| eBay Search Tool

Privacy Policy

Last Updated: 2025-06-23

1. Introduction

At Global Image, we are committed to protecting your privacy. This Privacy Policy explains how Global Image Consulting & Realisation, PG v. Tol , located at Hahnenstr.27, 50667 Koeln, Cologne, North Rhine-Westphalia, Germany ("we," "us," or "our"), collects, uses, and shares your personal data when you use our webspace platform (the "Service"). We are committed to protecting your privacy and handling your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) for users within the European Economic Area (EEA) and other relevant regulations worldwide. The data controller for the processing of your personal data is Global Image Consulting & Realisation, PG v. Tol .

2. Information We Collect

We collect the following types of information:

Account Information: When you register for an account, we collect personal data such as your email address, and password.
User Content: We store your saved searches, hidden items, and watchlists.
Usage Data: We may collect information about how you use the Service, such as the features you use, the files you access, the content you share, your search queries, and the dates and times of your activities.
Technical Information: We automatically collect certain technical information when you access or use our Service, including your IP address, browser type, operating system, device information (e.g., device identifiers), and referring URLs.
Cookies and Similar Technologies: We use cookies, web beacons, and other similar tracking technologies to collect information about your browsing activity on our Service and to personalize your experience. We use only essential cookies required for the functionality of the site, such as login sessions and preference storage. These cookies are not used for tracking or advertising purposes. By using this website, you consent to the use of these essential cookies.

3. How We Use Your Information

We use your personal data for the following purposes:

Providing the Service: To enable you to upload, store, edit, share, and search your User Content and to provide the core functionalities of the Service. This includes displaying your content to you and others you choose to share it with.
Account Management: To create and manage your account, verify your identity, communicate with you about your account and the Service, and provide customer support.
Personalization: To personalize your experience on the Service, such as recommending relevant content or features based on your usage.
Improving the Service: To analyze usage patterns, conduct research and development, and improve the functionality, performance, and user experience of our Service.
Security: To protect the security and integrity of our Service, detect and prevent fraud and abuse, and enforce our TOS.
Communication: To send you important notices, updates, and administrative messages related to the Service. With your consent where required by applicable law, we may also send you promotional materials and marketing communications about our Service and related offerings.
Legal Compliance: To comply with applicable laws, regulations, legal processes, and law enforcement requests.
We will process your personal data based on one or more of the following legal bases, depending on the specific purpose:

Performance of a Contract (Art. 6(1)(b) GDPR): Processing is necessary for the performance of the contract between you and us to provide the Service.
Legitimate Interests (Art. 6(1)(f) GDPR): Processing is necessary for our legitimate interests, such as improving our Service, ensuring its security, personalizing your experience, and for certain marketing communications (where these interests are not overridden by your rights and choices).
Consent (Art. 6(1)(a) GDPR): We may rely on your consent for certain processing activities, such as the use of specific cookies or marketing communications. You have the right to withdraw your consent at any time.
Legal Obligations (Art. 6(1)(c) GDPR): Processing is necessary for compliance with a legal obligation to which we are subject.

4. eBay API Usage

We use the eBay API to retrieve public product data based on your saved search parameters. We do not share your personal data with eBay. We do not access, collect, or store your eBay credentials, cookies, or official eBay watchlist.

5. Data Retention

You may delete your account at any time. Upon deletion, all associated personal data including your email address, password hash, and saved content will be permanently removed from our servers within 7 days.

6. Sharing of Your Information

We may share your personal data with the following categories of recipients:

Service Providers: We engage third-party service providers to assist us in providing and operating the Service, such as hosting providers (e.g., Our website is hosted by Strato GmbH, located in Germany. Strato is a GDPR-compliant hosting provider that ensures the security and protection of your data within the European Economic Area (EEA).), analytics providers, email delivery services, and customer support services. These providers have access to your personal data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose. We ensure that these providers are subject to contractual obligations regarding data protection and security.
Other Users (Based on Your Sharing Settings): When you choose to share your User Content with other users through the Service's sharing features, that content will be accessible to those users according to your settings. You are responsible for managing your sharing settings and the visibility of your User Content.
Legal Authorities: We may disclose your personal data to legal authorities, government agencies, or other third parties if required by law or in response to a valid legal request, such as a subpoena, court order, or government investigation.
Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred to the acquiring entity as part of the transaction. We will notify you via email and/or a prominent notice on our Service of any change in ownership or uses of your personal data.
Affiliates: We may share your personal data with our affiliates for internal business purposes, such as improving the Service and providing customer support.

