Functional description
The #trstd login is a button that can be integrated into the online presence of Trusted Shops or Trusted Shops partner companies (Community of Trust members). Using the #trstd login, visitors to the online presence can register directly for Trusted Shops services (becoming a Consumer Member) or log in to their existing Trusted Shops Member Account.
By storing a personal “secret” as part of the personalisation of the #trstd login, Consumer Members can verify after logging in that they are connected to the Community of Trust and that the company whose online presence includes the #trstd login has been verified as authentic by Trusted Shops.
Data protection regulations
As part of the integration of the #trstd login, Trusted Shops and you (Trusted Shops Business Member) are joint controllers in accordance with Art. 26 GDPR. This is governed by a Joint Controllership Agreement (JCA).
Trusted Shops does not use cookies or similar technologies to display the #trstd login. Further information on this can be found in the Data Protection Guideline – Information about Cookies.
You are responsible for integrating the #trstd login on the website and must ensure an appropriate legal basis.
The display of the #trstd login in the online presence is your responsibility. The integration enables registration and login to Trusted Shops. You are required to inform users about the integration of the #trstd login in your privacy policy. You are responsible for ensuring an appropriate legal basis and for complying with all related information obligations.
If Art. 6(1) sentence 1 lit. f GDPR is used as the legal basis, you are responsible for documenting the legal basis and carrying out a balancing of interests test. If Art. 6(1) sentence 1 lit. a GDPR is used as the legal basis, you are responsible for documenting the legal basis and ensuring that consent can be demonstrated.
Notes on implementation and sample texts for the privacy policy
If you use Trusted Shops widgets (e.g. Trustbadge, Review Sticker, #trstd login) in your online presence, you must adapt your privacy policy.
Trusted Shops provides information to users in all cases where Trusted Shops is responsible for data processing in the Trusted Shops privacy policy.
Sample text for your privacy policy:
The sample texts have been prepared with the utmost care but do not claim to be complete or accurate. They serve as drafting guidance for adapting the privacy policy in your online presence.
If you have individual questions, you should seek professional advice from a qualified lawyer.
Integration of the #trstd login / other widgets
To display Trusted Shops services (e.g. Trustmark, collected reviews, #trstd login), Trusted Shops widgets are integrated on this website. This serves to safeguard our legitimate interests in the optimal marketing of our products pursuant to Art. 6(1) sentence 1 lit. f GDPR, as part of a balancing of interests.
The #trstd login and the services promoted with it are an offer of Trusted Shops SE, Subbelrather Str. 15C, 50823 Cologne (“Trusted Shops”), with whom we are joint controllers pursuant to Art. 26 GDPR. In the following, we inform you within this privacy policy about the essential contractual contents in accordance with Art. 26(2) GDPR.
Within the framework of the joint controllership between us and Trusted Shops, please preferably contact Trusted Shops for data protection questions and to exercise your rights using the contact options provided in the privacy information. Regardless of this, you can always contact the controller of your choice. Your request will then be forwarded to the other controller for response if necessary.
Data processing when integrating the #trstd login / other widgets
The #trstd login is provided via a US-based CDN provider (content delivery network).
An adequate level of data protection is ensured by an adequacy decision of the European Commission, which is available for the USA. Service providers used in the USA are generally certified under the EU-U.S. Data Privacy Framework (DPF). Further information is available here. If service providers are not certified under the DPF, standard contractual clauses have been concluded as appropriate safeguards.
To display the #trstd login, the web server automatically stores a so-called server log file, which also contains your IP address, date and time of access, amount of data transferred and the requesting provider (access data), and documents the access. The IP address is anonymised immediately after collection, so that the stored data cannot be assigned to you. The anonymised data is used in particular for statistical purposes and error analysis.
Trusted Shops uses service providers in the areas of hosting, monitoring and logging. The legal basis is Art. 6(1) lit. f GDPR for the purpose of ensuring trouble-free operation. Processing may take place in third countries (USA and Israel).
An adequate level of data protection is ensured by adequacy decisions of the European Commission, which are available for the USA and Israel. Service providers used in the USA are generally certified under the EU-U.S. Data Privacy Framework. Further information is available here. If service providers are not certified under the DPF, standard contractual clauses have been concluded as appropriate safeguards.