App – Privacy policy – Grow Gartenmanager

Grow App Datenschutz

Privacy Policy

This data protection declaration clarifies the type, scope and purpose of the processing of personal data (hereinafter referred to as "data") within the framework of the provision of our services as well as within our online offer and the websites, functions and contents connected with it as well as external online presences, such as our Social Media Profile (hereinafter referred to collectively as "online offer"). With regard to the terms used, e.g. "processing" or "responsible person", we refer to the definitions in Art. 4 of the Basic Data Protection Regulation (GDPR).

Responsible persons

Heidi Boeckh + Florian Bielsky
Borstelmannsweg 38
20537 Hamburg
Germany

info@grow-gartenmanager.de
https://www.grow-gartenmanager.de/impressum

Types of data processed

Content data (e.g. text input)
Usage data (e.g. websites visited, interest in content, access times)
Meta/communication data (e.g. device information, IP addresses)

Categories of affected persons

Visitors and users of the online offer (in the following we will refer to the persons concerned in summary also as "user").

Purpose of the processing

Provision of the online offer, its functions and contents.
Responding to contact requests and communication with users.
Security measures
Reach Measurement/Marketing

Used terms

„Personal data“ is any information that relates to an identified or identifiable natural person (hereinafter referred to as "data subject"); a natural person is identified as directly or indirectly, in particular by means of an identifier such as a name, to a identification number, to location data, to an online identification (e.g. cookie) or to one or more special Characteristics can be identified that express the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.

"Processing" means any operation or set of operations, whether or not automated, or any such operation or set of operations Series of operations in connection with personal data. The term is broad and covers practically every Handling of data.

"Pseudonymization" means the processing of personal data in such a way that the personal data no longer be attributed to a specific data subject without the need for additional information provided that this additional information is kept separately and is technically and organisational measures which ensure that personal data is not subject to any be assigned to an identified or identifiable natural person.

"profiling" means any automated processing of personal data consisting of the personal data can be used to identify certain personal aspects that relate to a natural person The aim is to evaluate the quality of the work, especially with regard to aspects of work performance, economic situation and health, personal preferences, interests, reliability, behavior, whereabouts or change of location of these natural person to analyze or predict

Responsible person" shall mean the natural or legal person, public authority, agency or other entity that alone or jointly with others, of the purposes and means of processing personal data decides, designates.

"processor" means any natural or legal person, public authority, agency or other body which processes personal data on behalf of the person responsible.

Applicable legal basis

In accordance with Art. 13 GDPR we inform you about the legal basis of our data processing. For users from the scope of the Basic Data Protection Regulation (GDPR), i.e. the EU and the EEC applies, provided that the Legal basis in the privacy policy is not mentioned, the following:
The legal basis for obtaining consent is Art. 6 para. 1 lit. a and Art. 7 GDPR;
The legal basis for the processing of data for the fulfilment of our services and the execution of contractual Measures and answers to inquiries is Art. 6 para. 1 lit. b GDPR;
The legal basis for the processing to fulfill our legal obligations is article 6, paragraph 1 lit. c GDPR;
In the event that vital interests of the person concerned or of another natural person require a processing of personal data, Art. 6 para. 1 lit. d GDPR serves as Legal basis.
The legal basis for the processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority delegated to the responsible person is Art. 6 para. 1 lit. e GDPR.
The legal basis for the processing to safeguard our legitimate interests is art. 6 par. 1 letter f GDPR.
The processing of data for purposes other than those for which they were collected is governed by the Requirements of Art. 6 para. 4 GDPR.
The processing of special categories of data (in accordance with Art. 9 para. 1 GDPR) is governed by Requirements of Art. 9 para. 2 GDPR.

Security measures

In accordance with the legal requirements and taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing and different probability of occurrence and severity of the risk to the rights and freedoms of natural persons, appropriate technical and organizational measures to ensure a level of protection appropriate to the risk guarantee.

The measures include in particular the safeguarding of confidentiality, integrity and availability of data by controlling the physical access to the data, as well as the access to the data concerning the input, transfer, the securing of availability and its separation. We have also established procedures, the exercise of data subjects' rights, deletion of data and reaction to threats to data guarantee. Furthermore, we take the protection of personal data into account already during the development, or selection of hardware, software and procedures, in accordance with the principle of data protection by technology design and through data protection-friendly presettings.

