private policy.
Introduction
​
We ("we", "us", "our") take the privacy of users ("users" or "you") of our website and/or mobile app (the "Website" and the "Mobile App" respectively) very seriously and are committed to protecting the information users provide to us in connection with their use of our Website and/or Mobile App (together: "Digital Assets"). We are also committed to protecting and using your information in accordance with applicable law.
​​
This Privacy Policy explains our practices regarding the collection, use and disclosure of your information through your use of our digital assets (the "Services") when you access the Services through your devices.
​​
Please read the Privacy Policy carefully and make sure you fully understand our practices regarding your information before using our services. If you have read this policy, fully understand it and do not agree with our practices, you must stop using our digital assets and services. By using our Services, you agree to the terms of this Privacy Policy. Your continued use of the Services constitutes your acceptance of this Privacy Policy and any changes to it.
​
This privacy policy includes information about:
​
-
What data we collect
-
How we collect data
-
Why we collect this data
-
Who we share the data with
-
Where the data is stored
-
How long the data is kept
-
How we protect the data
-
How we handle your data
-
Updates or changes to the privacy policy
What data we collect?
​
Below is an overview of the data we may collect::
​
-
Non-identified and non-identifiable information that you provide during the registration process or that is collected through the use of our services ("non-personal data"). Non-Personal Information does not identify who it was collected from. Non-Personal Information that we collect consists primarily of technical and aggregate usage information.
-
Individually identifiable information, which is any information by which you can be identified or could reasonably be identified ("personal data"). Personal information we collect through our Services may include information requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses and more. When we combine personal data with non-personal data, as long as it is in combination, we will treat it as personal data.
​
How do we collect data?
Below are the main methods we use to collect data:
​​
-
We collect data when you use our services. So when you visit our digital assets and use services, we may collect, record and store usage, sessions and related information.
-
We collect data that you provide to us yourself, for example when you contact us directly via a communication channel (e.g. an email with a comment or feedback).
-
We may collect data from third party sources as described below.
-
We collect data that you provide to us when you sign up to our services through a third party provider such as Facebook or Google.
Why do we collect this data?
We may use your data for the following purposes:
​
-
to provide and operate our services;
-
to develop, adapt and improve our services;
-
to respond to your feedback, enquiries and requests and to provide assistance;
-
to analyse request and usage patterns;
-
for other internal, statistical and research purposes;
-
to improve our data security and fraud prevention capabilities;
-
to investigate violations and enforce our terms and policies and to comply with applicable law, regulation or governmental request;
-
to provide you with updates, news, promotional materials and other information related to our services. For promotional emails, you can decide whether you want to continue receiving them. If not, simply click on the unsubscribe link in these emails.
Who do we share the data with?
We may share your information with our service providers to operate our services (e.g. storing data via third party hosting services, providing technical support, etc.).
​
We may also disclose your information in the following circumstances: (i) to investigate, detect, prevent or take action regarding illegal activities or other misconduct; (ii) to establish or exercise our rights of defence; (iii) to protect our rights, property or personal safety and the safety of our users or the public; (iv) in the event of a change of control of us or any of our affiliates (by way of merger, acquisition or purchase of (substantially) all of the assets, etc.); (v) to collect and/or maintain your information through authorised third party service providers (e.g. cloud service providers) to the extent necessary for the purposes of our business. (v) to collect, maintain and/or manage your information through authorised third party service providers (e.g. cloud service providers) as appropriate for business purposes; (vi) to work with third party service providers to improve your user experience. For the avoidance of doubt, we may transfer or disclose non-personal data to third parties or use it in any other way at our discretion..
​
Where is the data stored?
Non-personal data
​
For the purposes explained in this Privacy Policy, we store and process any non-personal data we collect in different jurisdictions.
​
How long is the data kept?
Please note that we will retain the data collected for as long as is necessary to provide our services, to comply with our legal and contractual obligations to you, to resolve disputes and to enforce our agreements.
We may correct, amend or delete inaccurate or incomplete data at any time at our sole discretion.
How do we protect the data?
​​
The hosting service for our digital assets provides us with the online platform through which we can offer our services to you. Your data can be stored via our hosting provider's data storage, databases and general applications. It stores your data on secure servers behind a firewall and it provides secure HTTPS access to most areas of its services.
Notwithstanding the measures and efforts taken by us and our hosting provider, we cannot and do not guarantee absolute protection and security of the data you upload, post or otherwise share with us or others.
For this reason, we ask that you establish strong passwords and, where possible, do not provide us or others with confidential information that you believe could cause you significant or lasting harm if disclosed. In addition, as email and instant messaging are not considered secure forms of communication, we ask that you do not disclose confidential information through either of these communication channels.
How do we handle your data?
​
We will only use your personal data for the purposes set out in the Privacy Policy and only if we are satisfied that:
​
-
the use of your personal data is necessary to perform or enter into a contract (e.g. to provide you with the services themselves or customer care or technical support);
-
the use of your personal data is necessary to comply with relevant legal or regulatory obligations; or
-
the use of your personal data is necessary to support our legitimate business interests (provided that at all times this is done in a way that is proportionate and respects your data protection rights).
As an EU resident, you can:
​
-
Request confirmation as to whether or not personal data concerning you is being processed and access to your stored personal data and certain additional information;
-
request to receive personal data that you have provided to us in a structured, commonly used and machine-readable format;
-
request the correction of your personal data that we have stored;
-
request the deletion of your personal data object to the processing of your personal data by us;
-
request the restriction of the processing of your personal data, or lodge a complaint with a supervisory authority.
However, please note that these rights are not unlimited and may be subject to our own legitimate interests and regulatory requirements. If you have any general questions about the personal data we collect and how we use it, please contact us as set out below.
In the course of providing the Services, we may transfer data across borders to affiliates or other third parties and from your country/jurisdiction to other countries/jurisdictions around the world. By using the Services, you consent to the transfer of your data outside the EEA.
If you are located in the EEA, your personal data will only be transferred to locations outside the EEA if we are satisfied that there is an adequate or comparable level of protection for personal data. We will take appropriate steps to ensure that we have adequate contractual arrangements in place with our third parties to ensure that appropriate safeguards are in place so that the risk of unlawful use, alteration, deletion, loss or theft of your personal data is minimised and that these third parties act at all times in accordance with applicable laws.
​​
Rights under the California Consumer Protection Act
​
If you use the Services as a California resident, then you may be entitled to request access to and deletion of your information under the California Consumer Privacy Act ("CCPA"). To exercise your right to access and delete your information, please see below for how to contact us.
We do not sell users' personal information for the intent and purposes of the CCPA.
​
Updates or changes to the privacy policy
We may revise this Privacy Policy from time to time at our sole discretion, the version posted on the Website is always current (see the "Status" statement). We encourage you to review this Privacy Policy periodically for changes. In the event of material changes, we will post a notice to that effect on our website. Your continued use of the Services following notification of changes to our Website will constitute your acknowledgement and acceptance of the changes to the Privacy Policy and your agreement to be bound by the terms of those changes.
​
Contact
If you have any general questions about the Services or the information we collect about you and how we use it, please contact us at:
​
Name: Jakob Korbel
Anschrift: Straße des 17. Juni 135, 10623 Berlin
E-Mail-Adresse: jakob.j.korbel@tu-berlin.de