Sonos Notifications Privacy Policy


The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration. When you use this website, various personal data are collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.

We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.

If data is transmitted by us to a subcontractor or third party, this is done on appropriate legal grounds pursuant to Art. 6 GDPR, e.g. for the fulfillment of our (pre)contractual obligations, on the basis of your consent or on the basis of our legitimate interests, as well as on the basis of a contract for order processing pursuant to Art. 28 GDPR. In the case of transfers to third countries, the processing is also carried out on the basis of appropriate safeguards pursuant to Art. 44 et seq. GDPR, such as an adequacy decision of the EU Commission on the level of data protection of a country or after conclusion of officially recognized special contracts with our subcontractors (so-called "standard contractual clauses").

Note on the responsible entity

The responsible party for data processing on this website is:

Lieser & Scheid Surprisely GbR
Mosel Bank 53
56073 Koblenz

Phone: +49 261 45099820
E-Mail: [email protected]

Authorized representatives: Mike Lieser and Christian Scheid

Data subject rights

Some data processing operations are only possible with your express consent. You can revoke an already given consent according to Art. 7 (3) GDPR with effect for the future at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Objection to the processing of your data

You may object at any time for the future to the processing of your data that is carried out on the basis of Art. 6 (1) lit. e or f GDPR in accordance with Art. 21 GDPR. The objection can be made in particular against processing for direct marketing purposes.

Right of appeal to a supervisory authority

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, your place of work or the place of the alleged infringement, if you are of the opinion that the processing of personal data concerning you violates the GDPR.

Information, blocking, deletion.

In accordance with Art. 15-17 GDPR, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing and, if applicable, a right to correction, blocking or deletion of this data. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time at the address given in the imprint.

Right to data portability

Pursuant to Art. 20 GDPR, you have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.

Data collection and transmission with our app.

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Use of our app

In order to provide our website, ensure its smooth operation and optimize the user experience for users, we or our hosting provider process content data, usage data, meta and communication data of interested parties and visitors to these pages on the basis of our legitimate interest pursuant to Art. 6 (1) lit. f GDPR. Without processing this data, you will not be able to access the website.

Each time you access the website, the provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • browser type and browser version
  • Operating system used
  • referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This data will not be merged with other data sources. This data is deleted as soon as it is no longer required, but at the latest after 2 weeks.


This app is operated via the hosting provider Hetzner Online GmbH (Industriestr. 25, 91710 Gunzenhausen, Germany) on the basis of a contract for order processing. The privacy policy can be found here: [

Furthermore, content such as PDFs and images ("assets") are loaded from the servers of Amazon Web Services, Inc. (410 Terry Avenue North, Seattle, WA 98109-5210, USA). The privacy policy can be found here:


Some of the Internet pages use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called "session cookies". They are automatically deleted after the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies allow us to recognize your browser on your next visit.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.

Cookies that are required to carry out the electronic communication process or to provide certain functions (e.g. shopping cart function) are stored on the basis of Art. 6 (1) lit. f GDPR. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. If you do not accept cookies or delete cookies that have already been set, this may lead to functional restrictions of the website.

In addition, third-party cookies are stored that allow us to analyze the use of the website so that we can measure and improve its performance. The storage is based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke any consent you have given at any time. For more information on these cookies and on revocation and its consequences, please refer to the relevant section in this privacy policy.

Contacting us by e-mail

If you send us inquiries by e-mail, personal data will be collected, at least your e-mail address. Which data is automatically transmitted in addition (e.g. full name) depends on the settings of your e-mail program. Which data you wish to transmit in the content or as an attachment of the e-mail is at your discretion.

The legal basis for the processing of the data is our legitimate interest in responding to your request in accordance with Art. 6 (1) lit. f GDPR. In the case of quotation requests and the like, the processing is additionally carried out on the legal basis of Art. 6 (1) lit. b GDPR, according to which the processing is lawful if it is necessary for the performance of a contract to which the data subject is a party or for the performance of pre-contractual measures. Without this data, we cannot receive or process your request.

The data you provide will remain with us until the purpose for storing the data no longer applies (e.g. after processing your inquiry has been completed). Mandatory legal provisions - in particular retention periods - remain unaffected.

External services and services


Our app is developed exclusively for Shopify and offered on the Shopify App Store. Through Shopify APIs we get access to store data, which we only partially share with the service we list here.

Besides store information like name, email, time zone, settings, we receive an information when a new order is received. The order number as well as the amount is stored with us for the purpose of history and statistics. Beyond that we do NOT store end customer data with us.

If the app is uninstalled, all data will be deleted after 48 hours.


We use the Sonos API to read the speakers and show you which ones belong to your Sonos account. You set which speakers we should use and in which volume sounds should be played. We only play sounds on your Sonos system if you explicitly request this or wish to set it up.

We do NOT get access to your Sonos access data (email, password). We only receive an access token and a refresh token that we can use to renew the access token if it has expired or will expire soon.

If you uninstall the app, all data will be deleted after 48 hours.


We use LogSnag to track and statistically capture certain events such as (installs, uninstalls, Sonos Connect, Sonos Refresh, etc.). This data is also used for customer support.


We use Rollbar to log any errors that occur. This also sends store metadata to Rollbar, including the Shopify store name and contact email address.


We use Postmark to send you emails. We send you emails when you install, uninstall, and when we delete all data. In addition, we may send you emails when we want to assist you with onboarding or conduct customer surveys.


We use Crisp for customer support. When you use the chat icon in the app to contact us, that communication takes place via Crisp. We automatically provide Crisp with your store email address and store name, as well as a hash of your Shopify store domain, so that conversations have a unique session.

Strapi CMS

We use Strapi CMS with our own hosting on a Hetzner cloud server. Through it we receive texts (FAQ, translations) but also images which are displayed in the app.

Google Forms

We may send you surveys, which we provide via Google Forms. If you participate in the surveys, the data collected there will be processed by Google. Participation in the surveys is voluntary.

Last Updated: 2023-04-13