Cooperation with contract processors, jointly responsible parties and third parties

If, in the course of our processing, we disclose data to other persons and companies (processors, jointly responsible persons or third parties), disclose them to them or transmit them to them or otherwise grant access to the data, this is only done on the basis of a legal permission (e.g. if a transfer of the data to third parties, such as payment service providers, is necessary for the performance of the contract), users have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. in the use of agents, web hosts, etc.).

If we disclose or transfer data to other companies in our group of companies or otherwise make the access, this is done in particular for administrative purposes as a legitimate interest and on a basis that complies with the legal requirements.

Transfers to third countries

If we store data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA) or the Swiss Confederation) or process this within the scope of the use of services of third parties or disclosure or transmission of data to other persons or companies this will only take place if it is necessary to fulfil our (pre-)contractual obligations on the basis of your Consent, based on a legal obligation or on our legitimate interests happens. Subject to express consent or contractually required transmission, process or we will only transfer the data to third countries with a recognized level of data protection, to which the data protection standards specified under the "Privacy-Shield" certified US processor or on the basis of special guarantees, such as contractual obligation through so-called standard protection clauses of the EU Commission, the existence of certifications or binding internal data protection regulations (Art. 44 to 49 GDPR, Information page of the EU Commission).

Rights of the data subjects

Right of access: You have the right to obtain confirmation as to whether or not data concerning you are being processed and to request information about this data as well as further information and copy of the data in accordance with the legal requirements.

Right to correction: In accordance with the legal requirements, you have the right to request the completion of the to ask for the data concerning you or the correction of incorrect data concerning you.

Right to deletion and restriction of processing: In accordance with the legal requirements, you have the right to demand that the data in question be deleted immediately, or alternatively, in accordance with the to demand a restriction of the processing of the data in accordance with legal requirements.

Right to data transferability: You have the right to access data concerning you that you have provided to us, in accordance with legal requirements in a structured, common and machine-readable format or to demand their transfer to another responsible person.

Complaint to the supervisory authority: You also have the right, in accordance with the statutory provisions, to file a to file a complaint with the competent supervisory authority.

Right of withdrawal

You have the right to revoke your consent with effect for the future.

Right of objection

Right of objection: You have the right to object for reasons arising from your particular situation, at any time, to the processing of personal data concerning you which is carried out pursuant to art. 6, paragraph 1 e or f DSGVO; this also applies to any processing of personal data based on these provisions. profiling. Personal data concerning you are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such advertising. direct advertising is connected.

cookies and right of objection for direct advertising

"Cookies" are small files that are stored on the user's computer. Within the Cookies can store different information. A cookie is primarily used to store the information on a user (or the device on which the cookie is stored) during or even after his visit within a online offer to store. As temporary cookies, or "session cookies" or "transient cookies", are cookies, which are deleted after a user leaves an online offer and his or her browser is closes. In such a cookie can, for example, the contents of a shopping cart in an online store or a login status can be saved. Cookies are described as "permanent" or "persistent", which are also saved after Close the browser will remain saved. For example, the login status can be saved if the users visit them after several days. The interests of the user can also be stored in such a cookie which are used for reach measurement or marketing purposes. As a "Third-Party-Cookie Cookies are designated as cookies that are generated by providers other than the person responsible for operating the online service, (otherwise, if it is only its cookies, it is called "first-party cookies").
We may use temporary and permanent cookies and clarify this in our privacy policy on.

If we ask the users for their consent to the use of cookies (e.g. in the context of a cookie consent), the legal basis for this processing is Art. 6 paragraph 1 letter a. DSGVO. Otherwise the personal cookies of the users according to the following explanations in the context of this Privacy policy based on our legitimate interests (i.e. interest in analysis, optimization and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. DSGVO) or if the the use of cookies is necessary for the provision of our contract-related services, in accordance with Art. 6 para. 1 lit. b. DSGVO, or insofar as the use of cookies is necessary for the performance of a task that is in the public domain. interest is required or is carried out in the exercise of official authority, according to Art. 6 para. 1 lit. e. DSGVO, processed.

If users do not want cookies to be stored on their computer, they are asked to disable the corresponding option in the system settings of your browser. Stored cookies can be stored in in the system settings of the browser. The exclusion of cookies can lead to Functional restrictions of this online offer lead to.

A general objection against the use of cookies used for online marketing purposes can be lodged with a variety of services, especially in the case of tracking, via the US site http://www.aboutads.info/choices/ or the EU page http://www.youronlinechoices.com/ can be explained. Furthermore the storage of cookies can be achieved by deactivating them in the browser settings. Please note that not all functions of this online offer can be used then.

