Privacy App

1. Data collected by the app

Whenever this app is used, data is logged to guarantee the app’s functionality and to analyse user behaviour. We use your IP address to collect data in this regard. We do not create individual profiles about your user behaviour and largely refrain from collecting personal data. User behaviour is always analysed in anonymised form. The legal basis for processing the described data – if it is personal – is Art. 6, Para. 1, lit. f of the GDPR. Our legitimate interest is to offer you an appealing, user-friendly and technically functional app.

The app regularly offers you the opportunity to access additional content by clicking on an external link as soon as you have successfully scanned a piece of décor. Clicking on the respective link causes your mobile device’s web browser to open and information to be called up from an external website (also see 10.). Cookies may be set and, under certain circumstances, additional data may be transmitted during this process.

If you do not want cookies to be set on your mobile device, you can make relevant settings on your mobile device to prevent the setting of cookies. However, the possibility of considerable restriction as regards the use of the external websites or of less user-friendliness cannot be ruled out if you do so.

2. Access to the camera and memory

The app requires access to your mobile device’s camera and memory. Access is only required to enable scanning of a piece of décor by analysing the recorded section of a picture and examining it for the presence of certain markers. As soon as a piece of décor has been identified, relevant information is accessed over the Internet and shown to you in the app. Your image file is not transmitted.

You can generally prohibit the app’s authorisations for accessing the memory and camera by making settings on your mobile device, but we would like to explicitly point out that not all of the app’s functions will be available in this situation.

The legal basis for processing the described data – if it is personal – is Art. 6, Para. 1, lit. f of the GDPR. Our legitimate interest is to offer you an appealing, user-friendly and technically functional app.

3. Google Analytics

We use Google Analytics, a web analytics service provided by Google LLC (hereinafter referred to as “Google”) based on our legitimate interests (i.e. our interest in analysing, optimising and commercially running our app under the terms of Art. 6, Para. 1, lit. f. of the GDPR).

Google Analytics uses “cookies”, which are small text files that are saved on your mobile device and enable analysis of your use of the app. The information generated by the cookie about your use of this app includes your mobile device’s IP address. Your IP address is generally transmitted to and stored on a Google server in the USA. Your IP address is generally truncated and thus anonymised by Google beforehand within the European Union or a state which is a party to the Agreement on the European Economic Area (EEA). In exceptional cases, your full IP address may be transmitted to a Google server in the USA and thus only be truncated in the USA.

On behalf of SAHM GmbH & Co. KG as the app provider, Google will use this information to evaluate your use of the app. The data collected is not merged with other Google data. As the provider of this app, we have concluded a separate commissioned data processing agreement with Google.

You will find more information about Google Analytics here: http://www.google.com/intl/de/analytics/learn/privacy.html

You can prevent collection by Google Analytics by clicking on the following link. An opt-out cookie that prevents your data from being collected during future use of this app is set: Disable Google Analytics.

4. Using and disclosing your data, using service providers

We process your data in line with the legal requirements and only for our own purposes. Disclosure to “third parties” does not take place, unless a legal obligation to this effect exists, or you have given your consent to such disclosure.

Insofar as we engage other service providers to enable provision of the products and services we offer and potentially grant such service providers necessary access to your (generally anonymised or pseudonymised) data (e.g. for the purposes of technical support, maintenance or user analysis of the app), we have naturally concluded a commissioned data processing contract (known as a “CDP contract” for short) according to Art. 28 of the GDPR with our commissioned data processing service providers (known as “CDP service providers” for short). We also still remain responsible for protecting your data. By concluding the contract, the engaged service providers shall not be considered “third parties”.

5. Duration of data use / retention

Your personal data is deleted

6. Place of data use

Your data is generally processed in Germany. However, services provided by Amazon Web Services, Inc. (410 Terry Avenue North, Seattle WA 98109, USA) and Digital Ocean LLC (101 Avenue of the Americas, New York 10013, USA) are incorporated within this online presence. This always requires the provider of these services to record the user’s IP address. This is because they would generally be unable to send the content to the respective user’s browser without the IP address. Your IP address is generally transmitted to and stored on a server in the USA. We shall notify you accordingly if we deviate from this regulation as the “controller”.

7. Data security

We would like to explain to you that security loopholes can occur during data transmission over the Internet. We cannot, therefore, offer complete protection against access by third parties. We back up our IT systems and your personal data using what are known as technical and organisational measures (known as “TOMs” for short) to protect against unwanted: access, admission, disclosure, entry, loss, dissemination, destruction and alternation by unauthorised individuals. These will be adapted accordingly in line with the state of the art.

8. External links and information within this app

We are not liable for external links and third-party sites made accessible in this way. We would also like to point out that, when you use external links, your personal data may be collected by third parties. The respective operators of the external websites are responsible for this. Please find out about the site’s privacy policy on the respective website accessed.

The information provided within this app is only used to procure information and does not aim to produce any legal binding effect.

9. Amendments to the privacy policy

To name but a few examples, technological advancement, legal requirements or even modified processes can have an impact on this privacy policy. We therefore reserve the right to amend this privacy policy at any time with effect for the future.

You will find the current version of the privacy policy within this app.

Last updated: 24/07/2018