Data protection

Foreword

With this privacy policy, we inform you or the users (m/f/d) in particular about the type, scope and purpose of the processing of personal data (hereinafter referred to as “data”) on our websites (including our web store), external online presences (e.g. social media profiles) and when installing and using our apps.

Our privacy policy has a modular structure. They consist of a general part for any processing of personal data and processing situations that come into play when you visit one of our websites or social media presences, our web store and our apps (Part A: General) and a special part, the content of which refers only to the processing situation specified there with the designation of the respective offer or product (Part B: Our websites – in particular our webshop uney.de, our apps, our social media presence).

At the end you will find information on the status of and changes to the privacy policy.

Please note: You are not obliged to provide us with your personal data (even if this is partially marked as “mandatory” in this declaration). However, if you do not provide us with your personal data, you may not be able to use our products and services or you may not be able to use all or some of their functions.

Table of contents:

Part A: General

1. Person responsible
2. Terms
   
3. Purpose limitation, no merging, no user profiles, disclosure to third parties
4. Legal basis for data processing
5. Data erasure and storage duration
6. Cooperation with processors; in particular hosting
7. Storage in Germany / No transfer of personal data to third countries
8. Legal obligation to transmit certain data
9. Data security / safeguarding of services
10. Your rights

Part B: Websites (especially webshop), apps, social media presences

1. Websites
2. Use of the online store
3. HandHelp™ & HandHelp – Life Care™ apps, as well as WIS™ Emergency
4. Social media presences / fan pages

Part A: General

1. responsible person

The controller responsible for the processing of your personal data within the meaning of Article 4 No. 7 GDPR (General Data Protection Regulation) is

HandHelp UG (limited liability)

Sachsendorfer Street 5

03051 Cottbus

Germany

Managing Director: Andreas Jürgen Muchow

Phone: +49 (0) 355 54788905

Fax: +49 (0) 355 86697930

E-mail: datenschutz@handhelp.de

Further information about our company can be found in the imprint: Imprint

2. terms

This privacy policy is based on the following definitions (see Art. 4 GDPR):

-“Personal data” (Art. 4 No. 1 GDPR) means any information relating to an identified or identifiable natural person (“data subject”).

-“Processing” (Art. 4 No. 2 GDPR) means any operation which is performed on personal data, whether or not by automated means (i.e. using technical specifications).

-The “controller” (Art. 4 No. 7 GDPR) is the natural or legal person, entity or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

-A “third party” (Art. 4 No. 10 GDPR) is any natural or legal person, entity or body other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or processor.

-A “processor” (Art. 4 No. 8 GDPR) is a natural or legal person, institution or other body that processes personal data on behalf of the controller, in particular in accordance with the controller’s instructions (e.g. IT service provider). In terms of data protection law, a processor is not a third party.

-Consent” (Art. 4 No. 11 GDPR) of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

3. purpose limitation, no merging, no user profiles, disclosure to third parties

Data collected by us will only be used for the specific purpose described in this privacy policy. Your personal data will only be processed for purposes other than those described if this is permitted by law or if you have consented to the changed purpose of the data processing.

In the event of further processing for purposes other than those for which the data was originally collected, we will inform you of these other purposes prior to further processing and provide you with all other relevant information.

Different data sets for different purposes are not merged by us at any time. We do not use your data for automated decision-making processes and do not create user profiles of our users.

We do not pass on any personal data to third parties unless this is described in this privacy policy and is necessary to achieve a legitimate purpose stated here, e.g. when triggering an emergency call with activated emergency call centers.

4. legal bases of data processing

In principle, any processing of personal data is prohibited by law and is only permitted if the data processing falls under a justification.

In the following, we indicate the legal manufacturing facts used by us. For the processing operations we carry out, we indicate the applicable legal basis in Part B in each case. Processing can also be based on several legal bases.

