Privacy Policy

Privacy Policy

Overview


SECTION I: Data protection statement Audio Resonance Therapy Website

SECTION II Data protection statement Audio Resonance Therapy App

II.1. Data Collection on Our Website

I.1. Data Collection on Our Website

Who is responsible for data collection on this website? The data processing on this website is carried out by the website operator. You can find their contact details in the imprint of this website.

How do we collect your data? Some data is collected when you provide it to us. This may include data you enter into a contact form.

Other data is collected automatically by our IT systems when you visit the website. This is primarily technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter our website.

Why do we use your data? Some data is collected to ensure error-free provision of the website. Some data is only shared in the event of booking inquiries or confirmed bookings with our local agency partner on-site. Other data may be used to analyze your user behavior.

What rights do you have regarding your data? You have the right at any time to receive free information about the origin, recipient, and purpose of your stored personal data. You also have the right to request the correction, blocking, or deletion of this data. For this purpose and for any further questions regarding data protection, you can contact us at the address listed in the imprint. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.

You also have the right, under certain circumstances, to request the restriction of the processing of your personal data. For details, please refer to the section “Right to Restriction of Processing” in this privacy policy.

Analysis Tools and Tools from Third Parties When visiting our website, your browsing behavior may be statistically analyzed. This is done primarily using cookies and so-called analysis programs. The analysis of your browsing behavior is usually anonymous; the browsing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.

You can object to this analysis. We will inform you about the options to object in this privacy policy.

I.2. General Notes and Mandatory Information

Data Protection The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the legal data protection regulations and this privacy policy.

When you use this website, various personal data are collected. Personal data are data with which you can be personally identified. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this happens.

We point out that data transmission over the Internet (e.g., when communicating by email) may have security gaps. A complete protection of data against access by third parties is not possible.

Note on the Responsible Entity The responsible entity for data processing on this website is:

jamXmusic GmbH & Co KG, Kieler Strasse 107, 25474 Bönningstedt.

The responsible entity is the natural or legal person who alone or jointly with others decides on the purposes and means of the processing of personal data (e.g., names, email addresses, etc.).

Revocation of Your Consent to Data Processing Many data processing operations are only possible with your express consent. You can revoke consent you have already given at any time. An informal email notification to us is sufficient. The legality of the data processing carried out up until the revocation remains unaffected by the revocation.

Right to Object to Data Collection in Special Cases and to Direct Marketing (Art. 21 GDPR) If data processing is based on Art. 6(1)(e) or (f) GDPR, you have the right at any time to object to the processing of your personal data for reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis for processing can be found in this privacy policy. If you object, we will no longer process your affected personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing is for the establishment, exercise, or defense of legal claims (objection pursuant to Art. 21(1) GDPR).

If your personal data are processed for the purpose of direct advertising, you have the right to object at any time to the processing of personal data concerning you for such advertising purposes; this also applies to profiling to the extent that it is related to such direct advertising. If you object, your personal data will subsequently no longer be used for direct advertising purposes (objection pursuant to Art. 21(2) GDPR).

Right to Lodge a Complaint with the Competent Supervisory Authority In the event of violations of the GDPR, data subjects have the right to lodge a complaint with a supervisory authority, particularly in the Member State of their habitual residence, their place of work, or the place of the alleged violation. The right to lodge a complaint is without prejudice to other administrative or judicial remedies.

Right to Data Portability You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to yourself or to a third party in a commonly used, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done if it is technically feasible.

SSL or TLS Encryption For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by the change in the browser’s address line from “http://” to “https://” and by the lock symbol in your browser line.

If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

Information, Blocking, Deletion, and Correction Within the framework of the applicable legal provisions, you have the right at any time to free information about your stored personal data, its origin and recipient, and the purpose of data processing and, if applicable, a right to correction, blocking, or deletion of this data. For this purpose and for further questions on the topic of personal data, you can contact us at the address listed in the imprint at any time.

