Privacy Policy - TRICHTR App

Introduction

With the following privacy policy we would like to inform you about which types of your personal data (the " data ") we process for what purposes and to what extent in the context of providing our mobile application TRICHTR (" app ", " we ", or " us "). The app is designed as a social application, but can also be used without the social functions. In conjunction with an external device (the " box " or " measuring box "), the app enables time recording when liquids flow or are absorbed, automatically generates video, image and sound recordings in this context and can notify you when other users share such recordings with you.

The terms used are not gender-specific.

As of July 13, 2022

table of contents

• Introduction
• responsible person
• Overview of processing
• Relevant legal bases
• transmission and disclosure of personal data
• data processing in third countries
• Special notes on applications (apps)
• Obtaining applications via app stores
• deletion of data
• Change and update of the privacy policy
• rights of the data subjects
• definitions of terms

responsible person

Stirken, Krahmer & Wittig GbR
Dreyener Str. 13
33613 Bielefeld
Germany

Shareholders: Alexander Stirken, Sebastian Krahmer and Robert Wittig
The company is headquartered in Bielefeld

Tel.: +49 151 64108224
Email address:info@trichtr.de

The controller is the natural or legal person who, alone or jointly with others, decides on the purposes and means of processing personal data.

Overview of processing

The following overview summarises the types of data processed and the purposes of their processing and refers to the persons concerned.

types of data processed

• Inventory data (e.g. names).
• Contact details (e.g. email, telephone numbers).
• Meta/communication data (e.g. device information, IP addresses).
• Image and/or video recordings (e.g. photographs or video recordings of a person).
• sound recordings.

categories of data subjects

• Users (users of the TRICHTR mobile app).

purposes of processing

• Provision of contractual services and customer service.
• Ensuring the full range of app functions

Relevant legal bases

Below we share the legal basis of the General Data Protection Regulation (GDPR) on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, the national data protection regulations in your or our country of residence and domicile may apply. If more specific legal bases are relevant in individual cases, we will inform you of these in the data protection declaration.

• Consent (Article 6 (1) sentence 1 lit. a. GDPR) - The data subject has given his or her consent to the processing of personal data concerning him or her for a specific purpose or several specific purposes.
• Contract performance and pre-contractual inquiries (Article 6 (1) sentence 1 lit. b. GDPR) - The processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the request of the data subject.
• Legitimate interests (Article 6 (1) sentence 1 lit. f. GDPR) - Processing is necessary to safeguard the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject which require protection of personal data prevail.

National data protection regulations in Germany : In addition to the data protection regulations of the General Data Protection Regulation, national regulations on data protection apply in Germany. This includes in particular the law on protection against misuse of personal data in data processing (Federal Data Protection Act - BDSG). The BDSG contains special regulations on the right to information, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes and transmission and automated decision-making in individual cases, including profiling. It also regulates data processing for the purposes of the employment relationship (Section 26 BDSG), in particular with regard to the establishment, implementation or termination of employment relationships and the consent of employees. In addition, state data protection laws of the individual federal states may apply.

transmission and disclosure of personal data

As part of our processing of personal data, it may happen that the data is transmitted to other bodies, companies, legally independent organizational units or persons or that it is disclosed to them. The recipients of this data may include, for example, payment institutions as part of payment transactions, service providers commissioned with IT tasks or providers of services and content that are integrated into a mobile app. In such cases, we observe the legal requirements and in particular conclude appropriate contracts or agreements with the recipients of your data that serve to protect your data.

data processing in third countries

If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA)) or if the processing takes place in the context of the use of third-party services or the disclosure or transmission of data to other persons, bodies or companies, this will only be done in accordance with the legal requirements.

Subject to express consent or contractually or legally required transmission, we only process or have the data processed in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, if certifications or binding internal data protection regulations exist (Art. 44 to 49 GDPR, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de ).

Special notes on the mobile application (app)

We process the data of our app users to the extent that this is necessary to provide the app and its functionalities to users, to monitor its security and to develop it further. We may also contact users in compliance with legal requirements if communication is necessary for the purposes of administering or using the app. Furthermore, with regard to the processing of user data, we refer to the data protection information in this data protection declaration.

The app receives the information you provide when downloading and registering the app. Registration with us is mandatory. Registration creates a user account.

Legal basis:

The processing of data necessary to provide the functionality of the app serves to fulfill contractual obligations.

Target group:

The app is intended for individuals who are at least 13 years old. We do not knowingly use the application to solicit data from or market to children under 13. If a parent or guardian becomes aware that their child has provided us with information without their consent, they should contact us at info@trichtr.de . We will delete such information from our files within a reasonable period of time.

Commercial use :

We process the data of users of our app, registered users and any test users (hereinafter referred to as "users") in order to be able to provide them with our contractual services and on the basis of legitimate interests to ensure the security of our app and to further develop it. When you register with us and use the app, you generally provide (a) your user name, email address, password and, if applicable, other registration information; (b) information that you provide to us when you ask us for help.

We may also use the information you have provided to us to contact you from time to time to provide you with important information, required notices and marketing promotions.

Device permissions for access to functions and data :

The app needs access to various functions and interfaces on your smartphone. To do this, you must grant the app certain permissions. The permissions are programmed differently by different manufacturers. For example, individual permissions can be grouped into permission categories, whereby you can only agree to the permission category as a whole. Please note that if the app refuses access, you will not be able to use any or only a few of the app's functions.