Deletion of data

The data processed by us will be deleted in accordance with the legal requirements or stored in their Processing restricted. Unless expressly stated in this privacy policy, we will not delete the data stored with us as soon as they are no longer required for their intended purpose and there are no legal obligations to keep records that stand in the way of deletion.

As long as the data is not deleted because it is required for other and legally permissible purposes, their processing is restricted. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons.

Changes and updates to the privacy policy

We ask you to inform yourself regularly about the content of our data protection declaration. We adapt the privacy policy as soon as changes in the data processing carried out by us make this necessary. do. We will inform you as soon as the changes result in an act of cooperation on your part (e.g. consent) or any other individual notification becomes necessary.

Hosting and e-mailing

The hosting services used by us serve the Provision of the following services: Infrastructure and platform services, computing capacity, Storage space and database services, e-mail dispatch, security services and technical maintenance services, which we use for the purpose of operating this online offer.

Here we or our hosting provider process inventory data, contact data, content data, contract data, Usage data, meta and communication data of customers, interested parties and visitors of this online offer on the basis of our legitimate interests in an efficient and secure provision of this Online offer according to art. 6 para. 1 lit. f GDPR in connection with Art. 28 GDPR (conclusion contract processing contract).

Collection of access data and log files

We, or our hosting provider, collect on the basis of our authorized Interests within the meaning of Article 6(1)(f) GDPR data concerning any access to the server on which this service is located (so-called server log files). The access data includes the name of the retrieved Web page, file, date and time of access, amount of data transferred, message about successful access, Browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.

Log file information is stored for security reasons (e.g. for the clarification of misuse or fraudulent acts) for a maximum of 7 days and then deleted. Data, whose further storage for evidentiary purposes is required, are to be kept until final clarification of the respective incident by of the deletion is excluded.

Google AdMob and conversion measurement

We use the online marketing process Google "AdMob" to place ads in the Google advertising network (e.g., in search results, in videos, on websites, etc.) so that they be displayed to users who have a presumed interest in the ads. This allows us to display ads for and within our online offer more specifically to present users only ads that potentially correspond to their interests. For example, if a user is shown ads for products, for which he was interested in on other online offers, one speaks here of "Remarketing". To these purposes is used when you visit our and other websites where the Google advertising network is active, a code of Google is executed directly by Google and so-called (re)marketing tags (invisible graphics or code, also known as "web beacons") embedded in the website. With the help of these beacons the user's device an individual cookie, i.e. a small file is stored (instead of cookies, it is also possible to comparable technologies are used). In this file it is noted which websites the user which contents he is interested in and which offers the user has clicked on, furthermore technical information about the browser and operating system, referring websites, visiting time and other Information on the use of the online offer.

Furthermore we receive an individual "conversion cookie". The information obtained with the help of the cookie are used by Google to generate conversion statistics for us. However, we only learn about the anonymous Total number of users who clicked on our ad and became one with a conversion tracking tag have been redirected to the page provided. However, we do not receive any information, with which users personally identified.

User data is processed pseudonymously within the Google advertising network. I.e. Google stores and does not process e.g. the name or e-mail address of the users, but processes the relevant data cookie-related within pseudonymous user profiles. I.e. from the point of view of Google, the ads are not for a concretely identified person, but for the cookie owner, independently of who this cookie owner is. This does not apply if a user has expressly allowed Google to to process data without this pseudonymization. The information collected about users is sent to Google and stored on Google's servers in the USA.

If we ask the users for their consent (e.g. in the context of a cookie consent), the Legal basis of this processing Art. 6 par. 1 letter a. DSGVO. Otherwise, the personal data the user on the basis of our legitimate interests (i.e. interest in analysis, optimization and economic operation of our online offer in the sense of Art. 6 para. 1 lit. f. DSGVO) processed.

Insofar as data is processed in the USA, we point out that Google uses the is certified according to the Privacy-Shield-Agreement and thereby assures to comply with the European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

For more information about Google's use of data, and how to opt-out or object to its use, please see in the privacy policy of Google (https://policies.google.com/technologies/ads) and in the settings for the display of ads by Google (https://adssettings.google.com/authenticated).

Google-Firebase

We use the developer platform "Google Firebase" and the related functions and services offered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Firebase is a platform for application developers (short "Apps") for mobile devices and websites. Google Firebase offers a variety of features that are based on the following overview page can be displayed: https://firebase.google.com/products/.