– Art. 6 para. 1 p. 1 lit. a GDPR with regard to health data, possibly in conjunction with Art. 9 para. 2 lit. a GDPR (“consent”): Where the data subject has voluntarily, in an informed and unambiguous manner, indicated by a statement or other unambiguous affirmative act that he or she consents to the processing of personal data relating to him or her for one or more specific purposes;

– Art. 6 para. 1 p. 1 lit. b GDPR: If the processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;

– Art. 6 para. 1 p. 1 lit. c GDPR: If processing is necessary for compliance with a legal obligation to which the controller is subject (e.g. a legal obligation to retain data);

– Art. 6 para. 1 p. 1 lit. f GDPR (“legitimate interests”): Where processing is necessary for the purposes of the legitimate (in particular legal or economic) interests pursued by the controller or by a third party, except where such interests are overridden by the interests or rights of the data subject which require protection of personal data (in particular where the data subject is a minor).

5 Data erasure and storage duration

In Part B, you will find information on how long we store the data and when it is deleted or blocked for each of the processing operations we carry out. Unless an explicit storage period is specified below, your personal data will be deleted or blocked as soon as the reason for storage no longer applies.

However, data may be stored beyond the specified period in the event of an (impending) legal dispute with you or if storage is provided for by legal regulations to which we as the controller are subject. According to legal requirements in Germany, the storage is carried out in particular for 10 years in accordance with §§ 147 para. 1 AO, 257 para. 1 no. 1 and 4, para. 4 HGB (books, records, management reports, accounting vouchers, trading books, documents relevant for taxation, etc.) and 6 years in accordance with § 257 para. 1 no. 2 and 3, para. 4 HGB (commercial letters).

If the storage period prescribed by the statutory provisions expires, the personal data will be blocked or deleted unless further storage by us is necessary and there is a legal basis for this.

If the data are not deleted because they are required for other and legally permissible purposes, their processing will be restricted. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax law reasons.

6. cooperation with processors; in particular hosting

We use external domestic service providers to process our business transactions (e.g. for IT, hosting, logistics, telecommunications, sales and marketing). They will only act on our instructions and have been contractually obliged to comply with data protection regulations in accordance with the requirements of Art. 28 GDPR.

The hosting services we use serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services and technical maintenance services that we use for the purpose of operating this online offering.

In doing so, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to our online offers.

Our processors (service providers) are:

STRATO AG

Pascalstrasse 10
10587 Berlin
Phone: (030) 300 146 0
Fax: (030) 886 15 111
E-mail: impressum@strato.de

snafu Gesellschaft für interaktive Netzwerke mbH

Knesebeckstrasse 59-61
10719 Berlin
Phone: (030) 25430-0
Fax: (030) 25430-101
E-mail: info@snafu.de

retarus GmbH

Global Headquarters
Aschauer Street 30
81549 Munich
Phone: +49 89 5528 1111
Fax: +49 89 5528 1919
E-mail: marketing@de.retarus.com

CM.com Germany GmbH

German Office
Dr.-Eugen-Schön-Straße 35
97332 Volkach
Phone: +49(0)9302 657 0 888
E-mail: support.de@cm.com

7. storage in Germany / no transfer of personal data to third countries

Your data collected and processed by us will only be stored on our servers in Germany. As part of our business relationships, personal data is processed exclusively within the European Economic Area (EEA). For Google Analytics, see below under B.1.3. For social media presences and fan pages, see below under B.6.

8. legal obligation to transmit certain data

We may be subject to a special legal or statutory obligation to provide the lawfully processed personal data to third parties, in particular public authorities (Art. 6 para. 1 sentence 1 lit. c GDPR).

9. data security / safeguarding of services

We use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties, taking into account the state of the art, the implementation costs and the nature, scope, context and purpose of the processing as well as the existing risks of a data breach (including its probability and impact on the data subject). Our security measures include, for example, the use of high-performance hardware, regular updates, secure passwords and encryption as well as backup plans and are continuously reviewed and improved in line with technological developments.

We will provide you with more detailed information on request within reason. We cannot disclose precise information on how we and our service providers secure hardware and software in order to avoid the risk of our security concepts being undermined.

10. your rights

You can exercise your rights as a data subject with regard to your processed personal data by contacting us using the information provided under A.1. contact details provided at any time.