7. International Data Transfers

Your personal data, including User Content, may be transferred to and processed in countries outside of your country of residence, including countries that may not have data protection laws that provide the same level of protection as those in your jurisdiction. When transferring personal data outside the European Economic Area (EEA), we implement appropriate safeguards in accordance with applicable data protection laws, such as relying on Standard Contractual Clauses (SCCs) approved by the European Commission or ensuring that the recipient country has been deemed to provide an adequate level of data protection under applicable law. By using the Service, you consent to the transfer of your personal data to these countries. You can request more information about the safeguards we use for international data transfers by contacting us.

8. Data Retention

We will retain your personal data for as long as your account is active or as necessary to provide you with the Service and fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. User Content will be retained as long as your account is active and you choose to keep it on the Service. When you request account deletion, we will take steps to delete or anonymize your personal data and User Content from our active systems in accordance with our data retention policies and applicable legal requirements. Please note that some data may be retained for a period of time for legitimate business purposes (such as maintaining records, resolving disputes, enforcing our agreements, and complying with legal obligations) or where it is not technically feasible to fully delete it.

9. Your Data Rights

Depending on your location and applicable data protection laws, you may have certain rights regarding your personal data, including:

Right of Access (Art. 15 GDPR): The right to know what personal data we hold about you and to obtain a copy of it.
Right to Rectification (Art. 16 GDPR): The right to request the correction of inaccurate or incomplete personal data we hold about you.
Right to Erasure ("Right to be Forgotten") (Art. 17 GDPR): The right to request the deletion of your personal data under certain circumstances.
Right to Restriction of Processing (Art. 18 GDPR): The right to request the restriction of the processing of your personal data under certain circumstances.
Right to Data Portability (Art. 20 GDPR): The right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
Right to Object (Art. 21 GDPR): The right to object to the processing of your personal data based on our legitimate interests or for direct marketing purposes.
Right to Withdraw Consent (Art. 7(3) GDPR): If we rely on your consent for processing your personal data, you have the right to withdraw your consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.
Right to Lodge a Complaint (Art. 77 GDPR): The right to lodge a complaint with a supervisory authority, particularly in the Member State of your habitual residence, place of work, or place of the alleged infringement if you consider that the processing of your personal data infringes applicable data protection laws. For users in Germany, the competent supervisory authority is: Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen, Kavalleriestraße 2-4, 40213 Düsseldorf, Germany.
To exercise any of these rights, please contact us at: info@pricecatch.com. We will respond to your request in accordance with applicable data protection laws. We may need to verify your identity before processing your request.

10. Data Security

We have implemented reasonable technical and organizational measures designed to protect your personal data and User Content against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include encryption of data at rest and in transit, regular security assessments, access controls, and employee training on data protection best practices. However, no method of transmission over the internet or method of electronic storage is completely secure, and we cannot guarantee the absolute security of your personal data.

Security measures

We take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing, as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons.

The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the access, input, transfer, safeguarding of availability and its separation. Furthermore, we have established procedures to ensure the exercise of data subjects' rights, the deletion of data, and responses to data compromise. Furthermore, we take the protection of personal data into account as early as the development or selection of hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.

Transmission of personal data

In the course of our processing of personal data, it may happen that the data is transferred to or disclosed to other bodies, companies, legally independent organizational units or persons. The recipients of this data may include, for example, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such cases, we comply with the legal requirements and, in particular, conclude appropriate contracts or agreements that serve to protect your data with the recipients of your data.

Data processing in third countries

If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, entities or companies, this is only done in accordance with the legal requirements.

Subject to express consent or contractually or legally required transfer, we process or have the data processed only in third countries with a recognized level of data protection, contractual obligation by so-called standard protection clauses of the EU Commission, in the presence of certifications or binding internal data protection regulations (Art. 44 to 49 DSGVO, information page of the EU Commission:https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).

Data deletion

The data processed by us will be deleted in accordance with the legal requirements as soon as their consents permitted for processing are revoked or other permissions cease to apply (e.g. if the purpose of processing this data has ceased to apply or it is not required for the purpose). If the data are not deleted because they are required for other and legally permissible purposes, their processing will be limited to these purposes. That is, the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for reasons of commercial or tax law or whose storage is necessary for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person.

As part of our privacy notices, we may provide users with additional information regarding the deletion as well as the retention of data that is specific to each processing operation.

