knowledge base

User Tools

Site Tools

manual:about:gdpr
You are here: main » manual » about » gdpr

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Last revision Both sides next revision
manual:about:gdpr [2020/04/06 12:36]
mstupka [3) Fitness data - height, weight, age, sex and heart rate] 		manual:about:gdpr [2021/02/19 15:05]
mstupka
Line 1: Line 1:
-====== A few words about the protection of personal data ======+====== Personal Data Processing Policy ======
  
 ---- ----
  
-Before you go out with Locus for the first hike or ride, we want you to know that Locus Map needs some of your personal information for its operation. Its use is subject to your consent under the EU Parliamentary and EU Council (2016/679 - GDPR) Regulations. 
  
-**So what does Locus Map need?**+In accordance with Regulation of the European Parliament and of the Council (EU) 2016/679 ("GDPR"), this Personal Data Processing Policy provides all relevant information on the processing of personal data pertaining to you, the data subject, in connection with the Locus Map application and related services, including the web platform (jointly referred to as "Application"). This Personal Data Processing Policy does not apply to the Locus Forum and Locus Helpdesk platforms, offered as separate services.
  
-===== 1) Information about your location =====+===== Who is responsible for processing your personal data? =====
  
-  * to display your current or last fixed location on a map in your mobile or tablet. Locus gets this information from sensors in your mobile device and stores it in the application only while it is running. With location datayou know where you are and what track you have made. +The controller of personal data is Asamm Softwares.r.o., Business ID: 24225321, a company with registered office at Krhanická 719/25, 142 00 Prague 4 – Kamýk, Czech Republic ("Controller" or "We").
-  * to display your current or last targeted position with Live Tracking - real-time location sharingYou choose if to share your location with all other Locus users and worldwide at http://www.locusmap.eu/live-tracking/ or with a selected group of people only (only on their mobile devices). You are notified of Live Tracking being active by a rotating arrow icon on your screen status bar. +
-  * to offer maps of your immediate surroundings to you both in the app and in Locus Store, so that you don't have to be bothered by looking for them +
  
-===== 2) Username, email, and photo =====+===== For what purposes do We process your personal data? =====
  
-  * so that you get the benefits of My Locus - using Live Tracking, and managing your purchases, downloads, and updates in Locus Store. 
  
-**Live Tracking** - for others to better identify you, Locus shows your user name and profile photo (or other avatar) on map in app and on live tracking website. This information is displayed only when  Live Tracking is active and is kept in memory only for the time you have Locus installed on your mobile. If you do not want to display your real name with your location, you can replace it with a nickname.+The purpose of processing your personal data is to allow you to use the Application and related servicesto carry out the maintenance and improvement of the functions of the Application, and to communicate with yougiven that you are the Controller's customer
  
-**Locus Store** - we need identification data to conclude the purchase agreementIf you have purchased paid content on Locus Storewe will process your identification and contact information for period of 3 years, corresponding to the duration of your purchase contract claims. By the so-called profiling, we will estimate your preferences from your shopping history and show to you more relevant offers on Locus Store accordingly.+Your personal data are necessary for creating your user account through which you will be able to use certain functions of the ApplicationIn additionthe Application allows, either publicly or privately, sharing your geographic position in real time with an unspecified number of other persons as well as storing record of your previous itinerary recorded in the Application
  
-You sign in to My Locus profile by email and it's also possible using your Google or Facebook account. Email and data from your profile on Google or Facebookincluding your profile photo, are stored on our server until you withdraw your consent.+Profiling takes place only in the framework of the use of the Locus Store function (improvement of commercial offers based on your Locus Store purchase history) and the Track Recording function (for examplethe calculation of calories burned during sports activities).
  
 +===== What personal data do we process? =====
  
 +When you use the Application, we collect and process some or all of the following data, which you provide during registration, which are generated while you use the Application, or which you enter into the Application.
 +The mandatory data needed for the registration of your account in the Application include first name, last name, and e-mail address. The same applies to logging into the Application through third-party services and social networks, such as Facebook.
  
-===== 3) Fitness data - height, weight, age, sex and heart rate =====+Since the Application has a nature of map and navigation software, it uses location data from your mobile device to determine your position.
  
 +If you use the Application's relevant functions, we collect data on your history of purchases made via the Application, ways in which you use the Application, location data, and search history. If you use the Application's web platform, we also retain the IP address for the purpose of communicating with your device.
 +Optional data you provide during registration include your profile photograph and designation of your end-user device. If you use the relevant functions, you can also upload multimedia content into the Application, such as your photographs in specific locations.
  
-  * based on this datawe calculate body mass index and calorie consumption so that you can monitor your performance in sporting activitiesDepending on this, you can set up your workouts correctly and efficiently.+In additionthe Application can optionally process your biometric dataFor the purposes of calculating other parameters of recorded movement, you can enter into the Application such data as age, sex, height, and weight. Using the measuring capabilities of a suitable end-user device, the Application can also monitor and process such data as heart rate, heart rate bands, lactate threshold, cadence, and temperature. The scope of the foregoing data may change depending on the development of the Application's functions.
  