Among other things, the functions include the storage of apps including personal data of Application users, such as content created by them or information concerning their interaction with the apps (so-called "cloud computing"). Google Firebase also offers interfaces that enable interaction between the between users of the app and other services, e.g. authentication using services such as Facebook, Twitter or by means of an e-mail password combination.

The evaluation of user interactions can be done with the help of the analysis service "Firebase Analytics". Firebase Analytics is designed to record how users interact with an app. Thereby events (so-called "events") are recorded, such as the first opening of the app, uninstallation, update, crash or frequency of use of the App. With the events, further user interests can also be defined, e.g. for certain functions of the applications or specific topics. This also allows user profiles can be created, e.g. as a basis for the presentation of advertising messages tailored to users, can be used.

Google Firebase and the personal data of users processed by Google Firebase can be further together with other services of Google, such as Google Analytics and the Google marketing services and Google Analytics (in this case, device-related information such as "Android Advertising ID" and "Advertising Identifier for iOS" are processed in order to provide users' mobile devices with identify).

If we ask the users for their consent (e.g. in the context of a cookie consent), the Legal basis of this processing Art. 6 par. 1 letter a. DSGVO. Otherwise, the personal data the user on the basis of our legitimate interests (i.e. interest in analysis, optimization and economic operation of our online offer in the sense of Art. 6 para. 1 lit. f. DSGVO) processed.

Insofar as data is processed in the USA, we point out that Google uses the is certified according to the Privacy-Shield-Agreement and thereby assures to comply with the European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

The privacy policy of Google is available at https://policies.google.com/privacy abrufbar. Further Information on the use of data for marketing purposes by Google, users can find out on the overview page: https://policies.google.com/technologies/ads?hl=de,

If users wish to object to interest-based advertising through Google marketing services, they can Users use the setting and opt-out options provided by Google: https://adssettings.google.com/

Online presence in social media

We maintain online presences within social networks and platforms, to communicate with the customers, interested parties and users active there and to inform them about our services to be able to inform.

We would like to point out that user data is processed outside the European Union can be made. This can result in risks for the users, because, for example, the enforcement of rights the user could be made more difficult. With regard to US providers certified under the Privacy-Shield we would like to point out that by doing so, they are committing themselves to comply with the data protection standards of the EU to be observed.

Furthermore, user data is generally processed for market research and advertising purposes. Thus e.g. creates user profiles based on the user behavior and the resulting interests of the users become. The usage profiles can in turn be used, for example, to display advertisements inside and outside the of the platforms that presumably correspond to the interests of the users. For these purposes the As a rule, cookies are stored on the user's computer, in which the user behavior and the interests of the of the user can be saved. Furthermore, the user profiles can also contain data independent of the data stored by the users. devices used (especially if the users are members of the respective platforms) and are logged in with them).

The processing of the personal data of users is based on our legitimate interests effective information to users and communication with users in accordance with Art. 6 para. 1 lit. f. GDPR. If the users are asked by the respective providers of the platforms to give their consent to the aforementioned The legal basis of the processing is art. 6, paragraph 1, letter a., art. 7 DSGVO.

For a detailed presentation of the respective processing and the possibilities of objection (opt-out), we refer to the following linked information of the providers.

Also in case of requests for information and the assertion of user rights, we point out that these can be asserted most effectively with the providers. Only the providers have access to the data of the users and can directly take appropriate measures and provide information. Should you need help nevertheless, then you can contact us.

- Facebook, -Pages, -Groups, (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland) on the basis of Agreement on joint Processing of personal data - Privacy policy: https://www.facebook.com/about/privacy/, especially for Pages: https://www.facebook.com/legal/terms/information_about_page_insights_data , Opt-Out: https://www.facebook.com/settings?tab=ads und http://www.youronlinechoices.com, Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.

- Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Datenschutzerklärung/ Opt-Out: http://instagram.com/about/legal/privacy/.

- Pinterest (Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA) – Privacy policy/ Opt-Out: https://about.pinterest.com/de/privacy-policy.

Google Fonts

We bind the fonts ("Google Fonts") of the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. According to Google, the data of the user solely for the purpose of displaying the fonts in the user's browser. The integration takes place on the basis of our justified interests in a technically safe, maintenance-free and efficient use of fonts, their uniform presentation and consideration of possible licensing restrictions for their integration. Datenschutzerklärung: https://www.google.com/policies/privacy/.

Created with Privacy Policy-Generator.de by RA Dr. Thomas Schwenke