Introduction
We ("we", "us", "our") take the protection of the data of users ("users" or "you") of our website and/or our mobile app (the "website" or "mobile app") very seriously and are committed to protecting the information that users provide to us in connection with the use of our website and/or our mobile app (collectively: "digital assets"). Furthermore, we are committed to protecting and using your data in accordance with applicable law.
This Privacy Policy explains our practices regarding the collection, use and disclosure of your information through the use of our digital assets (the "Services") when you access the Services through your devices.
Please read this Privacy Policy carefully and make sure you fully understand our practices with respect to your information before using our Services. If you have read this Policy, fully understood it, and do not agree with our practices, you must stop using our digital assets and Services. By using our Services, you acknowledge the terms of this Privacy Policy. Your continued use of the Services constitutes your consent to this Privacy Policy and any changes to it.
This Privacy Policy tells you:
-
How we collect data
-
What data we collect
-
Why we collect this data
-
Who we share the data with
-
Where the data is stored
-
How long the data is kept
-
How we protect the data
-
How we deal with minors
-
Updates or changes to the privacy policy
What information do we collect?
Here is an overview of the information we may collect:
De-identified and non-identifiable information that you provide during the registration process or that is collected through your use of our Services (“Non-Personal Information”). Non-Personal Information does not allow us to identify who collected it. Non-Personal Information that we collect consists primarily of technical and aggregated usage information.
Individually identifiable information, which is anything that can identify you or could reasonably be identified (“Personal Information”). The Personal Information we collect through our Services may include information requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses, and more. When we combine Personal Information with Non-Personal Information, we treat it as Personal Information while it is combined.
How do we collect data?
The main methods we use to collect data are listed below:
-
We collect data when you use our Services. So when you visit our digital assets and use Services, we may collect, record and store usage, sessions and related information.
-
We collect data that you provide to us yourself, for example when you contact us directly through a communication channel (such as an email with a comment or feedback).
-
We may collect data from third-party sources, as described below.
-
We collect data that you provide to us when you log into our Services through a third-party service provider such as Facebook or Google.
Why do we collect this information?
We may use your information for the following purposes:
-
to provide and operate our Services;
-
to develop, customize, and improve our Services;
-
to respond to your feedback, requests, and requests, and to provide assistance;
-
to analyze request and usage patterns;
-
for other internal, statistical, and research purposes;
-
to improve our data security and fraud prevention capabilities;
-
to investigate violations and enforce our terms and policies, and to comply with applicable law, regulation, or government requests;
-
to send you updates, news, promotional materials, and other information related to our Services. For promotional emails, you can choose whether you want to continue receiving them. If not, simply click the unsubscribe link in those emails.
Who do we share this information with?
We may share your information with our service providers to operate our services (e.g., storing data on third-party hosting services, providing technical support, etc.).
We may also disclose your information in the following circumstances: (i) to investigate, detect, prevent, or take action against illegal activities or other wrongdoing; (ii) to establish or exercise our rights of defense; (iii) to protect our rights, property, or personal safety, or the safety of our users or the public; (iv) in the event of a change of control of us or one of our affiliates (through a merger, acquisition, or purchase of (substantially) all of our assets, or otherwise); (v) to collect, retain, and/or manage your information through authorized third parties (e.g., cloud service providers) as appropriate for business purposes; (vi) to work with third parties to improve your user experience. To avoid any misunderstanding, we would like to point out that we may transfer, disclose or otherwise use non-personal information to third parties at our own discretion.
Cookies and Similar Technologies
When you visit or access our Services, we authorize third parties to use web beacons, cookies, pixel tags, scripts, and other technologies and analytics services ("Tracking Technologies"). These Tracking Technologies may enable third parties to automatically collect your information to improve the browsing experience on our digital assets, optimize their performance, provide a customized user experience, and for security and fraud prevention purposes.
To learn more, please read our Cookie Policy.
We will not share your email address or other personal information with advertising companies or ad networks without your consent.
Where do we store the data?
