Data Protection Statement DIE RINGE App

1) Information about the collection of personal data and contact details of the responsible party

1.1 We are pleased that you are using our application (hereinafter "App"). In the following, we inform you about the handling of your personal data when using our App. Personal data are all data with which you can be personally identified.

1.2 The responsible party for data processing concerning this App within the meaning of the General Data Protection Regulation (GDPR) is DIE RINGE GmbH, Stolberger Straße 194 d, 50933 Cologne, Germany, Tel.: +491782011570, E-Mail: hello@dieringe.com. The person responsible for the processing of personal data is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data.

1.3 For security reasons and to protect your data from unauthorized or unlawful access, alteration or disclosure, we encrypt the data during transit and at rest.

2) Use of single sign-on procedures

2.1 Google Sign-In

In our App, you can sign up to create a customer account or register using the "Google Sign-In" service of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google") within the framework of the so-called single sign-on technique if you have a Google profile. The Google sign-in function is recognized in the App by the buttons "Sign in with Google", "Log in with Google Account" or "Sign in with Google".

This establishes a direct connection between the App and Google's servers. As a result, Google receives information that you have accessed the corresponding page in the App, even if you do not have a Google profile or are not currently logged in to Google. This information (including your IP address) is transmitted directly to a Google server and stored there; this may also involve a transmission to the servers of Google LLC. in the USA. These data processing operations are carried out according to Art. 6 para. 1 lit. f GDPR based on Google's legitimate interest in displaying personalized advertising based on browsing behavior.

Using the Google sign-in button, you also have the option of logging in or registering in the App using your Google user data. Only if you give your express consent in accordance with Art. 6 para. 1 lit. a GDPR before the login process based on a corresponding notice about the exchange of data with Google, we will receive from Google, depending on your personal privacy settings on Google, the general and publicly accessible information stored in your profile. This information includes the user ID, name, profile picture, age, and gender.

Please note that after changes to Google's privacy policy and terms of use, when granting consent, your profile pictures, user IDs of your friends, and the friend list may also be transmitted if they have been marked as "public" in your Google privacy settings. The data transmitted by Google to us is used to create a user account with the necessary data (salutation, first name, last name, address data, country, email address, date of birth) if you have released them on Google. Conversely, based on your consent, data (e.g., information about your surfing or purchasing behavior) can be transmitted from us to your Google profile. The granted consent can be revoked at any time by sending a message to the responsible party mentioned at the beginning of this privacy policy.

For the purpose and scope of data collection and the further processing and use of the data by Google, as well as your related rights and settings options for protecting your privacy, please refer to Google's privacy policy: https://policies.google.com/privacy?hl=de&gl=de

You can view the terms of use for "Google Sign-In" here: https://policies.google.com/terms

If you do not want Google to directly associate the data collected through our web presence with your Google profile, you must log out of Google before using the App.

2.2 Facebook Connect

By using the "Facebook Connect" button in our App, you can register and log in using your Facebook user data. If you give your explicit consent in accordance with Art. 6 para. 1 lit. a GDPR before the login process based on a corresponding notice about the exchange of data with Facebook, we will receive from Facebook, depending on your personal privacy settings on Facebook, the general and publicly accessible information stored in your profile. This information includes the user ID, name, profile picture, age, and gender.

Please note that after changes to Facebook's privacy policy and terms of use, when granting consent, your profile pictures, user IDs of your friends, and the friend list may also be transmitted if they have been marked as "public" in your Facebook privacy settings. The data transmitted by Facebook to us is used to create a user account with the necessary data (salutation, first name, last name, address data, country, email address, date of birth) if you have released them on Facebook. Conversely, based on your consent, data (e.g., information about your surfing or purchasing behavior) can be transmitted from us to your Facebook profile. The granted consent can be revoked at any time by sending a message to the responsible party mentioned at the beginning of this privacy policy.

For the purpose and scope of data collection and the further processing and use of the data by Facebook, as well as your related rights and settings options for protecting your privacy, please refer to Facebook's privacy policy: https://www.facebook.com/policy.php

If you do not want Facebook to directly associate the data collected through our App with your Facebook profile, you must log out of Facebook before visiting our App. You can also prevent the loading of Facebook plugins with suitable add-ons for your browser.

3) Log files when using our mobile app

When you download our mobile app through an app store, the necessary information is transferred to the app store, in particular, the username, email address, and customer number of your account, the time of download, payment information, and the individual device identifier. We have no influence on this data collection and are not responsible for it. We process the data only to the extent necessary for downloading the mobile app to your mobile device.

