Privacy policy
1. data protection at a glance
General information
The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data is any data by which you can be personally identified. For detailed information on the subject of data protection, please refer to our data protection declaration listed below this text.
Data collection on our website
Who is responsible for data collection on this website?
Data processing on this website is carried out by the website operator. You can find his contact details in the imprint of this website.
How do we collect your data?
On the one hand, your data is collected by you providing it to us. This can be, for example, data that you enter in a contact form.
Other data is collected automatically by our IT systems when you visit the website. This is mainly technical data (e.g. Internet browser, operating system or time of page view). This data is collected automatically as soon as you enter our website.
What do we use your data for?
Some of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior.
What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have a right to demand the correction, blocking or deletion of this data. For this purpose, as well as for further questions on the subject of data protection, you can contact us at any time at the address given in the imprint. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
Data collection in our app
Personal data processed for the following purposes and through the use of the following services:
Device permissions to access personal dataPersonal data: App Reminders authorization; Contact authorization.
Firebase Cloud: FirestorePersonal Data: Usage data; various types of data, as described in the service’s privacy policy
App Store ConnectPersonal Data: User ID
Firebase: AuthenticationPersonal data: Email
Payments processed through the Apple App StorePersonal Data: Tracker
Firebase: NotificationsPersonal data: various types of data, as described in the service’s privacy policy
Twilio: Personal Data: Phone number
Push Notifications: This application may send push notifications to the user to achieve the purposes stated in this Privacy Policy.In most cases, users can opt out of receiving push notifications by accessing their device settings, such as mobile notification notifications, and then changing those settings for this application, for some or all applications on that device. Users must be aware that disabling push notifications may negatively impact that application and its usefulness.
User Data Protection Level: This application shares user data only with carefully selected third parties that ensure a level of data protection equivalent to that described in this Privacy Policy and provided for by applicable law. For more information about the processing of personal data and privacy policies, please refer to the privacy statements of such third parties.
Analysis tools and third-party tools
When visiting our website, your surfing behavior may be statistically analyzed. This is done primarily with cookies and with so-called analysis programs. The analysis of your surfing behavior is usually anonymous; the surfing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. For details, please refer to our privacy policy under the heading “Third-party modules and analysis tools”.
You can object to this analysis. We will inform you about the objection options in this data protection declaration.
2. general notes and obligatory information
Data protection
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
When you use this website, various personal data are collected. Personal data is data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. Complete protection of data against access by third parties is not possible.
Note on the responsible party
The responsible party for data processing on this website is:
Dietmar Zipfel
In the drake reason 20A
13503 Berlin
The responsible body is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data (e.g. names, e-mail addresses or similar).
Revocation of your consent to data processing
Many data processing operations are only possible with your express consent. You can revoke an already given consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Right of appeal to the competent supervisory authority
In the event of violations of data protection law, the data subject has a right of appeal to the competent supervisory authority. The competent supervisory authority in matters of data protection law is the state data protection commissioner of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
Right to data portability
You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
Information, blocking, deletion
Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient and the purpose of data processing and, if necessary, a right to correction, blocking or deletion of this data. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time at the address given in the imprint.
Objection to advertising e-mails
We hereby object to the use of contact data published within the framework of the imprint obligation to send advertising and information material that has not been expressly requested. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam e-mails.
3. data collection on our website
Cookies
The internet pages partly use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted after the end of your visit. Other cookies remain stored on your terminal device until you delete them. These cookies allow us to recognize your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.
Cookies that are required to carry out the electronic communication process or to provide certain functions that you have requested (e.g. shopping cart function) are stored on the basis of Art. 6 (1) lit. f DSGVO. The website operator has a legitimate interest in storing cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. cookies for analyzing your surfing behavior) are stored, these are treated separately in this data protection declaration.
Server log files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
browser type and browser version
Operating system used
referrer URL
Host name of the accessing computer
Time of the server request
IP address
This data is not merged with other data sources.
The basis for data processing is Art. 6 (1) lit. b DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.
Processing of data (customer and contract data)
We collect, process and use personal data only to the extent that they are necessary for the establishment, content or modification of the legal relationship (inventory data). This is done on the basis of Art. 6 (1) lit. b DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures. We collect, process and use personal data about the use of our Internet pages (usage data) only insofar as this is necessary to enable the user to use the service or to bill the user.
The collected customer data will be deleted after completion of the order or termination of the business relationship. Legal retention periods remain unaffected.
Data transfer upon conclusion of a contract for services and digital content
We transmit personal data to third parties only if this is necessary in the context of the contract, for example, to the credit institution entrusted with the processing of payments.
Further transmission of data does not take place or only if you have expressly consented to the transmission. Your data will not be passed on to third parties without your express consent, for example for advertising purposes.
