter email, via the form on our website, by sending an email to email@example.com with the contact data specified at the beginning of this data protection declaration.
We would like to point out that we evaluate your user behaviour when sending the newsletter. For this analysis, the emails sent contain web beacons or tracking pixels which are one pixel image files and are stored on our website. For evaluation purposes, we link the above data and web beacons to your email address and an individual ID. The data will only be collected anonymously, so the IDs are not linked to your personal data and are not directly linked to your person. You can object to this tracking at any time by clicking on the separate link provided in each email or by informing us of another contact method. The information is stored for as long as you have subscribed to the newsletter. After a cancellation we store the data purely statistically and anonymously.
This data processing takes place on the basis of your consent. The legal basis for this is Art. 6 para. 1 p. 1 lit. a GDPR
§ 4. Data Privacy Information
(1) How secure is data transfer to ZIJA?
All data provided by the user to ZIJA is encrypted and transmitted using the SSL (Secure Socket Layer) method. SSL is a proven and globally used encryption system that allows your browser to automatically encrypt your data before submitting it to us.
(2) How secure is my data on the ZIJA database?
We employ high security standards for our database and internet servers in order to ensure effective protection against loss, misuse, unauthorised access, disclosure, modification and deletion of your data.
§ 5. Duration of Processing
We process your data only as long as it is necessary for the fulfilment of our contract or applicable legal regulations. If you wish your data to be deleted, we will delete your data immediately, provided that the deletion does not conflict with legal retention obligations. In all other respects, your data will be deleted with the complete processing of the contract.
§ 6. Services Used
We use Google Analytics only with activated IP anonymization. This means that the IP address of the user is shortened by Google within the member states of the European Union or in other countries that are party to the Agreement on the European Economic Area. Only in exceptional cases shall the full IP address be transferred to a Google server in the USA and truncated there. The IP address sent by your browser will not be connected with other data from Google.
For more information on data use for advertising purposes by Google, on options for cessation and redress, please visit the Google websites: https://www.google.com/intl/de/policies/privacy/partners/ ("How Google uses data when you use of sites or apps of our partners"), http://www.google.com/policies/technologies/ads("Use of data for advertising purposes"), http://www.google.de/settings/ads ("Administering information Google uses to display advertising") and http://www.google.com/ads/preferences/("Decide which ads Google shows you").
Alternatively, the user can prevent the collection by Google Analytics by clicking on the following link. This sets an opt-out cookie that prevents the future collection of your data when visiting this website:
Set "Opt-out-Cookie" for Google Analytics here
Please note that if the user deletes the cookies in his browser settings, this may result in the opt-out cookie also being deleted and may have to be reactivated by the user".
This data processing is carried out on the basis of Art. 6 para. 1 lit. f GDPR to protect our legitimate interests, namely to optimise our offer.
(2) ZIJA uses social plug-ins ("plug-ins").
We currently use the following plug-ins: Facebook, Google+, Twitter, Instagram, Pinterest, Vimeo, YouTube, and LinkedIn.
We use what is called the two-click solution. This means that if you visit our site, initially no personal data will be passed on to the providers of these plug-ins. You can recognise the provider of the plug-in by the marking on the box above its initial letter or the logo. We offer you the possibility to communicate directly with the provider of the plug-in via the button. Only if you click on the marked field and thereby activate it will the plug-in provider receive the information that you accessed from the corresponding website of our online offer. In addition, the data mentioned under section § 3 of this declaration will be transmitted. In the case of Facebook, the IP address is anonymised immediately after collection, according to the respective provider in Germany. By activating the plug-in, data is automatically transmitted to the respective plug-in provider and stored there (US providers in the USA). Since the plug-in provider collects data mainly via cookies, we recommend that you delete all cookies using your browser's security settings before clicking on the greyed-out box.
We have no influence on the data collected and data processing processes, nor are we aware of the full extent of data collection, the purposes of processing, the storage periods. We also have no information on the deletion of the data collected by the plug-in provider.
The plug-in provider stores the data collected about you as user profiles and uses these for the purposes of advertising, market research and/or demand-oriented design of its website. Such evaluation is also made for users who are not logged in, to display customised advertising and to inform other users of the social network about your activities on our website. You have a right to object to the creation of these user profiles. You must contact the respective plug-in provider to exercise this right. Through the plug-ins we offer you the possibility to interact with social networks and other users so that we can improve our offer and make it more interesting for you as a user.
The data is passed on regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in with the plug-in provider, your data collected with us will be directly assigned to your existing account with the plug-in provider. When you activate the activated button and link the page, for example, the plug-in provider also stores this information in your user account and communicates this to your contacts in public. We recommend that you log out regularly after using a social network, especially before activating the button, as this way you can avoid being assigned to your profile with the plug-in provider.
For more information on the purpose and extent of the data collection and its processing by the plug-in provider, please refer to the privacy statements of these providers provided below. Here, you will also find further information on your rights and settings options for protecting your privacy.
Addresses of the respective plug-in providers and URL with their data protection information:
Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; more information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on-other#applications and http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook has submitted to the EU-US privacy shield, https://www.privacyshield.gov/EU-US-Framework
Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; https://www.google.com/policies/privacy/partners/?hl=de. Google has submitted to the EU-US privacy shield (https://www.privacyshield.gov/EU-US-Framework).
Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA; https://twitter.com/privacy. Twitter has submitted to the EU-US privacy shield, https://www.privacyshield.gov/EU-US-Framework.
Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA. Instagram has submitted to the EU-US privacy shield (https://www.privacyshield.gov/EU-US-Framework).
YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA. YouTube is a subsidiary of Google LLC, which is subject to the EU-US Privacy-Shield, https://www.privacyshield.gov/EU-US-Framework. Information on data protection: https://policies.google.com/privacy?hl=en&gl=en
Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA Further information on data protection can be found at: https://about.pinterest.com/de/privacy-policy.
Vimeo LLC, 555 West 18th Street, New York, NY 10011, USA. Further information on data protection can be found at: https://vimeo.com/privacy. Vimeo has submitted to the EU-US privacy shield, https://www.privacyshield.gov/EU-US-Framework.
Beyond the aforementioned data protection policy, no personal information transmitted to ZIJA will be made accessible to third parties without your specific consent, unless this is required by legal or official order.
§ 7. Rights of the User as Data Subject
(1) The user may at any time
- receive information about the data stored or processed by him through ZIJA;
- request correction or deletion of his data;
- restrict the processing of his data;
- object to the processing of his data;
- demand the transferability of personal data.
Support is available for this purpose at email or the postal address mentioned at the beginning of this document.
(2) The user may also lodge a complaint with the data protection supervisory authority. The competent supervisory authority is the one at the user's place of residence.