User Privacy Notice

1. Scope and updates of this User Privacy Notice

This User Privacy Notice applies to your use of this website and all ARMYSHARK applications, services (including payment services), products and tools (collectively the 'Services'), regardless of how you access or use these Services, including access via mobile devices and apps.

2. Learn more

This User Privacy Notice also applies if explicit reference is made to it via a link or in a similar manner, e.g. on websites of partners on which Services from ARMYSHARK are offered.

We may change this User Privacy Notice at any time by posting the revised User Privacy Notice on this website and indicating the effective date of the revised User Privacy Notice. You will be notified of any material changes to this User Privacy Notice via My Messages in My ARMYSHARK.

3. Data protection officer and contact

In those countries where we are required to do so by law, we have appointed data protection officers to oversee the protection of your personal data. If you have any questions about this User Privacy Notice or about data protection at ARMYSHARK in general, you can contact the ARMYSHARK data protection officer. Furthermore, if you have any questions or complaints regarding this User Privacy Notice, our global privacy standards (see section 6.1 Data transfers to ARMYSHARK under section 6. International data transfers below) or our handling of personal data, you can also contact ARMYSHARK. This applies regardless of whether we have appointed a data protection officer in your country or not. You can find all necessary information and contact details including a contact form on our ARMYSHARK website.

4. What personal data we collect and process

We collect your personal data when you use our Services, create a new ARMYSHARK account, provide us with information via a web form, add or update information in your ARMYSHARK account, participate in online community discussions or otherwise interact with us. We may also collect personal data from other sources.

In total, we collect the following personal data:

4.1 Personal data you provide when using our Services or creating an ARMYSHARK account

  • Data that identifies you, such as your name, address, telephone numbers or email addresses, your user name, or your VAT identification number that you provide when setting up your ARMYSHARK account or at a later date, and additional identification data and tax identification numbers that you provide when using our payment services as a seller.
  • Data regarding bids, purchases, or sales that you provide in a transaction.
  • Content that you share with other users through our messaging tools.
  • Financial information (e.g. credit card and account numbers, payment details) in connection with a transaction.
  • Postage, billing, and other information you provide in connection with the purchase or postage of an item, as well as information required for customs clearance (such as tax identification numbers or other identification numbers) and relevant postage information (such as shipment numbers and tracking information) if shipped through one of our programs.
  • In some cases: age, gender, nationality, interests and preferences.
  • You may provide us with additional information through a web form or by updating or adding information to your ARMYSHARK account, by participating in community discussions, member chats, inquiries, dispute resolution, customer service calls recorded with your consent, or if you contact us for any other reason regarding our Services.
  • Other data that we are required or entitled by applicable law to collect and process and that we need for your authentication or identification, or for the verification of the data we collect.

4.2 Personal data we collect automatically when you use our Services or create an ARMYSHARK account

  • Data that is generated as part of one of your transactions (bids, purchases, sales) or that is linked to your ARMYSHARK account as a result of a transaction in which you are involved, such as transaction amounts, time and location of transactions and payment methods.
  • Data that is generated through your other actions when you use our Services and which is linked to your ARMYSHARK account, e.g. when you place items in your shopping basket, place items on the watch list, save sellers, searches or interests.
  • Data regarding all other interactions with our Services, your advertising preferences, and your communications with us.
  • Computer and connection information, such as statistics regarding your use of services from ARMYSHARK, information on data traffic to and from websites, referral URL, information on advertisements, your IP address, your access times, your browser history data, your language settings and your weblog information.

4.3 Personal data we collect in connection with the use of cookies and similar technologies

We use cookies, web beacons and similar technologies to collect data while you use our Services. We collect this data from the devices (including mobile devices) that you use our Services with. The data collected includes the following usage- and device-related information:

  • Data about the pages you visit, the access time, frequency and duration of visits, the links on which you click and other actions you take as part of your use of our Services and in advertising and email content.
  • Data about your activities and interactions with our advertising partners including data about the advertisements you were shown, how often they were shown, when and where they were shown, and whether you took any action, such as clicking on an advertisement or making a purchase.
  • Your user segment.
  • Model or device type, operating system and version, browser type and settings, device ID or individual device identifier, advertisement ID, individual device token, and cookie-related data (e.g. cookie ID).
  • The IP address from which your device accesses the Services.