Right to Restriction of Processing You have the right to request the restriction of the processing of your personal data. For this purpose, you can contact us at any time at the address listed in the imprint. The right to restriction of processing exists in the following cases:

  • If you dispute the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of the processing of your personal data.
  • If the processing of your personal data happened/is happening unlawfully, you can request the restriction of data processing instead of deletion.
  • If we no longer need your personal data, but you need it to exercise, defend, or assert legal claims, you have the right to request the restriction of the processing of your personal data instead of deletion.
  • If you have filed an objection pursuant to Art. 21(1) GDPR, a balance must be struck between your interests and ours. As long as it is not yet determined whose interests prevail, you have the right to request the restriction of the processing of your personal data.

If you have restricted the processing of your personal data, these data may—apart from being stored—only be processed with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.

Objection to Promotional Emails We hereby object to the use of contact data published within the scope of the imprint obligation to send unsolicited advertising and information materials. The operators of these pages expressly reserve the right to take legal action in the event of unsolicited promotional information, such as spam emails.

I.3. Data Collection on Our Website

Cookies Some of our web pages use cookies. Cookies do not harm your computer and do not contain viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.

Cookies that are required to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service provided free of technical errors. If other cookies (such as those used to analyze your browsing behavior) are also stored, they will be treated separately in this privacy policy.

Contact Form If you send us inquiries via the contact form, we will store the data you provide on the form, including the contact details you provide, in order to answer your inquiry and any follow-up questions. We do not share this information without your consent.

The processing of the data entered in the contact form is therefore based exclusively on your consent (Art. 6(1)(a) GDPR). You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

The data you provide in the contact form will remain with us until you request its deletion, revoke your consent for storage, or the purpose for its storage no longer pertains (e.g., after fulfilling your request). Mandatory statutory provisions—especially retention periods—remain unaffected.

Inquiry by Email, Phone, or Fax If you contact us by email, phone, or fax, your request including all resulting personal data (name, inquiry) will be stored and processed by us for the purpose of handling your request. We do not share this data without your consent. An exception applies to data (name, number of guests, address, period and duration of stay) related to concrete booking inquiries, which we forward to our local partner agency Appartments in St. Peter-Ording GmbH, Wittendüner Allee 19, 25826 St. Peter-Ording, to fulfill your contract and secure your services.

This data is processed on the basis of Art. 6(1)(b) GDPR if your request is related to the performance of a contract or is necessary to carry out pre-contractual measures. In all other cases, processing is based on your consent (Art. 6(1)(a) GDPR) and/or our legitimate interests (Art. 6(1)(f) GDPR), since we have a legitimate interest in the effective processing of requests addressed to us.

The data sent by you via contact inquiries remains with us until you request deletion, revoke your consent to storage, or the purpose for data storage no longer applies (e.g., after completion of your request). Mandatory statutory provisions—especially statutory retention periods—remain unaffected.

Comment Function on This Website If you use the comment function on this site, the time at which you created the comment, your email address, and, if you are not posting anonymously, your chosen username will be stored along with your comment.

Storage of IP Address Our comment function stores the IP addresses of users who post comments. Since we do not review comments before they go live, we need this information to be able to pursue action for illegal or slanderous content.

Subscribing to Comments As a user of the site, you may subscribe to comments after registering. You will receive a confirmation email to verify that you are the owner of the email address provided. You can unsubscribe from this feature at any time via a link in the emails. The data provided when subscribing to comments will be deleted in this case. However, if you have submitted this data to us for other purposes or elsewhere (e.g., newsletter subscription), it will remain with us.

Storage Duration for Comments The comments and associated data (e.g., IP address) are stored and remain on our website until the commented content has been completely deleted or the comments have to be removed for legal reasons (e.g., offensive comments).

Legal Basis The storage of comments is based on your consent (Art. 6(1)(a) GDPR). You may revoke your consent at any time. An informal email making this request is sufficient. The legality of data processing operations already carried out remains unaffected by the revocation.

I.4. Plugins and Tools

Google Web Fonts This site uses web fonts provided by Google for the uniform display of fonts. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

To do this, the browser you use must connect to Google’s servers. In this way, Google learns that our website was accessed via your IP address. The use of Google Web Fonts is in the interest of a uniform and attractive presentation of our online offerings. This constitutes a legitimate interest pursuant to Art. 6(1)(f) GDPR.