As the data subject, you have the following rights:

• The right to information (Art. 15 GDPR),
• The right to rectification or erasure (Art. 16, 17 GDPR),
• The right to restriction of processing (Art. 18 GDPR),
• The right to data portability (Art. 20 GDPR),
• The right to object to processing (Art. 21 GDPR),
• The right, pursuant to Art. 7 para. 3 GDPR to revoke your consent given to us at any time (even before the GDPR came into force, i.e. before May 25, 2018), if you have given such consent. As a result, we may no longer continue the data processing that was based on this consent in the future. The legality of the data processing carried out on the basis of the consent until the revocation is not affected,
• The right to complain to a data protection supervisory authority about the processing of your personal data by us in accordance with Art. 77 GDPR, for example to the data protection supervisory authority responsible for us:

Berlin Commissioner for Data Protection and Freedom of Information

Friedrichstr. 219

Visitor entrance: Puttkamerstr. 16 – 18 (5th floor)

10969 Berlin

Phone: 030 13889-0

Fax: 030 2155050

E-mail: mailbox@datenschutz-berlin.de

Website: https://www.datenschutz-berlin.de/

Please note that the aforementioned rights are partly subject to further conditions (see the aforementioned articles of the GDPR) and may be restricted by other laws and we may not always be able to carry out a request according to your wishes.

Please also note that we are also obliged to verify your identity as part of our duty to provide information, which means that we may need more detailed information from you.

Part B: Websites (especially web store), apps, social media presences

1. websites

1.1 Validity

This privacy policy applies to the following websites, including all subpages:

https://shop.worldinsign.de
https://notruf-app.eu
https://notfall-app.eu
https://app-sos.com

1.2 Encryption

We use SSL encryption for all pages mentioned.

1.3 Use of the websites

Processed personal data when visiting the websites

We collect, store and process the following categories of personal data when you use the website for information purposes:

“Log data”: When you visit our websites, a so-called log data record (so-called server log files) is temporarily and anonymously stored on our web server. This consists of:

– the page from which the page was requested (so-called referrer URL)

-the name and URL of the requested page

– the date and time of the call

– description of the type, language and version of the web browser used

– the IP address of the requesting computer, which is shortened in such a way that a personal reference can no longer be established

-the amount of data transferred

-the operating system

– the message whether the call was successful (access status/Http status code)

Cookies

When you visit our website, cookies are stored on your computer or end device.

This includes e.g:

– Storage of the preferences you use for cookie storage

– Recognition for information popups. News is sometimes displayed on the websites with the help of pop-ups. We store cookies so that they are not displayed every time you visit the site.

– Securing the login – recognizing the logged-in device to prevent data manipulation

You can find all the details about the cookies we use on our websites in our cookie policy.

User statistics

Technologies for generating anonymous user statistics are used on our websites. Personal data is not processed as a result of anonymization.

Login

Our websites may store the user IP for 72 hours. This is required to protect our servers and your data from brute force attacks and is limited exclusively to our login areas.

Contact form

Our websites have contact forms. Depending on whether the request is general or requires specific support, it will be forwarded to the relevant department within our company or one of our service providers.

Data that we collect in our general contact form:

– Salutation / First name / Last name

– E-mail address

– (optional) Mobile phone number

– Message text

If no longer required, messages sent via the contact form will be deleted within 30 days of receipt. The data is not deleted, for example, when an offer or purchase contract is concluded or in the event of a dispute.

The data that we collect in our support contact form is

– Salutation / First name / Last name

– E-mail address

– (optional) Mobile phone number

– (optional) operating system used

– (optional) program (app) version used

– Message text

If no longer required, messages sent via the contact form will be deleted within 30 days of receipt. The data is not deleted, for example, when an offer or purchase contract is concluded or in the event of a dispute.

Please do not send us any sensitive information such as account numbers, passwords or similar via our contact forms. If you do so, we will delete this data immediately and permanently.

Integration of third-party services and content

We use content or service offers from third-party providers within our online offer in order to integrate their content and services, such as videos or fonts (hereinafter uniformly referred to as “content”).

This always presupposes that the third-party providers of this content collect the IP address of the user, as they would not be able to send the content to their browser without the IP address. The IP address is therefore required to display this content. We endeavor to only use content whose respective providers only use the IP address to deliver the content. Third-party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. Pixel tags can be used to analyze information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and contain, among other things, technical information about the browser and operating system, referring websites, time of visit and other information about the use of our online offer, as well as being linked to such information from other sources.