When using our mobile app, we collect the personal data described below to enable comfortable use of the functions. If you want to use our mobile app, we collect the following data, which is technically necessary for us to offer you the functions of our mobile app and ensure stability and security:

  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request
  • Access status / HTTP status code
  • Amount of data sent in bytes
  • Source / referral from which you reached the page
  • Browser used
  • Language and version of browser software
  • Operating system used and its interface
  • IP address used (if applicable: in anonymized form)

The processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR based on our legitimate interest in improving the stability and functionality of our app. The data is not passed on or used in any other way. However, we reserve the right to review the aforementioned log files retrospectively if there are concrete indications of unlawful use.

We also require your unique device number (IMEI = International Mobile Equipment Identity), unique subscriber number (IMSI = International Mobile Subscriber Identity), mobile phone number (MSISDN), possibly MAC address for WLAN use, and the name of your mobile device.

4) Hosting & Content Delivery Network

4.1 Firebase Cloud Storage
We use the web hosting service "Firebase Cloud Storage" provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google") for the purpose of hosting and displaying app content based on processing on our behalf. All data collected on our website is processed on Google's servers. In the context of the aforementioned services, data can also be transmitted to servers of Google LLC in the USA as part of further processing on behalf of the controller. We have concluded a data processing agreement with Google for the use of Firebase, in which Google commits to protect the data of our site visitors and not to pass them on to third parties.
For the transfer of data from the EU to the USA, Google relies on so-called standard data protection clauses of the European Commission, which are intended to ensure compliance with the European data protection level in the USA.
You can find further information on Google's privacy policy regarding Firebase at the following website: https://firebase.google.com/support/privacy
Further processing on servers other than those mentioned above by Google only takes place within the framework communicated below.

4.2 Google Cloud CDN
For the operation of this app, we use a so-called Content Delivery Network ("CDN") provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). A content delivery network is an online service that helps deliver large media files (such as graphics, page content, or scripts) through a network of regionally distributed and internet-connected servers. Using Google's Content Delivery Network helps us optimize the loading speeds of our app.
The processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR based on our legitimate interest in a secure and efficient provision, as well as improvement of the stability and functionality of our app. You can find further information on Google's privacy policy at the following website: https://www.google.de/policies/privacy/

5) Cookies

To make our app attractive and to enable the use of certain features, we use so-called cookies. These are small text files that are stored on your device. Some of the cookies we use are deleted after closing the app (so-called session cookies). Other cookies remain on your device and allow us to recognize you (so-called persistent cookies). When cookies are set, they collect and process certain user information, such as browser and location data, as well as IP address values. Persistent cookies are automatically deleted after a specified duration, which may vary depending on the cookie.

In some cases, cookies are used to simplify the operation of the app by storing settings. If personal data is also processed by individual cookies used by us, the processing is carried out in accordance with Art. 6 para. 1 lit. b GDPR for the performance of the contract, in accordance with Art. 6 para. 1 lit. a GDPR in the case of granted consent, or in accordance with Art. 6 para. 1 lit. f GDPR to protect our legitimate interests in the best possible functionality of the app and a customer-friendly and effective design of app usage.

You can configure your mobile operating system's settings and the app according to your preferences, for example, by rejecting third-party cookies or all cookies. However, we would like to point out that in this case, you may not be able to use all the functions of our mobile app.

6) Collection of Location Data

- Without consent
Our offer includes so-called Location-Based Services, with which we provide you with special offers tailored to your respective location. Your location is only transmitted to us when you use app features that we can only offer you with knowledge of your location. This function uses your location data via GPS and your IP address in anonymized form for service provision.
For advertising purposes, market research, and demand-oriented design of the offer, we create usage profiles using pseudonyms. This data is not combined with other personal data. You can object to this in the app settings, effective for the future. Alternatively, you can send your objection to the email address provided in the imprint.

7) Contacting Us

When contacting us (e.g., via contact form or email), personal data is collected. The data collected when using a contact form in the app is evident from the respective contact form. This data is stored and used exclusively for the purpose of responding to your request or for making contact and the associated technical administration. The legal basis for processing this data is our legitimate interest in responding to your request in accordance with Art. 6 para. 1 lit. f GDPR. If your contact is aimed at concluding a contract, the additional legal basis for processing is Art. 6 para. 1 lit. b GDPR. Your data will be deleted after final processing of your request. This is the case if it can be inferred from the circumstances that the matter in question has been conclusively resolved and provided that no statutory retention obligations conflict.