4.4 Personal data from other sources

We may also collect personal data about you from other sources and from third parties to the extent permitted by applicable law. In particular, this includes the following data:

  • Data from public sources (e.g. demographic data)
  • Data from credit agencies or bureaus (e.g. credit reports/checks)
  • Data from data providers (e.g. demographic, interest-based and online advertising-related data)

With regard to our payment services for sellers: data from government or other sources concerning any previous convictions of the respective seller, to the extent permitted by applicable law. We combine or connect the personal data we collect from you with data from these other sources. Where personal data is disclosed to us by third parties, we take steps to confirm that the information has been collected with your consent and/or that these third parties are otherwise legally permitted to disclose your personal data to us.

4.5 Social network data you share with us

  • We allow you to share personal data with social networks, to use social networks to create an ARMYSHARK account or to link your ARMYSHARK account to a social network. These social networks may automatically provide us with access to certain personal data they have stored about you (e.g. content you have viewed or enjoyed, information about the advertisements you have been shown or clicked on, etc.). You can determine the personal data that we can access through the privacy settings of each social network.
  • If you give us access to video content pages, your grant of access is your consent that we may, for at least two years, or until you withdraw your consent or are no longer connected to the social network, share with and collect from social networks information regarding your viewing of videos.
  • We may also use plug-ins or other technologies from various social networks. If you click on a link displayed through a social network plug-in, you voluntarily connect to that social network.

5. Purposes and legal basis for data processing and categories of recipients

We process your personal data for various purposes and pursuant to various legal bases. We process your personal data primarily to provide and improve our Services, to provide you with a personalized user experience on this website, to contact you about your ARMYSHARK account and our Services, to provide customer service, to provide you with personalized advertising and marketing communications, and to detect, prevent, mitigate and investigate fraudulent or illegal activity. We may also share your information with third parties for these purposes.

Below you will find a summary of the purposes for which we process your personal data, including the categories of recipients to whom we transmit personal data for the purposes stated, sorted by legal basis:

5.1 We process your personal data in order to fulfil our contract with you and to provide you with our Services

This includes the following purposes:

  • Processing of data relating to you or your company for the purpose of entering into a contract with you and executing it.
  • Provision of our Services, including but not limited to enabling and performing transactions with other users (including the transmission of your personal data to other users where necessary to perform the transaction, including in cases of terminated, failed or subsequently voided transactions), providing and enhancing features such as payment processing, ratings and ARMYSHARK account management, providing other services you may use (as described in connection with such services), and ensuring the functionality of our Services. In connection with the provision of our Services, we will send you notifications relating to the execution of transactions and the use of our Services in accordance with the communication preferences in your ARMYSHARK account.
  • Enabling the delivery of purchased items by logistics/delivery service providers including notifications in connection with the delivery (such as tracking information), the latter to the extent permitted by applicable law without your consent.
  • Provision of our payment services.
  • Solution of problems with your ARMYSHARK account, arbitration of disputes, providing other services within the scope of customer service as well as enforcement of fee claims. For these purposes, we may contact you via notification in My ARMYSHARK, email, telephone, SMS, push notification on your mobile device or by post.
  • Processing of general location data (such as IP address or postcode) in order to provide you with location-based services (such as radius search and other content that is personalized on the basis of your general location data).
  • Enforcement of our User Agreement, the Payments Services Agreement, this User Privacy Notice and other rules and policies.
  • Publication and promotion of your listings and related content on the websites or in the applications, services and tools of other ARMYSHARK corporate family members or cooperating third-party operators of websites, applications, services and tools. When we share the content of your listings and any related personal data with third parties, we do so only on the basis of an agreement that limits the use of such personal data by the third party to the purposes necessary to fulfil its contractual obligations to us. Third-party providers are contractually obliged to take appropriate security measures with regard to this data. Third-party providers are strictly forbidden to pass on personal data contained in your listings to other third parties. In case of data transmissions to ARMYSHARK corporate family members, such restrictions result from our Binding Corporate Rules (see section 1 Data transfers to ARMYSHARK corporate family members under section 6. International data transfersbelow).