Rights of the data subjects (GDPR)

As a data subject, you are entitled to various rights under the GDPR, which arise in particular from Art. 15 to 21 GDPR:

• Right of objection: You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6(1)(e) or (f) DSGVO; this also applies to profiling based on these provisions. If the personal data concerning you is processed for the purposes of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing; this also applies to profiling, insofar as it is related to such direct marketing.
• Right of withdrawal for consents: You have the right to revoke any consent you have given at any time.
• Right to information: You have the right to request confirmation as to whether data in question is being processed and to information about this data, as well as further information and a copy of the data in accordance with the legal requirements.
• Right to rectification: In accordance with the legal requirements, you have the right to request that the data concerning you be completed or that incorrect data concerning you be corrected.
• Right to erasure and restriction of processing: In accordance with the statutory provisions, you have the right to demand that data relating to you be deleted immediately or, alternatively, to demand restriction of the processing of the data in accordance with the statutory provisions.
• Right to data portability: You have the right to receive data concerning you, which you have provided to us, in a structured, common and machine-readable format in accordance with the legal requirements, or to request that it be transferred to another responsible party.
• Complaint to supervisory authority: In accordance with the law and without prejudice to any other administrative or judicial remedy, you also have the right to lodge a complaint with a data protection supervisory authority, in particular a supervisory authority in the Member State where you usually reside, the supervisory authority of your place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.

Cookies use

Cookies are small text files or other memory tags that store information on end devices and read information from the end devices. For example, to store the login status in a user account, a shopping cart content in an e-shop, the content accessed or functions used of an online offer. Cookies can also be used for various purposes, e.g. for purposes of functionality, security and convenience of online offers as well as the creation of analyses of visitor flows.

Notes on consent: We use cookies in accordance with the law. Therefore, we obtain prior consent from users, except when it is not required by law. In particular, consent is not required if the storage and reading of information, including cookies, is absolutely necessary to provide the user with a telemedia service (i.e., our online offering) expressly requested by the user. The revocable consent is clearly communicated to the users and contains the information about the respective cookie use.

Notes on the legal basis for data protection: The legal basis under data protection law on which we process users' personal data using cookies depends on whether we ask users for consent. If users consent, the legal basis for processing their data is their declared consent. Otherwise, the data processed with the help of cookies is processed on the basis of our legitimate interests (e.g. in the business operation of our online offer and improvement of its usability) or, if this is done in the context of the performance of our contractual obligations, if the use of cookies is necessary to fulfill our contractual obligations. We explain the purposes for which we process the cookies in the course of this privacy policy or as part of our consent and processing procedures.

Storage duration: With regard to the storage period, the following types of cookies are distinguished:

• Temporary cookies (also: session cookies): emporary cookies are deleted at the latest after a user has left an online offer and closed his end device (e.g. browser or mobile application).
• Permanente Cookies: Permanent cookies remain stored even after the terminal device is closed. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website again. Likewise, user data collected with the help of cookies can be used for reach measurement. Unless we provide users with explicit information about the type and storage duration of cookies (e.g., as part of obtaining consent), users should assume that cookies are permanent and that the storage period can be up to two years.

General information on revocation and objection (opt-out): Users can revoke the consents they have given at any time and also file an objection to processing in accordance with the legal requirements in Art. 21 DSGVO. Users can also declare their objection via their browser settings, e.g. by deactivating the use of cookies (whereby this may also limit the functionality of our online services). An objection to the use of cookies for online marketing purposes can also be made via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/ be explained.

Further guidance on processing operations, procedures and services:

• Processing of cookie data on the basis of consent:  We use a cookie consent management procedure in which the consent of users to the use of cookies, or the processing and providers named in the cookie consent management procedure, can be obtained and managed and revoked by users. Here, the declaration of consent is stored in order not to have to repeat its query and to be able to prove the consent in accordance with the legal obligation. The storage can take place on the server side and/or in a cookie (so-called opt-in cookie, or with the help of comparable technologies), in order to be able to assign the consent to a user or their device. Subject to individual information on the providers of cookie management services, the following information applies: The duration of the storage of consent can be up to two years. A pseudonymous user identifier is created and stored with the time of consent, information about the scope of consent (e.g., which categories of cookies and/or service providers), as well as the browser, system and end device used.

Presence in social networks (social media)

We maintain online presences within social networks and process user data in this context in order to communicate with users active there or to offer information about us.

We would like to point out that user data may be processed outside the European Union. This may result in risks for the users because, for example, the enforcement of the users' rights could be made more difficult.

Furthermore, user data is usually processed within social networks for market research and advertising purposes. For example, usage profiles can be created based on the usage behavior and resulting interests of the users. The usage profiles can in turn be used, for example, to place advertisements within and outside the networks that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users' computers, in which the usage behavior and interests of the users are stored. Furthermore, data independent of the devices used by the users may also be stored in the usage profiles (especially if the users are members of the respective platforms and are logged in to them).