If your browser does not support web fonts, a standard font will be used by your computer.

For more information about Google Web Fonts, see https://developers.google.com/fonts/faq and Google’s privacy policy: https://policies.google.com/privacy.

Google Maps This site uses the Google Maps API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use Google Maps features, it is necessary to store your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.

The use of Google Maps is in the interest of providing an appealing presentation of our online offers and to make it easy to find the places we indicate on the website. This constitutes a legitimate interest pursuant to Art. 6(1)(f) GDPR.

More information about handling user data can be found in Google’s privacy policy: https://policies.google.com/privacy.

Google reCAPTCHA We use “Google reCAPTCHA” (hereinafter referred to as “reCAPTCHA”) on our websites. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

reCAPTCHA is used to check whether the data entered on our websites (e.g., in a contact form) is entered by a human or by an automated program. To do this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the site. reCAPTCHA evaluates various information for the analysis (e.g., IP address, time spent on the website, or mouse movements made by the user). The data collected during the analysis is forwarded to Google.

The reCAPTCHA analysis takes place entirely in the background. Website visitors are not advised that such an analysis is taking place.

Data processing is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in protecting its site from abusive automated crawling and spam.

Further information about Google reCAPTCHA and Google’s privacy policy can be found at: https://policies.google.com/privacy and https://www.google.com/recaptcha/intro/android.html.

Cloudflare We use the service “Cloudflare.” The provider is Cloudflare Inc., 101 Townsend St., San Francisco, CA 94107, USA (hereinafter “Cloudflare”). Cloudflare provides a globally distributed Content Delivery Network with DNS. Technically, the information transfer between your browser and our website is routed through Cloudflare’s network. This allows Cloudflare to analyze traffic between your browser and our website and to act as a filter between our servers and potentially malicious traffic from the internet. Cloudflare may use cookies or other technologies for user recognition, used solely for the purposes described here.

Cloudflare Turnstile Cloudflare Turnstile (a service from Cloudflare Inc., 101 Townsend St, San Francisco, CA 94107, USA) is an automated detection service that helps us verify whether a request was made by a human or a bot. This is necessary to prevent spam messages.

We use Turnstile to ensure the secure use of the contact form. The legal basis for this type of data processing is our legitimate interest in the secure operation of the contact form, Art. 6(1)(f) GDPR.

Cloudflare processes your IP address for this verification. This processing is done on our behalf under a data processing agreement between us and Cloudflare. This ensures that the data processing is conducted in accordance with the GDPR while protecting the rights of the affected individuals. Data may be transmitted to servers in the United States. In this case, standard contractual clauses approved by the EU Commission apply.

You have the right to object to this processing at any time. However, if you do so, you may no longer be able to use the contact form.

Cloudflare is certified under the EU-U.S. Data Privacy Framework (DPF). This agreement ensures compliance with European data protection standards when processing data in the USA. Each company certified under the DPF commits to adhering to these standards. More information is available at: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt0000000GnZKAA0&status=Active

Legal Basis for Cloudflare Usage The use of Cloudflare is based on our legitimate interest in providing our web services as securely and reliably as possible (Art. 6(1)(f) GDPR).

Data Transfer to the USA Data transfer to the USA is based on the EU Commission’s Standard Contractual Clauses. Details are available here: https://www.cloudflare.com/privacypolicy/

Further information on Cloudflare’s data protection and security practices can be found here:https://www.cloudflare.com/privacypolicy/

IIData Protection Statement for Audio Resonance Therapy App

II. I. Data Protection Statement

We take the protection of your personal data very seriously and treat it confidentially and in accordance with the statutory data protection regulations and this Data Protection Statement. This Data Protection Statement applies to our cellular iPhone and Android apps (hereinafter “APP”). It explains the nature, purpose and scope of data collection during APP use. We point out that data transmission over the Internet be exposed to security gaps. A complete protection of the data from access by third parties is not possible.