Where necessary, we transmit your personal data to processors and the following recipients for one or several of the purposes described above:

  • Other ARMYSHARK users
  • External service providers and delivery companies (such as DHL, UPS etc.)
  • Payment service providers including Stripe and/or the PayPal Inc. group of companies
  • External operators of websites, applications, services and tools

5.2 We process your personal data in order to comply with legal obligations to which we are subject.

This includes the following purposes:

  • Participation in proceedings (including judicial proceedings) conducted by public authorities or government agencies, in particular, for the purpose of detecting, investigating and prosecuting illegal acts.
  • Prevention, detection and mitigation of illegal activities (e.g. fraud, money laundering and terrorist financing).
  • Ensuring the information security of our Services.
  • Retention and storage of your personal data to comply with specific legal retention requirements (for more information on ARMYSHARK's storage of your data, see Storage duration and erasure).

Where necessary, we transmit your personal data to processors and the following recipients for one or several of the purposes described above:

  • Law enforcement agencies, courts, government agencies or public authorities, intergovernmental or supranational bodies (in connection with our payment services provided in the EU for sellers in particular with regard to compliance with Luxembourg laws concerning FATCA dated 7 July 2015 and concerning the OECD Common Reporting Standard dated 18 December 2015).
  • Third-party service providers
  • Third parties who are involved in judicial proceedings, in particular, if they submit a legal order, court order or equivalent legal order to us.
  • Credit agencies, bureaus or associations, if required by applicable law (e.g. information on payment delays, payment defaults or other irregularities that may be relevant to your credit report).

5.3 We process your personal data in order to protect your vital interests or the vital interests of another natural person.

This includes the following purposes:

  • Prevention, detection, mitigation and investigation of unlawful activities that may result in impairment of your vital interests or the vital interests of another natural person, unless there is a statutory obligation to this effect.

Where necessary, we transmit your personal data to processors and the following recipients for one or several of the purposes described above:

  • Law enforcement agencies, courts, government agencies or public authorities, intergovernmental or supranational bodies
  • Third parties who are involved in judicial proceedings
  • External service providers

5.4 We process your personal data where necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms.

In order to reconcile our legitimate interests with your rights, we have introduced appropriate control mechanisms. On this basis, we process your data for the following purposes:

  • Participation in proceedings (including judicial proceedings) conducted by courts, law enforcement agencies, government agencies or public authorities, intergovernmental or supranational bodies, in particular for the purpose of detecting, investigating and prosecuting illegal acts, unless there is a statutory obligation to this effect, and we may legitimately assume that the disclosure of the data is necessary to avert imminent disadvantages or to report a suspicion of an illegal act. In such cases, we will only disclose what we believe is necessary, such as your name, city, postcode, telephone number, email address, (previous) user names, IP address, fraud complaints, bidding and listing history.
  • Protection of the legitimate interests of third parties in connection with civil law disputes, unless there is a statutory obligation to this effect, if we may legitimately assume that it is necessary to disclose the data to such third parties in order to avert imminent disadvantages.
  • Prevention, detection, mitigation and investigation of fraud, security breaches and other prohibited or unlawful activities, including the assessment of corresponding risks (e.g. through the use of captchas or the telephone number stored in your ARMYSHARK account for two-factor authentication), unless there is a statutory obligation to this effect.
  • Monitoring and improvement of the information security of our Services, unless there is a statutory obligation to this effect.
  • Performance of identity checks, creditworthiness and other financial standing checks, evaluation of applications and comparison of information for accuracy and verification purposes.
  • Automatic filtering and, where necessary, manual review of messages sent through our messaging tools to prevent fraudulent or suspicious activity or violations of our User Agreementor other rules and policies, including enforcing the prohibition of purchases and sales outside of ARMYSHARK, as further explained below under Filtering of messages sent via our messaging tools (see section Other important information regarding data protection).
  • Provision of functions for users that make the processing of transactions easier or more convenient (e.g. administration of several delivery addresses).
  • Analysis and improvement of the Services from ARMYSHARK, e.g. by reviewing information from users about blocked or crashed pages in order to identify and solve problems and to provide you with an improved user experience, including as part of product development.
  • Advertisements by post (according to your communication preferences in your ARMYSHARK account).
  • To the extent permitted by applicable law without your consent, communications with you via electronic mail (e.g. email) or telephone to offer you vouchers, discounts and special offers, to conduct opinion polls and surveys, and to inform you about our Services (according to your communication preferences in your ARMYSHARK account). If you do not wish to receive marketing communications from us, you can also unsubscribe by clicking on the link in the email you received. For technical reasons, the implementation may take a few days.
  • Notifications regarding promotions and information about our Services after logging into your account or in My Messages in My ARMYSHARK (according to your communication preferences in your ARMYSHARK account).
  • For users outside the European Economic Area (EEA): Personalization, measurement and improvement of our and third party advertisements in our online offerings, the online offerings of other ARMYSHARK corporate family members or third parties.
  • Customization of page content to display the items and services you may like based on the actions you take.
  • Evaluation of the quality and success of our email marketing campaigns (e.g. through analysis of opening and click rates).
  • Assessment of the service status (e.g. on the basis of tracking information if sellers use postage labels from delivery providers via ARMYSHARK or provide tracking numbers).
  • Provision of shared content and services (such as registration for services, transaction processing and customer service) with ARMYSHARK corporate family members or cooperating payment service providers.
  • Initiation, preparation and execution of a company acquisition, e.g. in the event of a merger with another company or takeover by another company. If such an event occurs, we will require the merged entity to comply with this User Privacy Notice with respect to your personal data. Should your personal data be processed for any purpose not specified in this User Privacy Notice, you will be informed in advance of the processing of your data for this new purpose.
  • Assertion of or defense against legal claims, including those asserted by one ARMYSHARK user against another ARMYSHARK user.

