Privacy Policy
We take the protection of user data from our website and/or our mobile app very seriously and commit to protecting the information that users provide us in connection with the use of our website and/or our mobile app (together: "digital assets"). Furthermore, we commit to protecting and using your data in accordance with applicable law.
This privacy policy explains our practices regarding the collection, use, and disclosure of your data through the use of our digital assets (the "Services") when you access the Services through your devices. Please read the privacy policy carefully and ensure that you fully understand our practices regarding your data before using our services. If you have read this policy, fully understood it and do not agree with our approach, you must stop using our digital assets and services. By using our services, you acknowledge the terms of this privacy policy. Continued use of the services constitutes your consent to this privacy policy and any changes to it.
In this privacy policy you will learn:
-
How we collect data
-
What data we collect
-
Why we collect this data
-
To whom we pass on the data
-
Where the data is stored
-
How long the data is retained
-
How we protect the data
-
How we deal with minors
-
Updates or changes to the privacy policy
What data do we collect?
Below is an overview of the data we may collect:
-
Non-identified and non-identifiable information you provide during the registration process or that is collected through the use of our services ("non-personal data"). Non-personal data does not allow us to infer who it was collected from. The non-personal data we collect primarily consists of technical and aggregated usage information.
-
Individually identifiable information, i.e., all that can identify you or could reasonably identify you ("personal data"). The personal data we collect through our services may include information requested from time to time, such as names, email addresses, addresses, telephone numbers, IP addresses, and more. If we combine personal with non-personal data, these, as long as they are combined, will be treated by us as personal data.
How do we collect data?
The main methods we use to collect data are listed below:
-
We collect data when using our services. So when you visit our digital assets and use services, we can collect, capture, and store usage, sessions, and related information.
-
We collect data that you provide to us, for example, when you contact us directly through a communication channel (e.g., an email with a comment or feedback).
-
As described below, we may collect data from third-party sources.
-
We collect data that you provide to us when you sign up for our services through a third party like Facebook or Google.
Why do we collect this data?
We may use your data for the following purposes:
-
to provide and operate our services;
-
to develop, customize and improve our services;
-
to respond to your feedback, requests, and desires and to offer help;
-
to analyze request and usage patterns;
-
for other internal, statistical and research purposes;
-
to improve our data security and fraud prevention capabilities;
-
to investigate and enforce our terms and policies and to comply with applicable law, regulations or regulatory orders;
-
to provide you with updates, news, promotional materials and other information related to our services. With advertising emails, you can decide for yourself whether you want to continue receiving them. If not, simply click on the unsubscribe link in these emails.
Who do we pass this data on to?
We may pass on your data to our service providers to operate our services (e.g., data storage via third-party hosting services, provision of technical support, etc.).
We may also disclose your data under the following circumstances: (i) to investigate, uncover, prevent or take action against unlawful activities or other misconduct; (ii) to assert or exercise our right to defense; (iii) to protect our rights, our property or our personal safety as well as the safety of our users or the public; (iv) in the event of a change of control at us or one of our affiliated companies (by way of merger, acquisition, or purchase of essentially all assets, etc.); (v) to collect, hold and/or manage your data through authorized third-party providers, as far as this is appropriate for business purposes; (vi) to work with third-party providers to improve your user experience. To avoid misunderstandings, we would like to point out that we can transmit or pass on non-personal data to third parties at our own discretion or use it otherwise.
Cookies and similar technologies
When you visit or access our services, we authorize third parties to use web beacons, cookies, pixel tags, scripts and other technologies and analytics services ("tracking technologies"). These tracking technologies may allow third parties to automatically collect your data to improve the navigation experience on our digital assets, optimize their performance and ensure a customized user experience, as well as for security and fraud prevention purposes.
To learn more, please read our Cookie Policy.
Without your consent, we will not pass on your email address or other personal data to advertising companies or advertising networks.
Where do we store the data?
Non-personal data
Please note that our companies and our trusted partners and service providers are located all over the world. For the purposes explained in this privacy policy, we store and process all non-personal data we collect in different jurisdictions.
Personal Data
Personal data may be maintained, processed, and stored in the United States, Ireland, South Korea, Taiwan, Israel, and as far as necessary for the proper provision of our services and/or as required by law (as further explained below) in other jurisdictions.
How long is the data retained?