Controller (responsible entity)

The controller (responsible entity) for data processing within the framework of this APP is:

jamXmusic GmbH&Co KG, Kieler Strasse 107, 25474 Bönningstedt, Germany,

Data Protection Officer

You can reach our Data Protection Officer under:

[email protected]

General storage duration of personal data

Unless otherwise specified or specifically specified in this Data Protection Statement, personal data collected by this APP shall be stored until you request us to delete it, revoke your consent to storage or the purpose for the data storage is no longer applicable. Insofar as there is a statutory obligation to store or any other legally recognized reason for storing the data (e.g. legitimate interest), the personal data concerned shall not be deleted before the respective retention reason ceases to apply.

Legal basis for the storage of personal data

The processing of personal data is only permitted insofar as there is an effective legal basis for the processing of such data. Insofar as we process your data, this is done regularly on the basis of your consent pursuant to Art. 6 (1) lit. a GDPR (for example, insofar as your data is provided voluntarily in the registration form or within the framework of the contact form), for the purpose of fulfilling the contract in accordance with Article 6 (1) lit. b GDPR (e.g. when using in-app purchases or the use of other fee-based APP functions) or due to legitimate interests pursuant to Art. 6 (1) lit. f GDPR, which are always weighed taking your interests into consideration (for example in the context of advertising campaigns). The relevant legal bases may be specified in a separate provision within the framework of this Data Protection Statement.

Encryption

This APP uses encryption for security purposes and to protect the transmission of sensitive content, such as requests you send to us as an APP operator, or communication between APP users. This encryption prevents the data you submit from being read by unauthorized third parties.

Change of this Data Protection Statement

We reserve the right to change these Data Protection Provisions at any time in accordance with statutory requirements.

II. II. Your rights

The GDPR grants data subjects, whose personal data is processed by us specific rights, with regard to which we would like to inform you at this juncture:

Revocation of your consent to data processing

Many data processing operations are only possible with your consent. These shall be requested from you before the start of data processing. You can revoke this consent at any time. An informal message by e-mail to us is sufficient. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.

RIGHT OF OBJECTION AGAINST DATA COLLECTION IN PARTICULAR CASES AND AGAINST DIRECT ADVERTISING (ART. 21 GDPR)

INSOFAR AS DATA PROCESSING IS BASED ON ART. 6 (1) LIT. E OR F GDPR, YOU AS A DATA SUBJECT RESERVE THE RIGHT, AT ANY TIME, TO FILE AN OBJECTION, FOR REASONS ARISING OUT OF ITS SPECIAL SITUATION, AGANST THE PROCESSING OF YOUR PERSONAL DATA CONCERNED; THIS APPLIES ALSO TO A PROFILING BASED ON THESE PROVISIONS. PLEASE REFER TO THIS DATA PROTECTION STATEMENT FOR THE RELEVANT LEGAL BASIS PURSUNT TO WHICH A PROCESSING IS PERMITTED. INSOFAR AS YOU FILE AN OBJECTION, WE SHALL NO LONGER PROCESS THE AFFECTED PERSONAL DATA UNLESS WE CAN PROVIDE LEGITIMATE INTERESTS FOR PROCESSING, WHICH TAKE PRECEDENCE OVER YOUR INTERESTS, RIGHTS AND FREEDOMS OR INSOFAR AS THE PROCESSING SERVES THE ASSERTION, EXERCISE OR DEFENSE OF LEGAL CLAIMS.

INSOFAR AS YOUR PERSONAL DATA IS PROCESSED FOR THEPUPOSES OF THE EXERCISE OF DIRECT ADVERTISING, YOU RESERVE THE RIGHT TO FILE AN OBJECTION AGAINST THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH ADVERTISING; THIS ALSO APPLIES TO PROFILING, INSOFAR AS IT IS RELATED TO SUCH DIRECT ADVERTISING. INSOFAR AS YOU FILE AN OBJECTION, YOUR PERSONAL DATA SHALL THEN NO LONGER BE USED FOR THE PURPOSES OF DIRECT ADVERTISING.

Right of appeal to a supervisory authority

In the case of violations of the GDPR, the data subject is entitled to a right of appeal to a supervisory authority. The right of appeal is without prejudice to any other administrative or judicial remedies.