Where necessary, we transmit your personal data to processors and the following recipients for one or several of the purposes described above:

  • ARMYSHARK corporate family members
  • External service providers
  • Other ARMYSHARK users
  • Law enforcement agencies, courts, government agencies or public authorities, intergovernmental or supranational bodies
  • Third parties who are involved in judicial proceedings
  • Payment service providers including Stripe and/or the PayPal Inc. group of companies
  • Credit agencies or bureaus (e.g. information about payment delays, payment defaults or other irregularities that may be relevant to your credit report)
  • Other companies in the context of a company acquisition

Information about your right to object to processing based on our legitimate interests can be found below under Rights as a data subject and, with regard to the use of cookies and similar technologies, below under Cookies & similar technologies.

5.5 With your consent, we process your personal data for the following purposes:

  • For users within the European Economic Area (EEA): Personalization, measurement and improvement of our and third party advertisements in our online offerings, the online offerings of other ARMYSHARK corporate family members or third parties
  • Marketing communications by telephone or electronic mail (such as email or SMS), including communications by other ARMYSHARK corporate family members or by third parties, unless these communications are permitted without your consent under applicable law
  • Processing of your exact location data to provide location-based services
  • Processing of your personal data on the basis of your consent, which you have given so that we or third parties can enable you to use certain services or make them available to you

You can find information about your right to withdraw your consent below under Rights as a data subject and information with regard to the use of cookies and similar technologies below under Cookies & similar technologies.

Where necessary, we transmit your personal data to processors and the following recipients for one or several of the purposes described above:

  • ARMYSHARK corporate family members
  • External service providers
  • Other third parties with whom we partner to offer you specific services (as described at the collection of the respective user consent)
  • Third-party financial institutions with whom we partner to offer financial products to you, for them to provide joint content and services (such as, registration, transactions and customer support). These third-party financial institution partners will use your personal data to send you marketing communications only if you have requested their services

Without your consent, we will not pass on your personal data to third parties for their marketing or advertising purposes, nor will we sell or otherwise make it available to third parties for a fee.

5.6 Data Sharing between ARMYSHARK Corporate Family Members

As set out above under 'Personal data from other sources,' we also receive access to personal data about you from other ARMYSHARK corporate family members. This enables us, in particular, to provide you, with your consent as legally required, with information about products and services, which we believe might interest you, and improve our products, services, content, and advertising by analyzing your use of the services of other ARMYSHARK corporate family members, in particular through the matching of certain data (e.g. cookie IDs). Furthermore, this allows us to better prevent, detect, mitigate and investigate fraud, security breaches and other prohibited or unlawful activities, including the assessment of corresponding risks. We will also grant access to personal data about you to other ARMYSHARK corporate family members for the aforementioned purposes. To the extent that other ARMYSHARK corporate family members have access to your personal data, they will follow practices that are at least as restrictive as the practices described in this User Privacy Notice.

5.7 Additional information regarding our payment services for sellers

With regard to our payment services for sellers in the EU, we additionally point out that ARMYSHARK is subject to professional secrecy, which requires special transparency with regard to the processing and, in particular, the transmission of your personal data. We therefore expressly draw your attention to the fact that ARMYSHARK may pass on your personal data to trustworthy third parties and business partners where necessary to provide our payment services for sellers, as described above in this Section 5 of the User Privacy Notice. This includes in particular the following third parties and business partners:

  • Other payment service providers, including financial institutions
  • Companies offering financial products, analyses and scoring (e.g. credit agencies or bureaus)
  • Authorities, agencies and other governmental bodies (e.g. to combat fraud)
  • Auditors and other professional advisors

You can request a complete list of all third party providers and business partners for our payment services for sellers in the EU by contacting us.