You can check the status of the permissions listed below at any time in the app settings or in the system settings of your device, and you can turn on or off any or all of the permissions listed below at any time at your own discretion. Please note that if you give a permission, this means that you authorize us to collect and use the personal information corresponding to the permission to provide you with the relevant services mentioned above. If you turn off a permission, this means that you cancel or revoke the authorization of the permission, and we will no longer collect and use the relevant personal information based on this permission, nor will we be able to provide you with the services corresponding to this permission. However, your decision to turn off the permissions will not affect the previous collection and use of information based on your prior authorization.

General technical requirements:

• Internet: The app requires an internet connection for the “Registration and login”, “Save database entries online” and “Share database entries online” functions in order to be able to communicate with the app’s server systems.
• Bluetooth: The Bluetooth interface of your smartphone must be activated in order to communicate with external hardware (especially the measuring box).
• Camera: Your smartphone needs a camera to be able to create an accompanying video recording as part of the “Automatic Time Tracking” function.
• Background operation: The app uses background operation (i.e. when you are not actively using the app) to update database entries of groups you are a member of and, if necessary, to notify you of this via a pop-up message. If you deactivate background operation in your smartphone's operating system, you must start all actions in the app itself.

Access to the camera and saved recordings :

When using our app, image and/or video recordings (including audio recordings) of the user (and of other people captured in the recordings) are processed by accessing the camera functions. Access to the camera functions requires user authorization, which can be revoked at any time. Authorization allows the app to create image recordings for profile pictures and to document the activities associated with the app in the form of video recordings (including audio recordings), which are saved in the user's profile and can be shared with friends or the public. Furthermore, saved image recordings can be used for use in the app (e.g. for use as a profile picture).

Use of microphone functions :

When using our app, the microphone functions and the audio recordings made with their help are processed. The use of the microphone functions requires authorization from the user, which can be revoked at any time.

Location determination :

Your smartphone's location detection must be activated so that your device can search for Bluetooth signals from external devices. However, location data is not collected, so no location history or movement profile is created.

Obtaining applications via app stores

Our app is available via special online platforms operated by other service providers (so-called "app stores"). In this context, the platform provider's privacy policy and terms of use apply in addition to our privacy policy.

Google Play :

• Types of data processed: inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contact data (e.g. e-mail, telephone numbers), contract data (e.g. subject matter of the contract, term, customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
• Data subjects: Customers.
• Purposes of processing: Provision of contractual services and customer service.
• Legal basis: Contractual performance and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b. GDPR), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR).

deletion of data

The data we process will be deleted in accordance with legal requirements as soon as the consents permitted for processing are revoked or other permissions no longer apply (e.g. if the purpose of processing this data no longer applies or it is no longer required for the purpose).

If the data is not deleted because it is required for other legally permissible purposes, its processing will be restricted to these purposes. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons or whose storage is necessary to assert, exercise or defend legal claims or to protect the rights of another natural or legal person.

You can stop the App from collecting information by simply uninstalling the App. You can use the standard uninstall procedures available as part of your mobile device or through the app stores.

Further information on the deletion of personal data can also be found in the individual data protection notices of this data protection declaration.

Change and update of the privacy policy

We ask you to regularly inform yourself about the content of our data protection declaration. We will adapt the data protection declaration as soon as changes to the data processing we carry out make this necessary. We will inform you as soon as the changes require your cooperation (e.g. consent) or other individual notification.

If we provide addresses and contact information of companies and organizations in this privacy policy, please note that the addresses may change over time and please check the information before contacting us.

rights of the data subjects

As a data subject, you are entitled to various rights under the GDPR, which arise in particular from Articles 15 to 21 of the GDPR:

• Right to object: You have the right to object at any time to the processing of personal data concerning you which is carried out on the basis of Art. 6 (1) (e) or (f) GDPR, for reasons related to your particular situation; this also applies to profiling based on these provisions. If the personal data concerning you are processed in order to conduct direct advertising, you have the right to object at any time to the processing of personal data concerning you for the purposes of such advertising; this also applies to profiling insofar as it is related to such direct advertising.
• Right to withdraw consent: You have the right to withdraw consent at any time.
• Right to information: You have the right to request confirmation as to whether data concerning you is being processed and to request information about this data as well as further information and a copy of the data in accordance with legal requirements.
• Right to rectification: You have the right, in accordance with the statutory provisions, to request that the data concerning you be completed or that inaccurate data concerning you be rectified.
• Right to erasure and restriction of processing: You have the right, in accordance with the statutory provisions, to request that data concerning you be erased immediately or, alternatively, to request that the processing of the data be restricted in accordance with the statutory provisions.
• Right to data portability: You have the right to receive the data concerning you that you have made available to us in a structured, common and machine-readable format in accordance with the legal requirements or to request that it be transmitted to another controller.
• Complaint to the supervisory authority: You also have the right, in accordance with the statutory provisions, to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you violates the GDPR.

definitions of terms

This section provides you with an overview of the terms used in this privacy policy. Many of the terms are taken from the law and are defined primarily in Art. 4 GDPR. The legal definitions are binding. The following explanations, however, are primarily intended to help you understand. The terms are sorted alphabetically.

• Personal data: "Personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier (e.g. cookie) or to one or more special characteristics that express the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
• Location data: Location data is generated when a mobile device (or another device with the technical requirements for location determination) connects to a radio cell, a WLAN or similar technical intermediaries and location determination functions. Location data is used to indicate the geographically definable position on earth of the respective device. Location data can be used, for example, to display map functions or other location-dependent information.
• Controller: The “controller” is the natural or legal person, public authority, agency or other body which alone or jointly with others decides on the purposes and means of processing personal data.
• Processing: "Processing" is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means. The term is broad and covers practically every handling of data, be it collection, evaluation, storage, transmission or deletion.

Based on the free Datenschutz-Generator.de by Dr. Thomas Schwenke and adapted by the app operator.