8) Data Processing for Opening a Customer Account

In accordance with Art. 6 para. 1 lit. b GDPR, personal data is still collected and processed if you provide it to us for the performance of a contract or the opening of a customer account. The data collected is evident from the respective input forms. You can delete your customer account at any time by sending a message to the above address of the responsible party. We store and use the data you provide for contract processing. After the complete processing of the contract or deletion of your customer account, your data will be blocked in consideration of tax and commercial retention periods and deleted after these periods have expired, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is legally permitted and about which we inform you accordingly below.

9) Data Processing for Contract Execution

9.1 To process contracts concluded via the app, we work with the following service provider(s), who support us wholly or partially in the execution of concluded contracts. Certain personal data is transmitted to these service providers in accordance with the following information.

The personal data we collect is passed on to the transport company commissioned with the delivery during contract processing, as far as this is necessary for the delivery of the goods. We pass on your payment data to the commissioned credit institution within the scope of payment processing, as far as this is necessary for payment processing. If payment service providers are used, we explicitly inform you about them below. The legal basis for the transfer of data is Art. 6 para. 1 lit. b GDPR.

9.2 Use of specific service providers for contract processing and execution

- Billbee

For order processing, we use the following provider: Billbee GmbH, Arolser Str. 10, 34477 Twistetal, Germany

Name, address, and, if applicable, other personal data are passed on to the provider in accordance with Art. 6 para. 1 lit. b GDPR for the sole purpose of processing the online order. Your data is only passed on to the extent that it is actually necessary for processing the order.

9.3 - Apple Pay
If you choose the payment method "Apple Pay" of Apple Distribution International (Apple), Hollyhill Industrial Estate, Hollyhill, Cork, Ireland, the payment processing is carried out via the "Apple Pay" function of your iOS, watchOS, or macOS-operated device by charging a payment card stored in "Apple Pay." Apple Pay uses security features integrated into your device's hardware and software to protect your transactions. Therefore, to release a payment, the input of a code previously set by you and the verification using the "Face ID" or "Touch ID" function of your device is required.
For the purpose of payment processing, your information provided during the ordering process, along with information about your order, is transmitted to Apple in encrypted form. Apple then encrypts this data again with a developer-specific key before the data is transmitted to the payment service provider of the payment card stored in Apple Pay for processing the payment. The encryption ensures that only the website where the purchase was made can access the payment data. Once the payment is made, Apple sends your device account number and a transaction-specific, dynamic security code to the originating website to confirm the success of the payment.
If personal data is processed in the described transmissions, the processing is carried out exclusively for the purpose of payment processing in accordance with Art. 6 para. 1 lit. b GDPR.
Apple stores anonymized transaction data, including the approximate purchase amount, approximate date and time, and whether the transaction was successfully completed. Anonymization completely excludes personal reference. Apple uses the anonymized data to improve "Apple Pay" and other Apple products and services.
If you use Apple Pay on your iPhone or Apple Watch to complete a purchase made via Safari on your Mac, the Mac and the authorization device communicate through an encrypted channel on Apple servers. Apple does not process or store any of this information in a format that can identify you personally. You can disable the ability to use Apple Pay on your Mac in your iPhone settings. Go to "Wallet & Apple Pay" and disable "Allow Payments on Mac."
Further information on data protection at Apple Pay can be found at the following web address: https://support.apple.com/de-de/HT203027
- Google Pay
If you choose the payment method "Google Pay" of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), the payment processing is carried out via the "Google Pay" application on your mobile device running at least Android 4.4 ("KitKat") and equipped with an NFC function by charging a payment card stored in Google Pay or a verified payment system (e.g., PayPal). For the release of a payment via Google Pay in the amount of more than €25, unlocking your mobile device with the respective verification measure (e.g., facial recognition, password, fingerprint, or pattern) is required.
For the purpose of payment processing, your information provided during the ordering process, along with information about your order, is transmitted to Google. Google then forwards your payment information stored in Google Pay in the form of a one-time transaction number to the originating website, which verifies a completed payment. This transaction number does not contain any information about the real payment data of your payment method stored in Google Pay, but is created and transmitted as a one-time valid numeric token. In all transactions via Google Pay, Google merely acts as an intermediary for processing the payment. The transaction is carried out exclusively between the user and the originating website by charging the payment method stored in Google Pay.
If personal data is processed in the described transmissions, the processing is carried out exclusively for the purpose of payment processing in accordance with Art. 6 para. 1 lit. b GDPR.
Google reserves the right to collect, store, and analyze certain transaction-specific information for each transaction made via Google Pay. This includes the date, time, and amount of the transaction, merchant location and description, a description of the purchased goods or services provided by the merchant, photos you attached to the transaction, the name and email address of the seller and buyer or sender and recipient, the payment method used, your description of the reason for the transaction, and, if applicable, the offer associated with the transaction.
According to Google, this processing is carried out exclusively in accordance with Art. 6 para.1 lit. f GDPR based on the legitimate interest in proper invoicing, verification of transaction data, and optimization and maintenance of the Google Pay service.
Google also reserves the right to merge the processed transaction data with further information collected and stored by Google when using other Google services.
Google Pay's terms of use can be found here:
https://payments.google.com/payments/apis-secure/u/0/get_legal_document?ldo=0&ldt=googlepaytos&ldl=de
Further information on data protection at Google Pay can be found at the following web address:
https://payments.google.com/payments/apis-secure/get_legal_document?ldo=0&ldt=privacynotice&ldl=de
Paypal