5.8 Automated decision-making

We use technologies that are considered automated decision-making or profiling. We will not make any automated decisions about you that would significantly affect you unless such a decision is necessary for entering into, or the performance of, a contract with you, we have obtained your consent, or we are required by applicable law to use such technology. You will find information on your right to object to this processing of your data below under Rights as a data subject.

6. International data transfers

Some recipients of your personal data are located outside your country or have offices in countries where data protection laws may provide a different level of protection than the laws in your country. When transferring personal data to such recipients, we provide appropriate safeguards.

6.1 Data transfers to ARMYSHARK corporate family members

The transmission of personal data between different ARMYSHARK corporate family members is based on our European data protection principles, which are binding data protection regulations (BCR) or on the basis of other appropriate safeguards (e.g. standard data protection clauses issued or approved by the European Commission (2010/87/EU, 2001/497/EC or 2004/915/EC)). Through our Binding Corporate Rules, the ARMYSHARK corporate family members undertake to protect your personal data and to comply with data protection obligations.

6.2 Other data transfers (from the European Economic Area to third countries)

We will only transfer your personal data from the European Economic Area (EEA) to third countries, i.e. countries outside the EEA, on the basis of appropriate safeguards. Third countries providing an adequate level of data protection according to the European Commission currently include Andorra, Argentina, Canada (for companies covered by the Personal Information Protection and Electronic Documents Act), Switzerland, the Faroe Islands, Guernsey, the State of Israel, the Isle of Man, Japan, Jersey, New Zealand and Uruguay. Recipients in the USA can be partially certified according to the EU-U.S. Privacy Shield, so that appropriate safeguards for an international data transfer exist. In other cases, ARMYSHARK provides the necessary safeguards, e.g. through the conclusion of data protection contracts adopted by the European Commission (e.g. standard data protection clauses (2010/87/EU, 2001/497/EC or 2004/915/EC)) with the recipients, or through other measures provided for by law.

7. Storage duration and erasure

Your personal data will be stored by us and our service providers in accordance with applicable data protection laws to the extent necessary for the processing purposes set out in this User Privacy Notice (see Purposes and legal basis for data processing and categories of recipients for more information on the processing purposes). Subsequently, we will delete your personal data in accordance with our data retention and deletion policy or take steps to properly render the data anonymous, unless we are legally obliged to keep your personal data longer (e.g. for tax, accounting or auditing purposes). In Europe, the retention periods are generally between 6 and 10 years (e.g. for contracts, notifications and business letters). As far as legally permissible or required, we restrict the processing of your data instead of deleting it (e.g. by restricting access to it). This applies in particular to cases where we may still need the data for the execution of the contract or for the assertion of or defense against legal claims. In these cases, the duration of the restriction of processing depends on the respective statutory limitation or retention periods. The data will be deleted after the relevant limitation or retention periods have expired.

The specific retention periods for personal data are documented in our regional data retention guidelines. How long we retain personal data may vary depending on the Services we provide and our legal obligations under applicable national law. The following factors typically affect the retention period:

  • Necessity for the provision of our Services
    This includes such things as executing the User Agreement with you, maintaining and improving the performance of our products, keeping our systems secure, and maintaining appropriate business and financial records. Most of our retention periods are determined on the basis of this general rule.
  • Special categories of personal data
    If we store special categories of personal data, a shorter retention period is usually appropriate.
  • Consent-based processing of personal data
    If we process personal data on the basis of consent (including consent to the extended storage), we store the data for as long as necessary in order to process it according to your consent.
  • Statutory, contractual or other similar obligations
    Corresponding storage obligations may arise, for example, from laws or official orders. It may also be necessary to store personal data with regard to pending or future legal disputes. Personal data contained in contracts, notifications and business letters may be subject to statutory storage obligations depending on national law.

8. Rights as a data subject

Subject to possible restrictions under national law, as a data subject, you have the right to access, rectification, erasure, restriction of processing and data portability with regard to your personal data. In addition, you can withdraw your consent and object to our processing of your personal data on the basis of legitimate interests. You can also lodge a complaint with a supervisory authority.

