Privacy Policy

Designated Responsible Representative

State Supervisory Authority

General Information

Data processing is carried out according to legal data protection regulations, in particular according to the provisions of Regulation (EU) 2016/679 of the European Parliament and Council dated 27 April 2016. This concerns the protection of natural persons with regard to the processing of their personal data, the free movement of such data, and the termination of the Directive 95/46/EG Data Protection Basic Regulation (DSGVO).

According to Article 13 DSGVO, we have an obligation to inform when collecting personal data. The service provider "makes available to the person concerned at the point in time when the data is being collected [...] information which is necessary in order to guarantee fair and transparent data processing."

Processing of your Personal Data

Your data is stored or processed only in the Federal Republic of Germany, and not in countries that are outside the scope of the DSGVO.

Personal Data

According to Article 4 DSGVO, personal data is "all information which relates to an identified or identifiable natural person [...]. A natural person is considered identifiable, who directly or indirectly, can be identified by means of an allocation to an identifier such as a name, to an identification number, to site data, to an online identifier or to one or more special characteristics which are an expression of the physical, physiological, genetic, mental, economic, cultural or social identity of this natural person."

HeyApple

This application offers users the service of tracking their daily food intake, managing and sharing recipes, and automatically creating shopping lists from selected days in their food diary. The necessary information is collected on a form on the website during the sign-up process. The following list contains the information collected by the app:

• e-mail address
• preferred user interface language

The data can be accessed by the following people:

• system (server) administrators

We use your data exclusively for providing you access to the HeyApple application. Your data is deleted when it is no longer needed for that purpose, which is usually when your user account is deleted. We don't share your personal data with third parties except for purposes that you have to actively opt-in for. Examples of these include:

• Sign up with social media accounts
• Connecting your HeyApple account to other fitness-related apps

We treat your eating habits strictly confidential. We will not share access to or insights into your recipes or your food diary to any third party without your express permission. We might publish broader usage statistics periodically, but never in a way that is suitable to identify a specific person.

Data for Delivery of the Website

When accessing the website, the following information is stored in the form of access logs:

• the client's IP address
• the (server) time of access
• the HTTP method and the URL of the request
• the HTTP status code of the server response
• the byte size of the server response
• the page of origin (the “referrer”) submitted by the browser
• the user agent (the browser's software name)

The data will be deleted as soon as they cease to be necessary for the purpose of their collection. For data needed for the transmission of the website, this is usually the case after the session ends. Without the IP address, it is not possible to use the website. No right to object applies in this case.

Cookies

A cookie is a text fragment placed via a Web browser on the computer of the requestor; the text content is submitted to the website each time the browser accesses the website again.

When visiting the HeyApple website, a cookie is created after signing in, which is used by the system to identify the logged-in user. This cookie is necessary for the website to function and can be deleted by clearing the browser cache.

Links to other Websites

The HeyApple website may contain links to websites of other providers. We have no influence on whether these providers also comply with the legal data privacy and security regulations. Please be sure to always check the privacy statements of the providers.

Recipients of your Data in Compliance with Legal or Judicial Obligations

The recorded data during your access to the website will only be transferred to third parties if we are legally obliged to do so, or in the case of a court ruling, or if necessary for legal or criminal prosecution in the event of an attack on our website.

Your Rights

As a user of this website you have specific rights according to Articles 15 to 18, 21 DSGVO: right to information, right to correction and data deletion, right to limit the data processed, right to object, and right of complaint.

Right to Information

According to Article 17 DSGVO, you can request information on your personal data processed by us. In your request for information disclosure you should specify precisely your key concerns in order to facilitate the compilation of the necessary data.

Right to Data Deletion

In accordance with Article 17 DSGVO you have the right to request the deletion of your personal data. Your right to deletion is dependent on certain conditions, for example whether we require your data in order to comply with our legal obligations.

Right to Object

According to Article 21 DSGVO you have the right, for reasons pertaining to your particular situation, to lodge an objection at any time to the processing of data relating to you. Please note that if you wish to use our website it is an absolute precondition that we process the IP address of your client.

Right to Lodge a Complaint

If in your opinion we have not complied with the legal regulations on data protection, you may lodge a complaint with the official data protection officer or with the regulatory authority responsible for data processing and request them to examine your complaint.

Validity

The data protection and privacy statement is currently valid and was last amended on 27 March 2022.