On this website, one or more online payment methods from the following provider are available: PayPal (Europe) S.a.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg

When choosing a payment method from the provider, in which you make an advance payment (e.g., credit card payment), your payment data provided during the order process (including name, address, bank and card information, currency, and transaction number) as well as information about the content of your order will be passed on to the provider according to Art. 6 para. 1 lit. b GDPR. In this case, the disclosure of your data is exclusively for the purpose of processing the payment with the provider and only to the extent necessary for this purpose.

When selecting a payment method in which the provider makes an advance payment (e.g., invoice or installment purchase or direct debit), you will also be asked during the ordering process to provide certain personal data (first and last name, street, house number, postal code, city, date of birth, email address, telephone number, possibly data on an alternative payment method).

To safeguard our legitimate interest in determining the creditworthiness of our customers, this data will be forwarded by us to the provider for the purpose of a credit check in accordance with Art. 6 para. 1 lit. f GDPR. The provider checks, based on the personal data you provide and other data (such as shopping cart, invoice amount, order history, payment experiences), whether the selected payment option can be granted with regard to payment and/or default risks.

The credit report may contain probability values (so-called score values). Insofar as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical method. The calculation of score values includes, among other things but not exclusively, address data.

You can object to this processing of your data at any time by sending a message to us or the provider. However, the provider may still be entitled to process your personal data if this is necessary for the proper payment processing in accordance with the contract.
- Stripe
If you choose a payment method from the payment service provider Stripe, the payment processing will be carried out via the payment service provider Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we will pass on your information provided during the order process together with the information about your order (name, address, account number, bank code, possibly credit card number, invoice amount, currency, and transaction number) in accordance with Art. 6 para. 1 lit. b GDPR. The disclosure of your data is exclusively for the purpose of payment processing with the payment service provider Stripe Payments Europe Ltd. and only to the extent necessary for this purpose. Further information on data protection at Stripe can be found at the URL https://stripe.com/de/privacy#translation.

10) Registration in the App

You can register in our app by providing personal data. The personal data processed for registration can be seen from the input mask used for registration. We use the so-called double-opt-in procedure for registration, i.e., your registration is only completed if you have previously confirmed your registration via a confirmation email sent to you for this purpose by clicking on the link contained therein. If your confirmation in this regard is not made within 24 hours, your registration will be automatically deleted from our database. The provision of the aforementioned data is mandatory. All other information can be provided voluntarily through the use of our portal.

When using our app, we store the data required for contract fulfillment, including any payment method information, until you permanently delete your account. Furthermore, we store the data you voluntarily provided for the duration of your use of the portal, unless you delete it beforehand. All information can be managed and changed in the protected customer area. The legal basis is Art. 6 para. 1 lit. f GDPR.
In addition, we store all content published by you (e.g., public posts, wall entries, guestbook entries, etc.) to operate the app. We have a legitimate interest in providing the app with complete user-generated content. The legal basis for this is Art. 6 para. 1 lit. f GDPR. If you delete your account, your published statements, especially in the forum, will remain visible to all readers, but your account will no longer be accessible. All other data will be deleted in this case.

11) Use of Your Data for Direct Advertising

11.1 Sign up for our email newsletter

When you sign up for our email newsletter, we will regularly send you information about our offers. The only mandatory information for sending the newsletter is your email address. Providing additional data is voluntary and will be used to address you personally. We use the so-called double opt-in procedure for sending the newsletter. This means that we will only send you an email newsletter if you have expressly confirmed that you consent to receiving newsletters. We will then send you a confirmation email asking you to confirm by clicking on a corresponding link that you want to receive the newsletter in the future.