Your rights in detail:

  • You can withdraw your consent to the processing of your personal data by us at any time. As a result, we may no longer process your personal data based on this consent in the future. The withdrawal of consent has no effect on the lawfulness of processing based on consent before its withdrawal.
  • You have the right to obtain access to your personal data that is being processed by us. In particular, you may request information on the purposes of the processing, the categories of personal data concerned, the categories of recipients to whom the personal data have been or will be disclosed, the envisaged period for which the personal data will be stored, the existence of the right to request rectification or erasure of personal data or restriction of processing of personal data or to object to such processing, the right to lodge a complaint with a supervisory authority, any available information as to the personal data’s source (where they are not collected from you), the existence of automated decision-making, including profiling and, where appropriate, meaningful information on its details. Your right to access may be limited by national law.
  • You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
  • You have the right to obtain from us the erasure of personal data concerning you, unless processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims. The right to erasure may be limited by national law.
    • You have the right to obtain from us restriction of processing to the extent that the accuracy of the data is disputed by you, the processing is unlawful, but you oppose the erasure of the personal data, we no longer need the data, but you need it to assert, exercise or defend legal claims or you have objected to the processing.
  • You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller ('right to data portability').
  • You have the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence, your place of work or the registered office of the controller.

If your personal data is processed on the basis of legitimate interests, you have the right to object to the processing of your personal data on grounds relating to your particular situation. This also applies to profiling. If your personal data is processed by us for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing.

The exercise of the above data subjects' rights (e.g. right to access or erasure) is generally free of charge. Where requests are manifestly unfounded or excessive, in particular because of their repetitive character, we may charge an appropriate fee (at most our actual costs) in accordance with the applicable statutory regulations or refuse to process the application.

Exercising your rights and managing your settings

You can exercise your rights as a data subject via our contact forms. In addition, you are of course free to contact us in any other way.

If you would like to change your preferences regarding ARMYSHARK notifications (including marketing communications), you can do so at any time in My ARMYSHARK. If you do not wish to receive marketing communications from us, you can also unsubscribe by clicking on the link in the email you received. For technical reasons, the implementation may take a few days. For information on how to manage your cookie and similar technology preferences, see the next section Cookies & similar technologies.

9. Cookies & similar technologies

When you use our Services, we and selected third parties may use cookies and similar technologies to provide you with a better, faster and safer user experience or to show you personalized advertising. Cookies are small text files that are automatically created by your browser and stored on your device when you use the Services. You can find detailed information about our use of cookies and similar technologies and your choices in our User Cookie Notice.

Our cookies and similar technologies have different functions:

  • They may be technically necessary for the provision of our Services
  • They help us optimize our Services technically (e.g. monitoring of error messages and loading times)
  • They help us improve your user experience (e.g. saving font size and form data entered)
  • They allow us to show you more relevant advertisements

We use cookies and similar technologies that remain on your device only as long as your browser is active (session cookies), as well as cookies and similar technologies that remain on your device longer (permanent cookies). Where possible, we take appropriate security measures to prevent unauthorized access to our cookies and similar technologies. A unique ID ensures that only we and/or selected third parties have access to cookie data.

Your choices regarding cookies

You are free to disable the use of cookies and similar technologies if this is supported by your device. You can manage your cookie settings in your browser or device settings. In addition, you can decide whether we may use cookies and similar technologies to show you personalized advertisements:

  • To manage the settings regarding the use of first-party cookies (and similar technologies) for advertising-related purposes, please go to Cookie Settings (you can also access this page directly via a link in the footer of our website)
  • You can find information about third-party cookies (and similar technologies) related to advertising and how to prevent their use on the following websites:
  • Users in the European Economic Area (EEA) can also use Advertising and related preferences to determine to what extent they consent to the processing of their personal data for advertising purposes via cookies (and similar technologies)

If you decide not to have your personal data processed by us for advertising purposes via cookies (and similar technologies), this does not mean that we will not show you advertisements. It simply means that these advertisements will not be personalized for you using first-party or third-party cookies, web beacons or similar technologies.

10. Data security

We protect your personal data through technical and organizational security measures to minimize risks associated with data loss, misuse, unauthorized access and unauthorized disclosure and alteration. To this end we use firewalls and data encryption, for example, as well as physical access restrictions for data centers and authorization controls for data access.