The basis for data processing is Art. 6 para. 1 lit. b DSGVO, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.
4. data collection in our app
Types of data collected
Personal data processed by this application independently or through third parties include: Usage Data; Email; Phone Number; Tracker; Contact Authorization; App Reminders Authorization; Various Data Types; User ID.
Full details of each type of personal data processed are provided in the designated sections of this Privacy Policy or selectively through explanatory texts displayed prior to data collection.
Personal data may be provided voluntarily by the user or, in the case of usage data, may be collected automatically when this application is used.
Unless otherwise specified, the provision of all data requested by this application is mandatory. If the user refuses to provide the data, this may result in this application being unable to provide its services to the user. In cases where this application expressly states that the provision of personal data is voluntary, users may choose not to provide such data without any consequences for the availability or functioning of the service.
Users who are unclear about which personal data is mandatory may contact the Provider.
Any use of cookies – or other tracking tools – by this Application or third-party service providers used by this Application is for the purpose of providing the service requested by the User and any other purposes described in this document and, if any, in the Cookie Policy.
Users are responsible for all third party personal data obtained, disclosed or transferred through this Application and confirm that they have obtained consent for the transfer of personal data of any third parties to this Application.
Type and location of data processing
Processing methods
The Provider processes User Data in a proper manner and takes appropriate security measures to prevent unauthorized access and unauthorized forwarding, modification or destruction of data.
Data processing is carried out by means of computers or IT-based systems in accordance with organizational procedures and practices specifically aimed at the stated purposes. In addition to the Data Controller, other parties could also operate this application internally (Human Resources, Sales, Marketing, Legal Department, System Administrators) or externally – and in the case where necessary, designated by the Data Controller as processors (such as technical service providers, delivery companies, hosting providers, IT companies or communication agencies) – and thus have access to the data. An up-to-date list of these parties may be requested from the provider at any time.
Legal basis for processing
The provider may only process personal data of users if one of the following applies:
Users have given their consent for one or more specific purposes. Note: In some jurisdictions, the provider may be permitted to process personal data until the user objects to such processing (“opt-out”) without relying on consent or any other of the following legal bases. However, this does not apply if the processing of personal data is subject to European data protection law;
the collection of data is necessary for the performance of a contract with the user and/or for pre-contractual measures arising therefrom;
the processing is necessary for compliance with a legal obligation to which the provider is subject;
the processing is related to a task carried out in the public interest or in the exercise of official authority vested in the Provider;
the processing is necessary to protect the legitimate interests of the Provider or a third party.
In any case, the Provider will be happy to provide information on the specific legal basis on which the processing is based, in particular whether the provision of personal data is a legal or contractual obligation or a prerequisite for the conclusion of a contract.
Location
Data is processed at the Provider’s office and at all other locations where the entities involved in data processing are located.
Depending on the location of the users, data transfers may involve the transfer of the user’s data to a country other than the user’s own. To learn more about the location of the processing of the transferred data, users can consult the section detailing the processing of personal data.
Users also have the right to be informed about the legal basis of the transfer of data to a country outside the European Union or to an international organization governed by international law or established by two or more countries, such as the UN, and about the security measures taken by the Provider to protect their data.
If such transfer takes place, the User may learn more about it by reviewing the relevant sections of this document or by contacting the Provider through the information provided in the contact section.
Storage period
Personal data is processed and stored for as long as required by the purpose for which it was collected.
Therefore:
Personal data collected for the purpose of fulfilling a contract concluded between the provider and the user will be stored until the complete fulfillment of this contract.
Personal data collected for the purpose of safeguarding the Provider’s legitimate interests will be kept for as long as it is necessary for the fulfillment of these purposes. Users may obtain more detailed information about the Provider’s legitimate interests in the relevant sections of this document or by contacting the Provider.
In addition, the provider is permitted to store personal data for a longer period of time if the user has consented to such processing, as long as the consent is not revoked. In addition, the provider may be obliged to store personal data for a longer period of time if this is necessary to fulfill a legal obligation or by order of an authority.
After expiration of the retention period, personal data will be deleted. Therefore, the right to information, the right to erasure, the right to rectification and the right to data portability cannot be exercised after the retention period has expired.
Purposes of processing
Personal data about the User is collected in order for the Provider to provide the Service and further to comply with its legal obligations, respond to enforcement requests, protect its rights and interests (or those of the Users or third parties), detect malicious or fraudulent activities. In addition, data is collected for the following purposes: Hosting and backend infrastructure, registration and login, managing contacts and sending messages, handling payments, device permissions to access personal data and platform services and hosting.
Users can find more detailed information about these processing purposes and the personal data used for each purpose in the “Detailed information about personal data processing” section of this document.
Device permissions for access to personal data
Depending on the device used by the User, this Application may request certain permissions to access the User’s device data as described below.