By activating the confirmation link, you give us your consent to use your personal data in accordance with Art. 6 para. 1 lit. a GDPR. When you sign up for the newsletter, we store the IP address entered by your Internet Service Provider (ISP) as well as the date and time of registration in order to be able to trace any possible misuse of your email address at a later time. The data collected by us when registering for the newsletter is used exclusively for promotional purposes through the newsletter. You can unsubscribe from the newsletter at any time via the provided link in the newsletter or by sending a corresponding message to the responsible person mentioned at the beginning. After successful cancellation, your email address will be immediately deleted from our newsletter distribution list, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is legally permitted and about which we inform you in this declaration.

11.2 Sending the email newsletter to existing customers

If you have provided us with your email address when purchasing goods or services, we reserve the right to regularly send you offers for similar goods or services, like those already purchased, from our product range via email. In this regard, we do not need to obtain separate consent from you according to § 7 para. 3 UWG. The data processing is solely based on our legitimate interest in personalized direct advertising according to Art. 6 para. 1 lit. f GDPR. If you initially objected to the use of your email address for this purpose, we will not send you any emails.

You have the right to object to the use of your email address for the aforementioned advertising purpose at any time with effect for the future by notifying the responsible person mentioned at the beginning. In this case, you will only incur transmission costs according to the basic tariffs. Upon receipt of your objection, the use of your email address for advertising purposes will be stopped immediately.

12) Dispatch of Push Notifications

You can sign up to receive our push notifications. You will regularly receive information about our offered services through our push notifications.

To sign up, you must confirm the receipt of notifications or allow them in the settings of your operating system. This process is documented and stored. This includes the storage of the registration time and your device identifier. The collection of this data is necessary so that we can display the push notifications and, in the case of misuse, trace the processes, thereby serving our legal protection. The processing of this data is based on Art. 6 para. 1 lit. a GDPR.

You can revoke your consent to the storage and use of your personal data for receiving our push notifications and the previously described statistical collection at any time with effect for the future. For the purpose of revoking your consent, you can unsubscribe from the push notification receipt setting in your app settings in your operating system.

Your data will be deleted as soon as they are no longer required to achieve the purpose of their collection. Your data will therefore be stored as long as your subscription for our push notifications is active.

13) Data Processing for Order Processing

In order to process your order, we may work with service providers who support us in whole or in part in the execution of concluded contracts. The necessary personal data will be transmitted to these service providers for contract fulfillment, Art. 6 para. 1 lit. b GDPR.

The personal data collected by us will be passed on to the transport company commissioned with the delivery as part of the contract processing, insofar as this is necessary for the delivery of the goods. We will pass on your payment data to the commissioned credit institution as part of the payment processing, as long as this is necessary for the payment process. If payment service providers are used, this is done based on contract fulfillment, Art. 6 para. 1 lit. b GDPR.

To fulfill our contractual obligations to our customers, we work with external shipping partners. We pass on your name, delivery address, and, if necessary for delivery, your telephone number, exclusively for the purpose of goods delivery Art. 6 para. 1 lit. b GDPR to a shipping partner chosen by us.

14) Online Marketing

Google Ads Conversion Tracking
This website uses the online advertising program "Google Ads" and, as part of Google Ads, the conversion tracking of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). We use the Google Ads offering to draw attention to our attractive offers on external websites using advertising media (so-called Google Adwords). We can determine the success of individual advertising measures in relation to the data of the advertising campaigns. Our goal is to show you advertisements that are of interest to you, make our website more interesting for you, and achieve a fair calculation of advertising costs.
The conversion tracking cookie is set when a user clicks on a Google-served Ads ad. Cookies are small text files that are stored on your device. These cookies usually lose their validity after 30 days and are not used for personal identification. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. Cookies cannot be tracked across the websites of Google Ads customers. The information collected using the conversion cookie is used to create conversion statistics for Google Ads customers who have opted for conversion tracking. Customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can personally identify users.
As part of the use of Google Ads, personal data may also be transmitted to the servers of Google LLC. in the USA.
Details on the processing initiated by Google Ads Conversion Tracking and Google's handling of data from websites can be found here: https://policies.google.com/technologies/partner-sites
All the processing described above, especially setting cookies for reading information on the device used, is only carried out if you have given us your explicit consent according to Art. 6 para. 1 lit. a GDPR. You can revoke your granted consent at any time with effect for the future by deactivating this service in the "Cookie Consent Tool" provided on the website.
You can also permanently object to the setting of cookies by Google Ads Conversion Tracking by downloading and installing the Google browser plug-in available at the following link:
https://www.google.com/settings/ads/plugin?hl=de
In order to address users more precisely in terms of their interests, whom we have received data from within the scope of business or business-like relationships, we use a customer matching function as part of Google Ads. For this purpose, we transmit one or more files with aggregated customer data (mainly email addresses and phone numbers) electronically to Google. Google does not have access to clear data but encrypts the information in the customer files automatically during the transmission process using a special algorithm. The encrypted information can then only be used by Google to assign it to existing Google accounts that the data subjects have set up. This enables the display of personalized advertising across all Google services linked to the respective Google account.
The transmission of customer data to Google takes place exclusively if you have given us your explicit consent according to Art. 6 para. 1 lit. a GDPR. You can revoke this consent at any time with effect for the future. Further information on Google's data protection measures in relation to the customer matching function can be found here: https://support.google.com/google-ads/answer/6334160?hl=de&ref_topic=10550182
Google's privacy policy can be viewed here: https://www.google.de/policies/privacy/