We integrate the videos of the platform “YouTube” of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy: https://www.google.com/policies/privacy/, Opt-Out: https://adssettings.google.com/authenticated.

Legal basis for data processing

We process the data described in more detail above on the basis of Art. 6 para. 1 p. 1 lit. f GDPR, unless otherwise stated. This is done in particular in the legitimate interest of improving the quality of our websites and ensuring the stability and security of the connection, as well as for the analysis, optimization and economic operation of our online offer.

The legal basis for data processing when using Google Analytics is your consent (Art.6 Abs. 1 S.1 lit. a GDPR).

The processing of contact form data is carried out to process customer inquiries (legal basis is Art. 6 para. 1 sentence 1 lit. b GDPR).

Duration of data processing

Your data will only be processed for as long as is necessary to achieve the above-mentioned processing purposes.

Third parties used by us will store your data on their system for as long as is necessary in connection with the provision of the services for us in accordance with the respective order.

2. use of the online store

The details provided in this point relate only to our online store at: https://shop.worldinsign.de

All data processing that applies to our websites also applies to our online store. Other special finishes for our online store are:

The following data is processed when you make a purchase in our online stores:

– Salutation / First name / Last name

– Address

– E-mail address

– Payment method

– Transaction ID

Optional details are:

– Company name

– Sales tax number

– Telephone

This information is required to ensure the sale and shipment of our products (Art. 6 para. 1 sentence 1 lit. b GDPR).

When you enter the website via one of our affiliate partners, a cookie is set which is valid for 30 days. This enables us to remunerate our partners for purchases made. Your identity will not be passed on to our partners.

Transfer of personal data to third parties

The following categories of third parties (i.e. recipients other than processors) may have access to your personal data:

– Government agencies/authorities, insofar as this is necessary to fulfill a legal obligation. The legal basis for the transfer is then Art. 6 para. 1 p. 1 lit. c GDPR;

– Persons appointed to carry out our business operations (e.g. auditors, banks, insurance companies, legal advisors, supervisory authorities). The legal basis for the transfer is then Art. 6 para. 1 p. 1 lit. b.

– In addition, we will only pass on your personal data to third parties if you have given your consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR, you have given your express consent to this.

3. apps HandHelp™ & HandHelp – Life Care™ & WIS™ Emergency

The data collected and processed when downloading the apps

When you download our apps, certain data required for this purpose (e.g. e-mail address, user name, customer number of the downloading account, the individual device identification number and the time of the download) is transmitted to the relevant app store (Apple App Store or Google Play).

We have no influence on the collection and processing of this data, which is carried out exclusively by the app store you have selected. Accordingly, we are not responsible for this collection and processing; the responsibility for this lies solely with the Google or Apple App Store.

Google privacy policy: https://policies.google.com/privacy?hl=de&gl=de

Apple privacy policy: https://support.apple.com/de-de/HT208477

Data collected and processed when using the apps

Verification of the apps

When you start the app for the first time, you will be asked to verify your mobile phone number or e-mail address. Information that must be entered in order to use the app is mandatory:

Salutation

First name

Last name

Date of birth

Nationality

E-mail address

Mobile phone number

We collect this information in order to protect the police or fire department / rescue services from false alarms (Art. 6 para. 1 sentence 1 lit. c GDPR or Art. 6 para. 1 sentence 1 lit. f GDPR). We reserve the right to block the app from your device in the event of a complaint from the police or fire department / rescue services due to deliberately false emergency call messages, in order to ensure that the emergency services can run smoothly.

For more information on Emergency Call V for Germany, see https://www.gesetze-im-internet.de/notrufv/

Verification takes place via our partner CM.com Germany GmbH, which acts as our processor.

Other collection and processing when using the apps

Device information: The access data includes the IP address, device ID, device type, device-specific settings and app settings as well as app properties, the date and time of the retrieval, time zone the amount of data transferred and the message as to whether the data exchange was complete, app crash, browser type and operating system. This access data is processed to technically enable the operation of the apps.