Non-Personal Information
Please note that our companies, as well as our trusted partners and service providers, are located around the world. For the purposes explained in this Privacy Policy, we store and process any non-personal information we collect in different jurisdictions.
How long is the data retained?
Please note that we retain the data we collect for as long as necessary to provide our services, comply with our legal and contractual obligations to you, resolve disputes, and enforce our agreements.
We may correct, amend, or delete inaccurate or incomplete data at any time at our sole discretion.
How do we protect data?
The hosting service for our digital assets provides us with the online platform that enables us to provide our services to you. Your data may be stored through our hosting provider's data storage, databases, and general applications. They store your data on secure servers behind a firewall, and they provide secure HTTPS access to most areas of their services.
Despite the measures and efforts taken by us and our hosting provider, we cannot and do not guarantee the absolute protection and security of any information you upload, post or otherwise share with us or others.
For this reason, we ask that you use strong passwords and, where possible, not send us or others any confidential information that you believe could cause you significant or lasting harm if disclosed. Additionally, because email and instant messaging are not considered secure forms of communication, we ask that you do not share any confidential information through any of these communication channels.
How do we deal with minors?
The Services are not intended for users who are under the age of majority. We will not knowingly collect any information from children. If you are under the age of majority, you should not download or use the Services or provide us with any information.
We reserve the right to request proof of age at any time so that we can verify that minors are using our Services. In the event that we become aware that a minor is using our Services, we may prohibit and block that user's access to our Services, and we may delete any data we have stored about that user. If you have reason to believe that a minor has provided information to us, please contact us as explained below.
Personal data
We will only use your personal data for the purposes set out in the Privacy Policy and only if we are satisfied that:
-
the use of your personal data is necessary to perform or enter into a contract (for example, to provide you with the Services themselves or customer or technical support);
-
the use of your personal data is necessary to comply with relevant legal or regulatory obligations, or
-
the use of your personal data is necessary to support our legitimate business interests (provided that this is always done in a manner that is proportionate and respects your data protection rights).
As an EU resident, you can:
-
request confirmation as to whether or not personal data concerning you are being processed and request access to your stored personal data and certain additional information;
-
request receipt of personal data that you have provided to us in a structured, common and machine-readable format;
-
request rectification of your personal data stored by us;
-
request erasure of your personal data;
-
object to our processing of your personal data;
-
request restriction of processing of your personal data, or
-
lodge a complaint with a supervisory authority.
Please note, however, that these rights are not absolute and may be subject to our own legitimate interests and regulatory requirements. If you have general questions about the personal information we collect and how we use it, please contact us as set out below.
In the course of providing the Services, we may transfer data across borders to affiliates or other third parties and from your country/jurisdiction to other countries/jurisdictions around the world. By using the Services, you consent to the transfer of your data outside the EEA.
If you are located in the EEA, your personal information will only be transferred to locations outside the EEA if we are satisfied that an adequate or equivalent level of protection of personal information exists. We will take appropriate steps to ensure that we have appropriate contractual arrangements in place with our third parties to ensure that appropriate safeguards are in place to minimize the risk of unlawful use, alteration, deletion, loss or theft of your personal information and that such third parties act in compliance with applicable laws at all times.
California Consumer Privacy Act Rights
If you use the Services as a California resident, you may have the right to request access to and deletion of your information under the California Consumer Privacy Act (“CCPA”).
To exercise your right to access and delete your information, please see how to contact us below.
We do not sell users’ personal information for the intent and purposes of the CCPA.
Updates or Changes to the Privacy Policy
We may revise this Privacy Policy from time to time at our sole discretion, and the version posted on the Site will always be the most current (see "Effective Date" notice). We encourage you to check this Privacy Policy periodically for changes. If there are any material changes, we will post a notice on our Site. Your continued use of the Services after we have posted notice of changes on our Site will constitute your acknowledgement and consent to the changes to the Privacy Policy and your agreement to be bound by the terms of those changes.
Contact
If you have general questions about the Services or the information we collect about you and how we use it, please contact us at:
Julia Schmid
Morgenrothstr. 7
81677 München
Germany