15) Web Analytics Services

Google Analytics 4
This app uses Google Analytics 4, a service provided by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"), which allows for the analysis of app usage.
Google Analytics 4 uses so-called "cookies" by default. Cookies are text files stored on your device, enabling the analysis of your use of an app. The information collected by cookies about your use of the app (including the truncated IP address transmitted by your device, see below) is usually sent to and stored on a Google server, where it is processed. This may also involve transmitting information to servers of Google LLC in the USA and further processing of the information there.
When using Google Analytics 4, the IP address transmitted by your device during your use of the app is by default and automatically always collected and processed in an anonymized manner, so that a direct personal reference of the collected information is excluded. This automatic anonymization takes place by shortening the IP address transmitted by your device within member states of the European Union (EU) or other contracting states of the Agreement on the European Economic Area (EEA).
On our behalf, Google uses this and other information to evaluate your use of the app, compile reports (Reports) on your app activities or usage behavior, and provide us with other services related to your app usage and internet usage. The truncated IP address transmitted by your device within the scope of Google Analytics 4 will not be merged with other Google data. The data collected during the use of Google Analytics 4 will be stored for 2 months and then deleted.
Google Analytics 4 also allows for the creation of statistics with statements about age, gender, and interests of app users using a special function called "demographic features," based on an evaluation of interest-based advertising and incorporating third-party information. This enables the identification and differentiation of user groups of the app for the purpose of targeted marketing measures. However, the data collected through the "demographic features" cannot be attributed to a specific person and therefore not to you personally. The data collected through the "demographic features" function will be stored for two months and then deleted.
All the processing described above, in particular the setting of Google Analytics cookies for storing and reading information on the device you use for the app, only takes place if you have given us your explicit consent according to Art. 6 (1) lit. a GDPR. Without your consent, Google Analytics 4 will not be used during your app usage. You can revoke your once-given consent at any time with effect for the future. To exercise your revocation, please deactivate this service via the "Cookie Consent Tool" provided in the app.
In connection with this app, the "UserIDs" function is also used as an extension of Google Analytics 4. By assigning individual UserIDs, we can have cross-device reports (Reports) created by Google (so-called "Cross Device Tracking"). This means that, with your corresponding consent to the use of Google Analytics 4 according to Art. 6 (1) lit. a GDPR, your usage behavior can also be analyzed across devices if you have set up a personal account on this app and are logged in with your related login data on various devices. The data collected in this way shows, among other things, on which device you first clicked on an ad and on which device the related conversion took place.
In connection with this app, the Google Signals service is also used as an extension of Google Analytics 4. With Google Signals, we can have cross-device reports (Reports) created by Google (so-called "Cross Device Tracking"). If you have activated the "personalized ads" in your settings in your Google account and linked your internet-enabled devices to your Google account, Google can analyze your usage behavior across devices and create data models based on this analysis, provided you have given your consent to the use of Google Analytics 4 according to Art. 6 (1) lit. a GDPR. This includes the logins and device types of all app users who were logged into a Google account and performed a conversion. The data shows, among other things, on which device you first clicked on an ad and on which device the related conversion took place. We do not receive any personal data from Google, but only statistics created based on Google Signals. You have the option to deactivate the "personalized ads" function in your Google account settings and thus disable the cross-device analysis in connection with Google Signals. To do this, please follow the instructions on this page: https://support.google.com/ads/answer/2662922?hl=de
Further information about Google Signals can be found at the following link: https://support.google.com/analytics/answer/7532985?hl=de
We have entered into a so-called order processing agreement with Google for our use of Google Analytics 4, which obliges Google to protect the data of our app users and not to pass it on to third parties.
To ensure compliance with the European data protection level even when data is possibly transmitted from the EU or EEA to the USA and further processed there, Google relies on the so-called standard contractual clauses of the European Commission, which we have contractually agreed with Google.
For further legal information about Google Analytics 4, including a copy of the mentioned standard contractual clauses, please refer to the following link: https://policies.google.com/privacy?hl=de&gl=de
Details on the processing initiated by Google Analytics 4 and Google's handling of app data can be found here: https://policies.google.com/technologies/partner-sites