In particular: Use of location data

Except in the event of an alarm being triggered, our apps do not collect or process any location data from app users. In particular, this means that the apps do not use a so-called location tracker (i.e. a function that reads your smartphone’s location data permanently or at regular intervals and transmits it to the app manufacturer).

However, in order to be able to use the app functions described in more detail below, it is necessary to process location data (strictly limited to the use described) if an alarm is triggered.

To use the location data, this function must be activated in your mobile operating system. Permission to access the location data is therefore requested when the apps are used for the first time. Your confirmation means that the apps have access to your location information so that they can help you with your location (emergency location) if an alarm is triggered.

The current location is only transmitted when the alarm is triggered. In both the Google (Android) and Apple (iOS) operating systems, you can also subsequently specify in the settings that our apps may no longer receive information about your location. In this case, however, the apps only work to a very limited extent, as access to the location data is required to be able to send a meaningful alarm message (e.g. to your trusted person).

Personal and health information in the apps HandHelp / HandHelp – Life Care / WIS Emergency

In order to provide fast and effective assistance, we give users the option of voluntarily entering additional information in the app. Below is a list of the data that is transmitted voluntarily (hereinafter referred to as voluntary) and that is mandatory (hereinafter referred to as mandatory):

– Time of emergency / date & time (mandatory)

– Position tracking / tracking via GPS, GSM, WLAN (mandatory)

– Type of emergency call / What has happened (voluntary)

– How many people are affected (voluntary)

– Mobile phone number (mandatory)

– E-mail address (mandatory)

– Salutation (mandatory)

– First name (mandatory)

– Last name (mandatory)

– App version (mandatory)

– Battery level (mandatory)

– Emergency call recording (photo and sound documentation) (voluntary)

– Video chat address (optional)

– Private address (optional)

– Work address (optional)

– Vacation/abroad address (optional)

– Deposit of door key / door code (optional)

– Personal preferences for emergency calls (voluntary)

– Underlying diseases (voluntary)

– Restrictions / disabilities (voluntary)

– Other obstacles (voluntary)

– Important medication (voluntary)

– Blood group (voluntary)

– Rhesus factor (voluntary)

– Health insurance (voluntary)

– Allergies (voluntary)

– Body size (optional)

– Body weight (voluntary)

– Hearing pass (voluntary)

– Spectacle wearers (voluntary)

– Living will (voluntary)

– Organ donor card (voluntary)

– Implants (voluntary)

– Degree of care (voluntary)

– Pregnant (voluntary)

– Other individual personal information (voluntary)

This information remains stored on the end device (smartphone / tablet / wearable) as long as no emergency call or test alarm is made and can be protected from third parties by entering a password. Only in the event of an emergency call / test alarm is this information transmitted to the user’s stored and activated helper network as requested.

Each app is delivered without activated emergency call centers and without trusted persons. By selecting the emergency call centers and by selecting his trusted persons, the user expressly agrees that information he has stored in the app and information resulting from the emergency call will be forwarded to the police or fire department / rescue services and abroad to embassies / consulates / foreign offices (foreign missions) and his trusted persons and optionally to sign language interpreter centers.

The information is transmitted individually according to the user’s wishes.

Transmission channels

The following transmission channels are possible and can be configured in the app:

– Via SMS to trusted persons & users

– Via e-mail to trusted persons & users

– Via call to emergency call centers (worldwide)

– Via e-mail to emergency call centers

– Via fax to emergency call centers

– Via voice SMS to emergency call centers

– Via video telephony to trusted persons & e.g. to sign language interpreting centers

– Via chat to trusted persons & e.g. to sign language interpreting centers

Furthermore, the emergency call centers have the option of contacting the user via call, SMS, chat and video telephony.