Information, deletion and rectification

As a data subject, you at any given time reserve the right to free information about your stored personal data, its origin and recipients and the purpose of the data processing, as well as a right to rectification or deletion of this data. For further information on personal data, please contact us at any time under the address provided in the imprint.

Right to restriction of processing

As a data subject, you at any given time reserve the right to request the restriction of the processing of your personal data. You can contact us at any time under the address provided in the imprint. The right to restrict processing exists in the following cases:

  • Insofar as you challenge the accuracy of your personal information stored with us, whereby we usually need time to verify this. For the duration of the audit, you as a data subject reserve the right to request the restriction of the processing of your personal data.
  • Insofar as the processing of your personal data is unlawful, you as a data subject reserve the right to request the restriction of data processing instead of the deletion.
  • Insofar as we no longer require your personal information, but you need it to exercise, defend or assert a claim, you as a data subject reserve the right to request that your personal information be restricted instead of deleting it.
  • Insofar as you have filed an objection pursuant to Art. 21 (1) GDPR, a weighing-up of your and our interests must be carried out. As long as it is not clear whose interests prevail, you as a data subject reserve the right to demand the restriction of the processing of your personal data. Insofar as you have restricted the processing of your personal data, this data – without prejudice to its storage – may only be used with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for important public interests of the European Union or a Member State. Right to data portability You as a data subject reserve the right to have data that we automatically process on the basis of your consent or in fulfilment of a contract, to be transmitted to you personally or to a third party in a standard, machine-readable format. Insofar as you require the direct transmission of the data to another controller (responsible entity), this shall only be done to the extent technically feasible.

II. III. Access rights of the APP

To provide our services through the APP, we require the access rights listed below, which allow us to access specific functions of your device.

  •  Device make and model, operating system
  •  Background playback

Access to the device functions is required to ensure the functionality of the APP. The legal basis for this data processing is our legitimate interest within the meaning of Art. 6 (1) lit. f GDPR, your consent within the meaning of Art. 6 (1) lit. a GDPR or – insofar as a contract has been concluded – the fulfilment of our contractual obligations (Article 6 (1) (b) GDPR).

The storage period for the data thus collected is regulated as follows: during the period of contractual services up to a maximum of 6 months after termination

II. IV. Collection of personal data within the framework of APP use

General

When you use our APP, we collect the following personal information from you:

  • Nickname / Pseudonym
  • E-Mail-address
  • Usage data
  • IP address
  • Device identification
  • Metadata
  • required data for contractual purposes and purchase receipts

The processing of this personal data is necessary to ensure the functionality of the APP. The legal basis for this data processing is our legitimate interest within the meaning of Art. 6 (1) lit. f GDPR, your consent within the meaning of Art. 6 (1) lit. a GDPR or – insofar as a contract has been concluded – the fulfilment of our contractual obligations (Article 6 (1) (b) GDPR). The storage period for the data thus collected is regulated as follows: during the period of contractual services up to a maximum of 6 months after termination

Inquiry within the APP, by e-mail, telephone or fax

Insofar as you contact us (e.g. via contact form within the app, by e-mail, telephone or fax), your request including all resulting personal data (e.g. name, request) shall be stored and processed by us for the purpose of processing your request. The processing of this data is based on Art. 6 (1) lit. b GDPR, insofar as your request relates to the fulfilment of a contract or is required for the implementation of pre-contractual measures. In all other cases the processing is based on your consent (Art. 6 (1) lit. a GDPR) and / or on our legitimate interests (Art. 6 (1) lit. f GDPR), since we have a legitimate interest in the effective processing of requests addressed to us.

If we contact you by e-mail outside of a newsletter or a contact request from you, the processing of personal data takes place on the basis of our legitimate interests (Art. 6 Para. 1 lit. f GDPR), registered users of the app to improve the user experience to inform about new functions, enhancements, product news and / or special offers. You can unsubscribe from this type of data processing with immediate effect using the subscribe / unsubscribe function.

The data sent by you to us by way of contact request, remain with us until you request us to delete it, revoke your consent to storage or the purpose for data storage ceases to apply (e.g. after completion of your request). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected. We shall not share your information without your consent.