By default, these access permissions must be granted by the user before the corresponding information can be accessed. Once granted, consent may be revoked by the user at any time. To revoke these consents, users can look in the device settings or they can contact the owner’s support using the contact details provided in this document.
The exact procedure for verifying app permissions may depend on the user’s device and software.
It should be noted that revocation of such permissions may affect this application from functioning properly.
If the user grants any of the below mentioned permissions, the respective personal data could be processed by this application (i.e., accessed, modified or removed).
Permission App Reminders
Used to access the Reminders app on the user’s device and includes reading, adding and removing entries.
Contact permission
Required for access to contacts and profiles on the user’s device, including modification of entries.
The rights of the users
Users may exercise certain rights in relation to their data processed by the Provider.
In particular, users have the right to do the following:
Revoke the consents at any time. If the User has previously consented to the processing of personal data, they may revoke their own consent at any time.
Object to the processing of their data. The user has the right to object to the processing of their data if the processing is based on a legal basis other than consent. Further information on this is provided below.
Receive information regarding their data. The user has the right to know whether the data is being processed by the provider, to receive information about individual aspects of the processing and to obtain a copy of the data.
To have the data checked and corrected. The user has the right to check the accuracy of their data and request that it be updated or corrected.
Request restriction of the processing of their data. Users have the right to restrict the processing of their data under certain circumstances. In this case, the Provider will not process the data for any purpose other than storage.
Request deletion or other removal of personal data. Users have the right, under certain circumstances, to request that their data be erased by the Provider.
Receive their data and have it transferred to another responsible party. Users have the right to receive their data in a structured, common and machine-readable format and, if technically possible, to have it transferred to another controller without hindrance. This provision is applicable if the data is processed by automated means and the processing is based on the user’s consent, on a contract to which the user is party, or on pre-contractual obligations.
Filing a complaint. Users have the right to file a complaint with the competent supervisory authority.
Details on the right to object regarding processing.
If personal data are processed in the public interest, in the exercise of a sovereign power conferred on the Provider or to safeguard the Provider’s legitimate interests, the User may object to such processing by providing a justification ground that relates to their particular situation.
Users are informed that they may object to the processing of personal data for direct marketing at any time without giving reasons. Users can find out whether the Provider processes personal data for direct marketing purposes in the relevant sections of this document.
How the rights can be exercised
All requests to exercise the User Rights may be addressed to the Provider via the contact details provided in this document. Requests can be exercised free of charge and will be processed by the Provider as soon as possible, at the latest within one month.
Further information on the collection and processing of data
Legal measures
The User’s personal data may be processed by the Provider for the purposes of legal enforcement within or in preparation of legal proceedings resulting from the improper use of this Application or the related services.
The User declares that he/she is aware that the Provider may be obliged by the authorities to hand over personal data.
Further information about the user’s personal data
In addition to the information listed in this Privacy Policy, this Application may provide the User, upon request, with additional contextual information related to specific services or to the collection and processing of personal data.
System Logs and Maintenance
This Application and third party services may, for operational and maintenance purposes, collect files that record the interaction that takes place through this Application (system logs)
5. analysis tools
Use of Slimstat Analytics for web analysis
For website analysis, this website uses Slimstat Analytics, a web analysis service provided by Jason Crouse. This serves to protect our legitimate interests in an optimized presentation of our offer, which prevail in the context of a balancing of interests, in accordance with Art. 6 para. 1 p. 1 lit. f DSGVO. Slimstat Analytics uses methods that enable an analysis of your use of the website, such as cookies. The automatically collected information about your use of this website is usually stored on our server. By activating IP anonymization on this website, the IP address is shortened before transmission within the Member States of the European Union or in other contracting states to the Agreement on the European Economic Area. After the end of the purpose and the end of the use of Slimstat Analytics by us, the data collected in this context will be deleted.
6. plugins and tools
Vimeo
Our website uses plugins of the video portal Vimeo. The provider is Vimeo Inc, 555 West 18th Street, New York, New York 10011, USA.
When you visit one of our pages equipped with a Vimeo plugin, a connection to the Vimeo servers is established. In the process, the Vimeo server is informed which of our pages you have visited. In addition, Vimeo obtains your IP address. This also applies if you are not logged in to Vimeo or do not have an account with Vimeo. The information collected by Vimeo is transmitted to the Vimeo server in the USA.
If you are logged into your Vimeo account, you enable Vimeo to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your Vimeo account.
For more information on the handling of user data, please see Vimeo’s privacy policy at: https://vimeo.com/privacy.
Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.
For this purpose, the browser you are using must connect to Google’s servers. This enables Google to know that our website has been accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 (1) lit. f DSGVO.
If your browser does not support web fonts, a standard font will be used by your computer.
You can find more information about Google Web Fonts at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/.