The following information will be transmitted to the user in the following manner:

Test alarm

Via direct encrypted connection to the server of Strato AG and snafu Gesellschaft für interaktive Netzwerke mbH

– Time / Date

– Position / localization

– Type of emergency call / What has happened

– How many people are affected

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

– Video chat address

– Private address

– Work address

– Vacation/abroad address

– Deposit door key / door code

– Personal preferences for emergency calls

– Underlying diseases

– Restrictions / Disabilities

– Other obstacles

– Important medications

– Blood group

– Rhesus factor

– Health insurance

– Allergies

– Body size

– Body weight

– Ear pass

– Spectacle wearer

– Living will

– Organ donor card

– Implants

– Degree of care

– Pregnant

– Other individual personal information

Information that is transmitted to deposited trusted persons:

Via SMS to trusted persons / first aiders:

– Mobile phone number

– Position / localization

– Time / Date

Via e-mail to trusted persons / first aiders:

– Time / Date

– Position / localization

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– Video chat address

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

Information that is transmitted to the user:

Via SMS to users:

– Mobile phone number

– Position / localization

– Time / Date

Via e-mail to users:

– Time / Date

– Position / localization

– Type of emergency call / What has happened

– How many people are affected

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– Video chat address

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

– Private address

– Work address

– Vacation/abroad address

– Deposit door key / door code

– Personal preferences for emergency calls

– Underlying diseases

– Restrictions / Disabilities

– Other obstacles

– Important medications

– Blood group

– Rhesus factor

– Health insurance

– Allergies

– Body size

– Body weight

– Ear pass

– Spectacle wearer

– Living will

– Organ donor card

– Implants

– Degree of care

– Pregnant

– Other individual personal information

Via chat program:

– Contact person

– Position / localization

– Time / Date

– Video chat address

The emergency call centers are not informed / alerted during the test alarm!

In the event of an emergency call (as the person affected)

The following data is sent to the server of Strato AG and snafu Gesellschaft für interaktive Netzwerke mbH via an encrypted connection. In addition, an encrypted transmission to retarus AG takes place, which converts the emergency protocol into a PDF fax and forwards an e-mail to the police and / or fire department / rescue services and optionally to sign language interpreting centers.
Submitted information includes:

– Time / Date

– Position / localization

– Type of emergency call / What has happened

– How many people are affected

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– Video chat address

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

– Private address

– Work address

– Vacation/abroad address

– Deposit door key / door code

– Personal preferences for emergency calls

– Underlying diseases

– Restrictions / Disabilities

– Other obstacles

– Important medications

– Blood group

– Rhesus factor

– Health insurance

– Allergies

– Body size

– Body weight

– Ear pass

– Spectacle wearer

– Living will

– Organ donor card

– Implants

– Degree of care

– Pregnant

– Other individual personal information

Information that is transmitted to trusted persons

Via SMS to trusted persons:

– Mobile phone number

– How many people are affected

– Type of emergency call / What has happened

– Position / localization

– Time / Date

Via e-mail to trusted persons:

– Time / Date

– Position / localization

– Type of emergency call / What has happened

– How many people are affected

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– Video chat address

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

Information that is transmitted to the user:

Via e-mail:

– Time / Date

– Position / localization

– Type of emergency call

– How many people are affected

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– Video chat address

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

– Private address

– Work address

– Vacation/abroad address

– Deposit door key / door code

– Personal preferences for emergency calls

– Underlying diseases

– Restrictions / Disabilities

– Other obstacles

– Important medications

– Blood group

– Rhesus factor

– Health insurance

– Allergies

– Body size

– Body weight

– Ear pass

– Spectacle wearer

– Living will

– Organ donor card

– Implants

– Degree of care

– Pregnant

– Other individual personal information

Via chat program:

– Contact person

– Position / localization

– Video chat address

In the event of an emergency call (as a witness)

The data described below is sent to the server of Strato AG and snafu Gesellschaft für interaktive Netzwerke mbH via an encrypted connection. There is also an encrypted transmission to retarus AG, which converts the emergency protocol into a PDF fax and forwards an e-mail to the police and / or rescue services. Transmitted data include:

– Time / Date

– Position / localization

– Type of emergency call / What has happened

– How many people are affected

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– Video chat address

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

– Private address

– Work address

– Vacation/abroad address

Information that is transmitted to trusted persons

Via SMS to trusted persons:

– Mobile phone number

– How many people are affected

– Type of emergency call / What has happened

– Position / localization

– Time / Date

Via e-mail to trusted persons:

– Time / Date

– Position / localization

– Type of emergency call / What has happened

– How many people are affected

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– Video chat address

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

Information that is transmitted to the user:

Via e-mail:

– Time / Date

– Position / localization

– Type of emergency call

– How many people are affected

– Mobile phone number

– E-mail address

– Salutation

– First name

– Surname

– Video chat address

– App version

– Battery status

– Emergency call recording (photo and sound documentation)

– Private address

– Work address

– Vacation/abroad address

Via chat program:

– Contact person

– Position / localization

– Video chat address

Legal basis

We generally collect and process data via the apps because this is necessary for the fulfillment of the contract between you and us (Art. 6 para. 1 lit. b GDPR), unless a specific legal basis is mentioned above.

Furthermore, we collect and process this data if this is necessary for the functionality of the app (Art. 6 para. 1 lit. f GDPR).

We process your voluntarily provided health data on the basis of your consent (Art. 6 para. 1 sentence 1 lit. a GDPR in conjunction with Art. 9 para. 2 lit. a GDPR).

Cancellation / transmission / storage / deletion periods

An emergency call or a test alarm can be canceled within a visible countdown by clicking on the HELP! button when it is executed in the app. If the emergency call is canceled, no data is transmitted. If the user uses the Bluetooth emergency button (uney button), a transmission can no longer be canceled once it has been started. In the event of an accidental emergency call, the user should inform the police or fire/rescue services immediately.

We do not further analyze, sell or in any way use the data that is transmitted to us. They serve the sole purpose of fast and effective assistance by the responsible authorities.

If we do not receive a request to retain this data, your data will be automatically deleted as follows:

Data from test emergency calls – 14 days

Data from emergency calls – 90 days

All emergency call details are stored under an individually generated link with password protection on a secure server of snafu Gesellschaft für interaktive Netzwerke mbH. The servers are protected against unauthorized access by state-of-the-art software and hardware.

4. social media presences / fan pages

General information

We maintain publicly accessible profiles and fan pages in various social networks. Your visit to these profiles triggers a variety of data processing operations. Below we provide you with an overview of which of your personal data we collect, use and store when you visit our profiles.

When you visit our profiles, your personal data is not only collected, used and stored by us, but also by the operators of the respective social network. This happens even if you do not have a profile in the respective social network. The individual data processing operations and their scope differ depending on the operator of the respective social network and they are not necessarily traceable for us.

For details on the collection and storage of your personal data as well as the type, scope and purpose of its use by the operator of the respective social network, please refer to the data protection declarations of the respective operator:

Facebook – https://www.facebook.com/policy.php

Instagram – https://www.facebook.com/help/instagram

Twitter – https://twitter.com/de/privacy

Youtube https://policies.google.com/privacy

In particular, we would like to point out that data processing by the operators may take place outside the EU or the European Economic Area.

No social media plugins

We do not use any social media plugins (such as Like buttons) on our websites.

If our websites contain symbols from social media providers (e.g. Facebook, Twitter, Instagram), we only use these to passively link to the pages of the respective providers.

Profiles / Fanpages

We currently operate fan pages and channels on Facebook, Twitter, Instagram and YouTube. Each time you access these pages, various data is collected, such as the IP address or the time at which you access these pages. We only receive anonymized statistical data or, under certain circumstances, information on “liked” content and comments / retweets and the resulting data.

We would like to point out that posted contributions can always be accessed by other users. We therefore recommend the use of pseudonyms so that the contributions cannot be directly attributed to your person.

The data processing by us serves our legitimate interest in improving the user experience when visiting our social media profiles or fan pages in a target group-oriented manner (Art. 6 para. 1 lit. f) GDPR.

If you use our profiles in social networks to contact us (e.g. by sending us messages), the data you provide us with will be processed exclusively for the purpose of being able to contact you (Art. 6 para. 1 lit. a and b GDPR).

Status / changes to the privacy policy

As part of the further development of data protection law as well as technological or organizational changes, our privacy policy is regularly reviewed to determine whether it needs to be adapted or supplemented. The privacy policy published on this website applies in each case.

This privacy policy is valid as of: August 2021

Preparation of the privacy policy: Attorney Thorsten Reh(MEDIAS REHS)