Please note that we retain the collected data as long as necessary to provide our services, to comply with our legal and contractual obligations to you, to resolve disputes and to enforce our agreements. We may correct, supplement or delete incorrect or incomplete data at any time at our discretion.
How do we protect the data?
The hosting service for our digital assets provides us with the online platform through which we can offer you our services. Your data may be stored through the data storage, databases and general applications of our hosting provider. He stores your data on secure servers behind a firewall and offers secure HTTPS access to most areas of its services.
Despite the measures and efforts taken by us and our hosting provider, we cannot and will not guarantee absolute protection and absolute security of the data you upload, publish or otherwise share with us or others.
For this reason, we ask you to set secure passwords and, if possible, not to transmit any confidential information to us or others, the disclosure of which, in your opinion, could cause you significant or lasting harm. Since email and instant messaging are not considered secure forms of communication, we also ask you not to disclose any confidential information via any of these communication channels.
How do we deal with minors?
Children can use our services. However, if they wish to access certain features, they may need to provide certain information. The collection of some data (including data collected via cookies, web beacons, and other similar technologies) may occur automatically. If we knowingly collect, use, or disclose data collected from a child, we will notify in accordance with applicable law and obtain parental consent. We do not make a child's participation in an online activity conditional on the child providing more contact information than is reasonably necessary for participation in that activity. We use the data we collect only in connection with the services the child has requested.
We may also use a parent's contact information to communicate about the child's activities in the services. Parents can view data that we have collected from their child, prohibit us from collecting further data from their child, and request that all data we have collected be deleted from our records.
Please contact us to view, update, or delete your child's data. To protect your child, we may ask you for proof of your identity. We can deny you access to the data if we believe your identity is questionable. Please note that certain data cannot be deleted due to other legal obligations.
We only use your personal data for the purposes set out in the privacy policy and only when we are convinced that:
-
the use of your personal data is necessary to fulfill or conclude a contract (e.g., to provide the services themselves or customer care or technical support);
-
the use of your personal data is necessary to comply with relevant legal or regulatory obligations, or
-
the use of your personal data is necessary to support our legitimate business interests (provided that this is always done in a way that is proportionate and respects your privacy rights).
As a resident of the EU, you can:
-
request confirmation as to whether or not personal data concerning you is being processed, and request access to your stored personal data and certain additional information;
-
request the receipt of personal data that you have provided to us in a structured, common and machine-readable format;
-
request the correction of your personal data stored with us;
-
request the deletion of your personal data;
-
object to the processing of your personal data by us;
-
request the restriction of the processing of your personal data, or
-
file a complaint with a supervisory authority.
Please note, however, that these rights are not absolute and may be subject to our own legitimate interests and regulatory requirements. If you have general questions about the personal data we collect and how we use it, please contact us as indicated below. In the course of providing the services, we may transfer data across borders to affiliated companies or other third parties and from your country/jurisdiction to other countries/jurisdictions worldwide. By using the services, you agree to the transfer of your data outside the EEA.
If you are resident in the EEA, your personal data will only be transferred to locations outside the EEA if we are convinced that there is an adequate or comparable level of protection for personal data. We will take appropriate steps to ensure that we have adequate contractual arrangements with our third parties to ensure that appropriate security precautions are taken so that the risk of unlawful use, alteration, deletion, loss or theft of your personal data is minimized and that these third parties always act in accordance with applicable laws.
Rights under the California Consumer Protection Act
If you use the Services as a resident of California, you may be entitled under the California Consumer Privacy Act ("CCPA") to request access to and deletion of your data.
To exercise your right to access and delete your data, please read below on how to contact us.
We do not sell personal data of users for the intentions and purposes of the CCPA.
Updates or changes to the privacy policy
We may revise this privacy policy at our discretion from time to time, the version published on the website is always current (see "As of" notice). We ask you to regularly check this privacy policy for changes. In the event of significant changes, we will post a notice on our website. If you continue to use the Services after notification of changes on our website, this will be considered your acknowledgement and consent to the changes to the Privacy Policy and your agreement to be bound by the terms of these changes.
Contact
If you have general questions about the services or the data we collect about you and how we use it, please contact us at:
Name: Johannes Klepsch
Address: Stievestr. 9, 80638 Munich
Email address: kontakt@gradial.de