This shows you the differences between two versions of the page.
Next revision | Previous revisionLast revisionBoth sides next revision | ||
manual:about:gdpr [2018/08/07 15:32] – created mstupka | manual:about:gdpr [2021/02/19 15:05] – mstupka | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== | + | ====== |
---- | ---- | ||
- | To meet the requirements of the Regulation of the European Parliament and the Council (EU) 2016/679 (hereinafter the “**GDPR**”), | ||
- | The personal data controller will always be **Asamm Software, s.r.o.**, ID No.: 24225321, registered office Krhanická 719/25, Kamýk, 142 00 Praha 4, Czech Republic (hereinafter the “**Controller**”), | ||
- | The application “Locus Map” contains | + | In accordance with Regulation of the European Parliament and of the Council (EU) 2016/679 (" |
- | ===== 1) Location | + | |
- | The application is, by nature, a map navigation. Therefore, it needs to know your base location at the launch to correctly fix and display your base location on the map. Upon the introductory launch, the application will therefore ask your mobile device (hereinafter the “**device**”) for information about your last known location. Such information about your last known location obtained from your device is processed and stored by us only until the moment when the application will obtain from the device an update of the location data but not later than until the closing of the application on the device. | + | ===== Who is responsible for processing your personal data? ===== |
- | ===== 2) Locus World – user name, e-mail and photo ===== | + | |
- | These data represent for us the basic user data, which we use for the identification of the user and protection | + | The controller |
- | ===== 3) The Live Tracking function – user name and localization data ===== | + | |
- | You may elect as the purpose of processing of your user name and current localization | + | ===== For what purposes do We process |
- | In case of the public sharing of your position, your user name and current geographic position will be publicly displayed to all people joining the Controller' | ||
- | On the contrary, if your set up private sharing | + | The purpose |
- | For the Live Tracking function, we store the user name for the entire period for which you have installed | + | Your personal data are necessary for creating your user account through |
- | ===== 4) Track recording function – health data, age, weight, sex, location ===== | + | |
- | The Track recording function monitors your sports activity. For this purpose, | + | Profiling takes place only in the framework of the use of the Locus Store function |
- | ===== 5) Locus Store function | + | |
- | The Locus Store function allows shopping or expansion of the internal functions of the application, | + | ===== What personal |
- | **By checking the field “//I grant consent with the processing | + | When you use the Application, |
+ | The mandatory data needed for the registration | ||
- | At the same time, you declare that you provide the personal | + | Since the Application has a nature of map and navigation software, it uses location |
- | Under the GDPR, you have the right: | + | If you use the Application' |
- | * to withdraw this Consent at any time | + | Optional |
- | * to obtain from the Controller a confirmation whether the personal data are or are not being processed | + | |
- | * to obtain access to the personal data and information with regard to: | + | |
- | * the purpose of their processing | + | |
- | * categories of the relevant | + | |
- | * recipients or categories of recipients to whom the personal data have been or will be disclosed, particularly of recipients from third countries outside the European Union and international organizations | + | |
- | * the scheduled period of storing of the personal | + | |
- | * the existence of the right to request from the Controller rectification or erasure of the personal data or restriction of their processing or to object against the processing | + | |
- | * the sources of personal data if not obtained from you | + | |
- | * information about automated decision-making, including profiling, and to obtain | + | |
- | * the existence of appropriate safeguards relating to transfers if the personal data are transferred to a third country outside the European Union or to an international organization | + | |
- | * not to be the object of any decision based solely on automated processing, including profiling, | + | |
- | * to lodge a complaint with a supervisory authority, particularly in the Member State of your usual residence, place of employment or other place where the alleged breach has occurred if you believe that your personal | + | |
- | * to receive compensation from the Controller or from a processor compensation for any material or non-material damage suffered a as a result of an infringement of the GDPR | + | |
- | * to request a copy of the processed personal data, also in electronic form | + | |
- | * to request rectification of personal data without undue delay and their supplementing if incomplete, also by providing an additional declaration | + | |
- | * to request erasure of the personal data without undue delay if | + | |
- | * they are no longer required for the purposes for which they have been collected | + | |
- | * you have withdrawn | + | |
- | * the personal data have been processed unlawfully | + | |
- | * the personal data must be erased to fulfil a legal obligation under the law | + | |
- | * to obtain personal data in a structured, commonly used machine-readable format | + | |
- | * to transfer the personal data to another controller without obstacles, also through | + | |
- | * to request restriction of the processing | + | |
- | * you contest their accuracy, for the period required for the verification of their accuracy | + | |
- | * the processing is unlawful | + | |
- | * the Controller no longer needs the personal data for processing purposes but you request them for the determination, exercise or defence of legal claims | + | |
- | * you raise an objection against their processing, until it is verified whether the Controller' | + | |
- | The provision of personal | + | In addition, the Application can optionally process your biometric |
- | + | ||
- | The Controller advises | + | |
- | Any profiling is only carried out if you use the Locus Store function (for the improvement of commercial offers based on the shopping history in the Locus Store) | + | The Application uses Firebase Analytics, analytical software provided by Google that analyses certain data on devices |