16) Retargeting/ Remarketing/ Referral Advertising

Google Ads Remarketing
Our app uses the features of Google Ads Remarketing, with which we advertise for this app in Google search results and on third-party websites. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland ("Google"). For this purpose, Google sets a cookie on your device, which automatically enables interest-based advertising using a pseudonymous cookie ID and based on the pages you have visited in the app. The processing is based on our legitimate interest in the optimal marketing of our app according to Art. 6 (1) lit. f GDPR.
Further data processing will only take place if you have agreed with Google that your app browser history will be linked to your Google account and that information from your Google account will be used to personalize ads that you view on the web. If you are logged into Google while using our app, Google will use your data together with Google Analytics data to create and define target audience lists for cross-device remarketing. To do this, your personal data will be temporarily linked to Google Analytics data to form target audiences. In the course of using Google Ads Remarketing, personal data may also be transmitted to the servers of Google LLC. in the USA.
You can configure the settings of your mobile operating system and the app according to your preferences and, for example, reject the acceptance of cookies. You will then not be included in the web analysis statistics.
Please note that certain functions of this app may not be used or only used to a limited extent if you have deactivated the use of cookies.
For more information and the privacy policy regarding advertising and Google, please visit:
https://www.google.com/policies/technologies/ads/
As far as legally required, we have obtained your consent for the processing of your data as described above according to Art. 6 (1) lit. a GDPR. You can revoke your granted consent at any time with effect for the future. To exercise your revocation, please follow the above-described possibility of making an objection.

17) Tools and Miscellaneous

AppsFlyer

The "DIE RINGE" app by DIE RINGE GmbH utilizes AppsFlyer, an analytics service provided by AppsFlyer Inc. (111 New Montgomery St, San Francisco, CA 94105, USA). This technology assists us in evaluating the effectiveness of our marketing campaigns and enhancing the user experience within our app. For this purpose, AppsFlyer collects and stores various session and interaction data under a pseudonym. These data are used to tailor the content of our app more effectively to your needs and to improve its usability. The pseudonymized data will not be merged with other personal data without your explicit consent. The legal basis for data processing is Art. 6 (1) sentence 1 letter f GDPR. As a safeguard pursuant to Art. 44ff GDPR, AppsFlyer has signed the EU standard contractual clauses. You may object to the collection and storage of data by AppsFlyer at any time. To do so, please follow the instructions at https://www.appsflyer.com/legal/opt-out/. Your data will be stored with us until revocation. For more information on data processing by AppsFlyer, please refer to the privacy policy at https://www.appsflyer.com/legal/services-privacy-policy/.


Firebase Crashlytics

To create anonymized crash reports, we use "Firebase Crashlytics," a service of Google Ireland Ltd., Google Building Gordon House, Barrow Street, Dublin 4, Ireland, to improve the stability and reliability of our app.

Only based on your explicit consent according to Art. 6 (1) lit. a GDPR, anonymous information will be transmitted to Google's servers in the event of an app crash (state of the app at the time of the crash, Installation UUID, crash trace, manufacturer and operating system of the phone, last log messages). Transfers to Google LLC. In the USA are also possible. This information does not contain personal data.

When using an iOS-based device, you can grant consent in the app settings or after a crash. When using an Android-based device, during setup, there is the option to generally agree to the transmission of crash notifications to Google and app developers.

You can revoke your consent at any time by

  • disabling the "Crash Reports" feature in the app settings on iOS
  • adjusting the system settings on Android. To do this, open the app settings, select "Google," and in the three-dot menu at the top right,select the menu item "Usage & Diagnostics." Here, you can deactivate the sending of the corresponding data.

For more information on privacy, please see Firebase Crashlytics' privacy policy at https://firebase.google.com/support/privacy

18) Rights of the Data Subject

18.1 The applicable data protection law grants you comprehensive data subject rights (rights to information and intervention) against the data controller with regard to the processing of your personal data, which we inform you about below:

  • Right to access in accordance with Art. 15 GDPR: In particular, you have the right to obtain information about your personal data processed by us, the purposes of the processing, the categories of personal data processed, the recipients or categories of recipients to whom your data has been or will be disclosed, the planned duration of storage or the criteria for determining the storage duration, the existence of a right to rectification, erasure, restriction of processing, objection to processing, lodging a complaint with a supervisory authority, the source of your data if it was not collected from you by us, the existence of automated decision-making, including profiling, and, if applicable, meaningful information about the logic involved and the scope and intended effects of such processing concerning you, as well as your right to be informed about the guarantees in accordance with Art. 46 GDPR when your data is transferred to third countries;
  • Right to rectification in accordance with Art. 16 GDPR: You have the right to obtain the immediate rectification of inaccurate data concerning you and/or the completion of incomplete data stored by us;
  • Right to erasure in accordance with Art. 17 GDPR: You have the right to request the erasure of your personal data if the conditions of Art. 17 para. 1 GDPR are met. However, this right does not apply, in particular, if the processing is necessary for the exercise of the right to freedom of expression and information, the fulfillment of a legal obligation, reasons of public interest, or the assertion, exercise, or defense of legal claims;
  • Right to restriction of processing in accordance with Art. 18 GDPR: You have the right to request the restriction of the processing of your personal data as long as the accuracy of your data, which you have contested, is being verified; if you refuse the erasure of your data due to unlawful data processing and instead request the restriction of the processing of your data; if you need your data for the assertion, exercise, or defense of legal claims after we no longer need these data for their intended purpose; or if you have lodged an objection for reasons of your particular situation, as long as it has not yet been determined whether our legitimate reasons outweigh yours;
  • Right to be informed in accordance with Art. 19 GDPR: If you have asserted your right to rectification, erasure, or restriction of processing against the controller, they are obliged to inform all recipients to whom your personal data has been disclosed of this rectification, erasure of data, or restriction of processing, unless this proves impossible or involves a disproportionate effort. You have the right to be informed about these recipients.
  • Right to data portability in accordance with Art. 20 GDPR: You have the right to receive your personal data, which you have provided to us, in a structured, commonly used, and machine-readable format, or to request the transmission to another controller, as far as this is technically feasible;
  • Right to revoke consent granted in accordance with Art. 7 para. 3 GDPR: You have the right to revoke your consent to the processing of data at any time with effect for the future. In the event of revocation, we will immediately delete the affected data, provided that further processing cannot be based on a legal basis for processing without consent. The revocation of consent shall not affect the lawfulness of processing carried out based on the consent until the revocation;
  • Right to lodge a complaint in accordance with Art. 77 GDPR: If you believe that the processing of your personal data infringes the GDPR, you have the right to lodge a complaint with a supervisory authority - without prejudice to any other administrative or judicial remedy - in particular, in the Member State of your residence, your workplace, or the place of the alleged infringement.

18.2 Right to Object

If we process your personal data based on our overriding legitimate interests as part of a balancing of interests, you have the right to object to this processing at any time for reasons arising from your particular situation, with effect for the future.

If you exercise your right to object, we will stop processing the data concerned. However, we reserve the right to continue processing if we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, fundamental rights, and freedoms, or if the processing serves to assert, exercise or defend legal claims.

If we process your personal data for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising. You can exercise your objection as described above.

If you exercise your right to object, we will stop processing the data concerned for direct marketing purposes.

19) Duration of Storage of Personal Data

The duration of storage of personal data is determined by the respective legal basis, the processing purpose, and - if relevant - additionally by the respective legal retention period (e.g., commercial and tax retention periods).

When processing personal data based on explicit consent according to Art. 6 para. 1 lit. a GDPR, this data is stored until you revoke your consent.

If there are legal retention periods for data that is processed within the framework of legal or similar obligations based on Art. 6 para. 1 lit. b GDPR, this data is routinely deleted after the retention periods have expired, provided it is no longer required for the fulfillment or initiation of a contract and/or there is no legitimate interest on our part in continuing to store it.

When processing personal data based on Art. 6 para. 1 lit. f GDPR, this data is stored until you exercise your right to object according to Art. 21 para. 1 GDPR, unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.

When processing personal data for the purpose of direct advertising based on Art. 6 para. 1 lit. f GDPR, this data is stored until you exercise your right to object according to Art. 21 para. 2 GDPR.

Unless otherwise stated in the other information in this declaration about specific processing situations, stored personal data will be deleted if it is no longer necessary for the purposes for which it was collected or otherwise processed.

20) Health Connect

We use Health Connect by Google (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; "Google"), which offers a central repository for health and fitness data on Android devices. With your explicit consent, this feature allows our app to communicate with Health Connect to store and automatically synchronize your workout data when you activate this option in the settings.

By enabling Health Connect in your app settings, and with your approval, we can store and automatically synchronize data such as the duration and type of your workouts. These data help you track your fitness goals and visualize your progress. The use of Health Connect is solely with your consent in accordance with Art. 6 para. 1 lit. a GDPR, and the data is not used for advertising purposes. You can prevent Health Connect from accessing your data at any time by changing the settings on your device.