We are pleased about your visit to the websites and the app (applications) of Aqua Free GmbH. The protection of your personal data is very important to us. With this privacy policy we would like to inform you about how we handle your personal data when you visit our applications and about your rights.
We,
Aqua Free GmbH
Winsbergring 31
22525 Hamburg
are responsible for protecting your personal data.
Our data protection officer is Dr. Bernd Lühr, Arconda Systems AG, Sportallee 6, 22335 Hamburg, Germany, Tel. +49 40 823158-0, b.luehr@arconda.ag.
In the following, we will inform you about what data is collected when using our applications, the purposes for which it is processed, the legal basis for data processing, the options you have to control the collection and processing of the data yourself and when the data is deleted.
The HyGenius mobile application is developed and operated by Moon42 Ltd. This privacy policy informs users that Moon42, as the developer, does not collect, use or process personal data through the HyGenius application, and describes users' rights regarding data protection and our contact details in case of data protection issues.
When using our applications, requests are made to our servers (API) and the following data is automatically transmitted:
Temporary storage of this data is necessary to enable delivery of the data to your end device and to ensure the functionality of the application. In addition, we collect the data in order to trace and prevent unauthorized access to the server and the misuse of the API and to secure our information technology systems.
We temporarily store this data on the basis of legitimate interests (Art. 6 para. 1 f DSGVO). Our legitimate interest is to achieve the purposes described above.
The data will be deleted when they are no longer necessary for the achievement of the purposes. Log files are deleted after 30 days at the latest.
When using our application, a so-called JWT (JSON Web Token) is set. This is a small text file that is stored on your end device. JWT contains a characteristic character sequence with which you can be identified as a user when you use our application again.
Technically necessary JWT enables the technical functionality of the application. The functions of our application cannot be offered without the use of JWT.
JWT serves to make the usability of our application more user-friendly and to ensure certain functionalities, e.g. the storage of your login data, so that you can access your already entered data and settings when you call up the application again and do not have to log in again each time.
We use technically necessary JWT on the basis of legitimate interests (Art. 6 para. 1 f DSGVO). Our legitimate interest is to ensure the functioning of our application and its optimal usability.
The JWT tokens are stored on your terminal device as long as you are logged in. As soon as you log out or the lifetime of the JWT has expired the JWT will be deleted. The lifetime of the JWT is currently 5 days. After this period, if the JWT is sent to the API for authentication and the API does not accept it, it will be deleted from your mobile device.
In the following we inform you about which data is collected and processed when you contact us, open an account or purchase online products, for which purposes and by which recipients it is processed, on which legal basis the data processing takes place and when the data is deleted.
We collect and process the data provided by you, such as your contact data, your name and your request, when you contact us via a contact form or by e-mail. All data that you transmit to us is encrypted between your terminal or browser and our server.
Sendgrid: We have integrated in the application a service for sending mail from Sendgrid. Sendgrid is a commercial service provider for e-mail dispatch. This service is used in the application for sending the contact form to our customer service.
SendGrid, Inc., 1401 Walnut, Suite 500, Boulder, CO 80302, USA. In order for SendGrid to send your email, we will send your name, email address, and the content of your request to SendGrid. The most current SendGrid Privacy Policy and additional information can be found on this website: https://sendgrid.com/privacy. Processing is carried out in accordance with Art. 6 para. 1 sentence 1 letter b DSGVO for the purpose of executing a contract with you. The data will only be processed for as long as it is necessary for the aforementioned purposes.
The data processing is carried out by our customer service or by service providers commissioned by us exclusively on the basis of and for processing your inquiry.
We collect and process the data you provide, such as your name, e-mail address, the name of your organization and your telephone number, when you contact us via the registration form. All data that you send to us is transferred in encrypted form between your terminal and our server.
Google-Mail: In addition, we use Google Mail as a solution for sending the registration confirmation to our users. If you send us your information to create an account through Sendgrid, a registration confirmation with a registration code will automatically be sent to our users via Google Mail after the account is created. Sendgrid will send the information through contractual arrangements based on an appropriate level of data protection. When using Google Mail, it cannot be ruled out that the relevant employees of the partner Google Inc. (USA) or its subsidiaries and subcontractors may become aware of this information. The data is therefore also collected, processed and used in countries outside the European Union and the European Economic Area.
Sendgrid: We have integrated in the application a service for sending mail from Sendgrid. Sendgrid is a commercial service provider for e-mail dispatch. This service is used in the application to send registration data to our customer service and statistical data about the change processes to its users.
SendGrid, Inc., 1401 Walnut, Suite 500, Boulder, CO 80302, USA. In order for SendGrid to send your email, we will send your name, email address, organization name and phone number to SendGrid. The most current SendGrid Privacy Policy and additional information can be found on this website: https://sendgrid.com/privacy. The processing is carried out in accordance with Art. 6 para. 1 sentence 1 letter b DSGVO for the purpose of executing a contract with you. The data will only be processed for as long as it is necessary for the aforementioned purposes.
The data processing is carried out by our customer service or by service providers commissioned by us exclusively on the basis of and for processing your registration.
You can revoke any consent you may have given to the processing of your personal data at any time with effect for the future. Please note that the revocation has no effect on the lawfulness of previous data processing and that it does not extend to data processing for which there is a legal reason for permission and which may therefore be processed without your consent.
In addition, in accordance with Articles 15 to 21 and 77 of the EU Basic Data Protection Regulation (DSGVO), you are entitled to the following data protection rights if the legal requirements are met:
You can request at any time that we provide you with information about which of your personal data we process and how, and provide you with a copy of the personal data stored about you, Art. 15 DSGVO.
You can request the correction of incorrect personal data and the completion of incomplete personal data, Art. 16 DSGVO.
To delete your personal data: Please note that the deletion does not include data which we require for the execution and processing of contracts and for the assertion, exercise and defence of legal claims, as well as data for which legal, supervisory or contractual obligations to retain data exist, Art. 17 DSGVO.
You may request the restriction of the processing under certain circumstances, for example if you consider that your data are inaccurate, if the processing is unlawful or if you have objected to the processing. As a result, your data may only be processed to a very limited extent without your consent, e.g. to assert, exercise and defend legal claims or to protect the rights of other natural and legal persons, Art. 18 DSGVO.
If there are special reasons, you have the possibility to object at any time to data processing that is based on a legitimate interest, Art. 21 DSGVO.
You have the right to receive the data which you have provided to us and which we process on the basis of your consent or for the purpose of fulfilling the contract, in a common, machine-readable format and to demand, within the scope of what is technically feasible, the direct transfer of this data to third parties, Art. 20 DSGVO.
You can exercise your rights through the following contact channels:
Arconda Systems AG
Herrn Dr. Bernd Lühr
Data protection officer
Sportallee 6
22335 Hamburg
e-mail: b.luehr@arconda.ag
Phone: +49 40 823158-0
For example, if you believe that our data processing is unlawful or we have not granted the rights described above to the extent necessary, you have the right to lodge a complaint with the competent data protection supervisory authority.
Status: 25.05.2020