- | You are also entitled | + | If you use the Application' |
+ | |||
+ | To use certain functions, such as functions related to the Geocaching service, you will be asked to log into third-party services. Login takes place directly within the third-party system, in which case we process through the Application only the verification identifier obtained from the login process or your user name and profile photograph from a given third-party service for the purpose of displaying them in the Application. | ||
+ | |||
+ | ===== What is the legal basis for processing your personal data? ===== | ||
+ | |||
+ | Processing some of your personal data is necessary for the performance of the license agreement you have entered into with Us (" | ||
+ | |||
+ | Some of your personal data pertaining to analytical outputs | ||
+ | |||
+ | Based on the Controller' | ||
+ | |||
+ | |||
+ | ===== How long do we keep personal data? ===== | ||
+ | |||
+ | Data the processing of which is required for the purposes performing the License Agreement are processed for no longer than the term of the License Agreement, unless otherwise specified below. Basic identification data are processed during three years after the termination of the License Agreement, a period that coincides with the limitation period pertaining to property rights arising from the License Agreement. For the purposes of the "Live Tracking" | ||
+ | |||
+ | You can change your optional data at any time, for example by deleting an uploaded photograph from the Application. In such a case, the Controller will terminate | ||
+ | |||
+ | Any and all personal data processed for analytical purposes are processed only until the compilation of statistical data; afterward, data are automatically deleted. The Controller subsequently analyzes only anonymized summary data. | ||
+ | Cookies are kept for a period of 30 days after being stored on your device. | ||
+ | |||
+ | Other data that are not listed above are processed no longer than until the time at which your user account will be deleted. | ||
+ | |||
+ | ===== To whom do we provide your personal data? ===== | ||
+ | |||
+ | Where the Controller transmits your personal data to third parties, the Controller does so for the purpose of fulfilling one of the purposes listed above. Typically, personal data are provided to personal data processors or to other controllers. In the further processing of your personal data, the Controller uses third-party services inside and outside the European Union, such as Host Europe GmbH, DigitalOcean Inc., Google Inc., and Google Ireland Limited, that is entities providing services necessary for the operation of the Application, | ||
+ | |||
+ | For the purpose of providing personalized advertising in the Application through the Google AdSense platform, some of your personal data may be provided to third parties acting as independent controllers of such data. For additional information on the Google AdSense service, visit https:// | ||
+ | |||
+ | After logging into your user account in the Application and on the Controller' | ||
+ | |||
+ | In case that you activate the Application' | ||
+ | |||
+ | Moreover, your personal data are also transmitted based on your consent and instruction you give us by using the applicable function that allows sharing selected data with third parties. Explicit information to the foregoing effect is provided to you through the Application. The Controller bears no liability for any processing carried out by the recipient of such data selected by you, owing to the absence of a decision on appropriate protection and adequate guarantees within the meaning of the GDPR, such transmission entails risk and may not provide sufficient protection for your personal data. If you choose to export your personal data to a recipient from a third country outside the European Economic Area, you will be asked for express consent prior to such transmission. | ||
+ | |||
+ | If you share your itinerary from your library through the Website, you will be able to choose, prior to sharing, whether or not the itinerary will be shared in conjunction with your basic identification data (first name, last name, e-mail address, and, where applicable, uploaded photograph). This function is available only to registered users. | ||
+ | |||
+ | If you decide to use the Application' | ||
+ | |||
+ | Your name and location data are shared in the framework of the Live Tracking function only after the activation of the Live Tracking in the Application, | ||
+ | |||
+ | ===== What are your rights? ===== | ||
+ | |||
+ | You have the following rights under the GDPR: | ||
+ | * the right to request the Controller to provide access to personal data in accordance with Article 15 GDPR | ||
+ | * the right to request correction of personal data in accordance with Article 16 GDPR | ||
+ | * the right to request the erasure of unlawfully processed personal data in accordance with Article 17 GDPR | ||
+ | * the right to request restriction of personal data processing subject to the conditions laid down in Article 18 GDPR | ||
+ | * the right to portability of personal data in accordance with Article 20 GDPR | ||
+ | * the right to object the unlawful processing of personal data in accordance with Article 21 GDPR | ||
+ | The Controller hereby informs you that no automated decisions will be made based on the aforestated personal data within the meaning of the GDPR. | ||
+ | |||
+ | You also have the right to object the processing of personal data at any time, including, where applicable, | ||
+ | |||
+ | If the processing of your personal data violates any provision of the GDPR, you can contact the Controller to rectify the violation. In addition, you can submit the matter to the oversight body, specifically the Office for Personal Data Protection at Pplk. Sochora 27, 170 00 Prague 7, Czech Republic. | ||
+ | |||
+ | The Controller may update this Personal Data Processing Policy from time to time as necessary. Kindly pay attention to the current version of this Personal Data Processing Policy, which is available HERE. We will inform you of updates of the Personal Data Processing Policy by sending a message to the e-mail address you provide during the registration of your user account through the Application or by means of notifications sent through the Application itself. |