For a detailed presentation of the respective forms of processing and the options to object (opt-out), we refer to the privacy statements and information provided by the operators of the respective networks.

In the case of requests for information and the assertion of data subject rights, we would also like to point out that these can be asserted most effectively with the providers. Only the providers have access to the users' data and can take appropriate measures and provide information directly. If you still need help, you can contact us.

• Types of data processed: Contact data (e.g. e-mail, telephone numbers); content data (e.g. entries in online forms); usage data (e.g. websites visited, interest in content, access times); meta/communication data (e.g. device information, IP addresses).
• Persons concerned: Users (e.g., website visitors, users of online services).
• Processing purposes: Contact requests and communication; feedback (e.g. collecting feedback via online form); marketing.
• Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO).

Further notes on processing operations, procedures and services:

• LinkedIn: Social Network; Service provider: LinkedIn Irland Unlimited Company, Wilton Plaza Wilton Place, Dublin 2, Irland; Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO); Website:https://www.linkedin.com; Privacy policy: https://www.linkedin.com/legal/privacy-policy; Order Processing Contract: https://legal.linkedin.com/dpa; Standard contractual clauses (guaranteeing the level of data protection in the case of processing in third countries) https://legal.linkedin.com/dpa; Possibility of objection (Opt-Out): https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
• Twitter: Social Network; Service provider: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Irland, Mutterunternehmen: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA; Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO); Privacy Policy: https://twitter.com/privacy, (Settings:https://twitter.com/personalization).

 

Plugins and embedded functions and content

We integrate functional and content elements into our online offer that are obtained from the servers of their respective providers (hereinafter referred to as "third-party providers"). These can be, for example, graphics, videos or city maps (hereinafter uniformly referred to as "content").

The integration always requires that the third-party providers of this content process the IP address of the user, since without the IP address they could not send the content to their browser. The IP address is thus required for the display of this content or function. We strive to use only such content whose respective providers use the IP address only for the delivery of the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. The "pixel tags" can be used to analyze information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user's device and may contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our online offer, as well as be linked to such information from other sources.

• Types of data processed: Usage data (e.g. web pages visited, interest in content, access times); meta/communication data (e.g. device information, IP addresses).
• Persons concerned: Users (e.g., website visitors, users of online services).
• Purposes of processing: Provision of our online offer and user-friendliness.
• Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO).

Further notes on processing operations, procedures and services:

• Integration of third-party software, scripts or frameworks (e.g. jQuery):  We integrate software into our online offer that we retrieve from servers of other providers (e.g. function libraries that we use for the purpose of presentation or user-friendliness of our online offer). In doing so, the respective providers collect the IP address of the user and may process this for the purpose of transmitting the software to the user's browser and for security purposes, as well as for the evaluation and optimization of their offer. - We integrate software into our online offer that we retrieve from servers of other providers (e.g. function libraries that we use for the purpose of presentation or user-friendliness of our online offer). In doing so, the respective providers collect the IP address of the users and may process this for the purpose of transmitting the software to the users' browsers and for security purposes, as well as for the evaluation and optimization of their offer; legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f) DSGVO).

11. Third-Party Links and Services

Our Service may contain links to third-party websites or services that are not owned or controlled by us. We are not responsible for the privacy practices of these third-party websites or services. We encourage you to review the privacy policies of those websites and services before providing any personal data.

12. Children's Privacy

Our Service is not intended for children under the age of 16. We do not knowingly collect personal data from children under this age. If you are a parent or guardian and become aware that your child has provided us with personal data, please contact us immediately. If we become aware that we have collected personal data from a child under the applicable age without verifiable parental consent, we will take steps to delete such information from our records.

13. Updates to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our data processing practices, legal requirements, or the features of our Service. We will notify you of any material changes by posting the updated Privacy Policy on our Service or by other reasonable means, such as email. The date of the latest revision will be indicated at the top of this document. We encourage you to review this Privacy Policy periodically for any updates. Your continued use of the Service after the effective date of any such changes constitutes your acceptance of the revised Privacy Policy.

14. Contact Information

If you have any questions or concerns about this Privacy Policy or our data processing practices, please contact us at:

PriceCatch.com c/o Global Image Consulting & Realisation
PG v. Tol
Hahnenstr.27, 50667 Koeln
Cologne, North Rhine-Westphalia, Germany
info[@]pricecatch.com

 

---