Comment function in this APP

In addition to your comment, the comments function in this APP shall also include information about when the comment was created and, insofar as you are not anonymous, the username you selected. The comments are stored on the basis of your consent (Article 6 (1) (a) GDPR). The comments and related data are stored and remain in the comment section and on our servers until the commented content has been completely deleted.

Newsletter data

Insofar as you would like to receive the newsletter offered in our APP, we require an e-mail address from you, as well as information that allows us to verify that you are the owner of the e- mail address provided and consent to the receipt of the newsletter. Further data is not collected. We use this data exclusively for the shipment of the requested information and do not pass it on to third parties. The shipment of the newsletter is effected on the basis of your consent (Article 6 (1) (a) GDPR). You can revoke this consent at any time. The data deposited with us for the purpose of the shipment of the newsletter shall be stored by us until the date of the cancelation of your subscription of the newsletter and deleted after cancelation of your subscription.

Transactional email

Audio Resonance Therapy uses SendGrid’s services to send various email notifications. The provider is SendGrid Inc., 1801 California Street, Suite 500, Denver, CO 80202

Sendgrid is a service with which emails can be sent and analyzed according to the highest security standards.

SendGrid is certified according to the “EU-US Privacy Shield”. The “Privacy Shield” is an agreement between the European Union (EU) and the USA, which is intended to ensure compliance with European data protection standards in the USA. You can find further information on SendGrid certification here: SendGrid Privacy Shield certification

UPDATE: Please note on July 16, 2020, the European Court of Justice ruled that the US-EU Privacy Shield is no longer a valid cross-border data transfer mechanism. However, the same ruling upheld Standard Contractual Clauses as a valid cross-border data transfer mechanism. Customers aren’t required to do anything in order to be covered by the Standard Contractual Clauses as they are already part of the Data Protection Addendum which covers all SendGrid and Twilio services by default. Please see our blog post if you’d like to learn more.

Organizations are only allowed to transfer personal data outside of the European Economic Area if they have in place appropriate safeguards to protect personal data abroad. Accepted transfer mechanisms include self-certifying to the Privacy Shield Framework (if a US organization), using the EU Commission’s Standard Contractual Clauses, transferring the data to a country that has been recognized by the European Commission as providing an “adequate” level of data protection, obtaining Binding Corporate Rules approval, as well as other less established mechanisms such as certifications and codes of conduct.

Data processing is based on your consent (Art. 6 Para. 1 lit. a GDPR). You can withdraw this consent at any time by contacting us or following the “Unsubscribe”-link in the email footer. The legality of the data processing that has already taken place remains unaffected by the revocation.

For more information, see the Privacy Policy from SendGrid.

II. V. Data Analysis

When you access our APP, your behaviour may be statistically analysed using certain analysis tools and analysed for promotional or market research purposes or to improve our offerings. When using such tools, we ensure compliance with Statutory Data Protection Provisions. When using external service providers (processors), we ensure through appropriate contracts with the service providers that the data processing complies with German and European data protection standards.

Google Analytics Firebase

We use Google Analytics Firebase (hereafter Google Firebase) to analyse user behaviour. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.

Google Firebase includes several features that allow us to analyse your in-app behaviour. In this way we can analyse, for example, your screen calls, operation of buttons, in-app purchases or the effectiveness of advertising campaigns. We can also determine which features are commonly or rarely used within our APP.

Google Firebase stores for these purposes, among others the number and duration of sessions, operating systems, device models, region, and a range of other data. For a detailed overview of the data collected by Google Firebase, see:

https://support.google.com/firebase/answer/6318039?hl=de

Use of Google Firebase may require the transfer of your personal information to the United States. The storage period for the data thus acquired is regulated as follows:

During the period of contractual services up to a maximum of 6 months after termination

Use of Google Firebase is effected to optimize this APP and improve our offerings. This constitutes a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR

For more information about Google Firebase, visit:

https://firebase.google.com/ https://www.firebase.com/terms/privacy-policy.html

Status: 07.2025

Scroll to Top