11. Other important information regarding data protection

This section contains important additional information about the protection of personal data in connection with the use of our Services, including whether you are required to provide personal data.

What happens when you share your personal data on our sites or applications?

Other users have access to the information you share on ARMYSHARK or disclose to other users. For example, other users can see your bids, purchases, items for sale, saved interests, sellers and searches, shopfronts, Feedback, ratings, product reviews and associated comments. Other users can also see any information you chose to share in your profile.

When you use our Services, your public user ID may be displayed and available to the public and associated with all of your public ARMYSHARK activity. Notices sent to other users about suspicious activity and notice violations on our sites may refer to your public user ID and specific items. Accordingly, if you use a username that allows others to identify you, these others may be able to identify your ARMYSHARK activities.

To help protect your personal data, we allow only limited access to other users' contact, postage and financial information as necessary to facilitate your transactions and collect payments.

Your responsibilities over transactional information you receive through ARMYSHARK

When you complete a transaction with another user (or a transaction has been cancelled, failed or subsequently invalidated), we will provide you with the other user's personal data (such as name, username, email address, contact information, postage and billing information). Independent from us, you are the controller of such data and responsible for any processing.

Unless you act for purely personal purposes, we recommend that you explain your data processing activities in your own privacy notice and protect the privacy of other users. As a seller, you must in any case comply with the applicable data protection laws and in particular protect the rights of other users as data subjects, e.g. give them the opportunity to access the personal data collected by you and demand that it be erased.

You may use the personal data that you have access to only for ARMYSHARK transaction-related purposes, or for other Services offered through ARMYSHARK (such as postage, fraud complaints, and member-to-member communications), and for purposes expressly consented by the user to whom the data relates. Using personal data of other users that you have access to for any other purpose constitutes a violation of our User Agreement.

Personal data relating to third parties

If you provide us with personal data relating to another person, you must obtain the consent of this person or the disclosure of the data to us must be otherwise legally permissible. You must inform the other person of how we process personal data in accordance with our User Privacy Notice.

Filtering of messages sent via our messaging tools

We filter the messages sent via our messaging tools automatically according to certain criteria and check conspicuous messages manually if necessary. The messages are first received by us and then forwarded to the recipient. All messages are automatically filtered according to certain criteria. If necessary, conspicuous messages are checked manually by our customer service. In the event of a violation, we reserve the right to block the transmission of the message and to restrict the purchase and sales functions of your ARMYSHARK account or to block your ARMYSHARK account.

This is to protect legitimate interests such as protecting against fraudulent or suspicious activities (e.g. spam, viruses, phishing or other illegal activities) or enforcing our User Agreement and our other rules and policies (e.g. illegal and other prohibited content), including but not limited to enforcing the prohibition of purchases and sales outside of ARMYSHARK.

Are you obliged to provide your personal data to us?

Some of the personal data that you provide to us (e.g. data by which we can identify you) are required to enter into the User Agreement and the Payments Services Agreement. The provision of any other personal data is voluntary, but may be necessary for the use of our Services, such as bidding, purchase and sales data to complete a transaction.

Children's Privacy

Our services are not intended for use by children. We do not knowingly collect personal data from users who are considered children under applicable national laws. According to our User Agreement, children are not permitted to use our Services.

Staying signed in

When you sign in to your account on our Services, we give you the option to stay signed in to your account for a certain amount of time. If you are using a public or shared computer, we encourage you not to choose to stay signed in. You or any other user of the computer/browser you signed in on will be able to view and access most parts of your account and take certain specific actions during this signed in period without any further authorization. The specific actions and account activities that you or any other user of this computer/browser may take include:

  • Bid, buy or make an offer on an item
  • Check out or add items to your cart
  • Purchase an item with PayPal using Faster Checkout (if enabled in your account)
  • View the activity header
  • View the My ARMYSHARK page
  • View or edit the Watch List or order details
  • View the profile page
  • Send member-to-member messages
  • Conduct after-sale activities, such as leaving Feedback, cancelling orders, requesting returns or submitting claims

If you attempt to change your password, User ID, update any other account information or attempt other account activity beyond those listed above, you may be required to enter your password.

You can typically end your signed-in session by either signing out and/or clearing your cookies. If you have certain browser privacy settings enabled, simply closing your browser may also end your signed-in session. If you are using a public or shared computer, you should sign out and/or clear your cookies when you are done using our Services to protect your account and your personal data.