-Fitness data are kept in the Locus folder on your mobile or tablet until you delete the folder.+The Application uses Firebase Analytics, analytical software provided by Google that analyses certain data on devices and ways in which the Application is used by the user. Such data are used exclusively for analytical purposes.
  
-So, that'all. Personal data subject to your consent will be deposited for the entire duration of this consent until its possible revocationwithout prejudice to the lawfulness of processing based on consent prior to its withdrawalThe Personal Information Manager is Asamm Softwares.r.o.company ID: 24225321with its registered office at Krhanická 719/25Kamýk, 142 00 Prague 4, Czech Republic.+If you use the Application'web platformwe store cookies on your deviceCookies contain technical information necessary for communicationlogin into your user accountandwhere applicableanalytical data.
  
-If you are over 16 years old and agree to processing the datacheck the **"I agree"** checkbox at Locus Map start. According to GDPR you have the right to withdraw this consent at any time, just write to us at locus.map@asamm.com.+To use certain functions, such as functions related to the Geocaching service, you will be asked to log into third-party servicesLogin takes place directly within the third-party system, in which case we process through the Application only the verification identifier obtained from the login process or your user name and profile photograph from a given third-party service for the purpose of displaying them in the Application.
  
-**According to GDPR you have also other rights:** +===== What is the legal basis for processing your personal data? =====
-  * to obtain confirmation from the Administrator whether or not personal data is processed +
-  * to gain access to personal data and information regarding: +
-    * purpose of processing +
-    * the categories of personal data concerned +
-    * recipients or categories of recipients to whom personal data have been or will be disclosed, in particular, if they were third-country recipients outside the European Union and international organizations +
-    * the planned periods of storage of personal data and, in the case of uncertainty about the criteria used to determine that period +
-    * the existence of the right to require the controller to correct or delete personal data or to limit their processing or to object to such processing +
-    * sources of personal information if these have not been obtained from you +
-    * whether automated decision-making, including profiling, occurs and at least in these cases receive meaningful information regarding the process used, as well as the significance and expected consequences of such processing for you as a data subject +
-    * appropriate safeguards relating to the transfer if personal data are transferred to a third country outside the European Union or an international organization +
-  * not to be subject to any decision based solely on automated processing, including profiling, that would have legal effects or similar effects on you in a similar manner unless the decision is based on your explicit consent +
-  * to file a complaint with a supervisory authority, particularly in the Member State of your usual residence, place of employment or the place where the alleged breach occurred, if you believe that processing of personal data violates GDPR as well as the right to effective judicial protection against legally binding supervisory authority decision +
-  * to obtain compensation from the Data Controller or Personal Data Processor if you suffer material or intangible damage as a result of a GDPR violation +
-  * to request a copy of the processed personal data, including by electronic means +
-  * to request the correction of personal data without undue delay and supplement it in case of incompleteness, including by providing an additional declaration +
-  * to require the deletion of personal data without undue delay if: +
-    * they are no longer needed for the purposes for which they were collected +
-    * you withdraw the consent and there is no other legal reason for the processing of personal data +
-    * personal data has been processed unlawfully +
-    * personal data must be deleted in order to fulfill a legal obligation under the law +
-  * to obtain personal data in a structured, commonly used and machine-readable format +
-  * to transfer personal data to another controller without hindrance, including through the controller, if technically possible +
-  * to require restrictions on the processing of personal data if: +
-    * you deny their accuracy for the time needed to verify their accuracy +
-    * the processing is unlawful and you ask to restrict the use of personal data instead of deleting it +
-    * the controller no longer needs personal data for processing purposes, but you are requesting it to identify, exercise or defend legal claims +
-    * you object to their processing, pending verification that the Administrator's legitimate reasons exceed those justified on your part +
  
-Otherwisecheck the box **"I don't agree"**Unfortunately**Locus Map can't run without your consent, so it will end.**+Processing some of your personal data is necessary for the performance of the license agreement you have entered into with Us ("License Agreement")particularly for allowing your use of the Application's applicable functions. Such processing is compliant with Article 6(1)(b) GDPR. 
 + 
 +Some of your personal data pertaining to analytical outputs are further processed in accordance with Article 6(1)(f) GDPR, based on the Controller's legitimate interest in improving and maintaining the Application or, where applicable, for protecting property rights after the performance of the Licensing Agreement and for monetizing the Application through advertising. 
 + 
 +Based on the Controller's aforestated legitimate interest, the Controller will occasionally send you a newsletter to inform you about news concerning the Application. 
 + 
 + 
 +===== How long do we keep personal data? ===== 
 + 
 +Data the processing of which is required for the purposes performing the License Agreement are processed for no longer than the term of the License Agreement, unless otherwise specified below. Basic identification data are processed during three years after the termination of the License Agreement, a period that coincides with the limitation period pertaining to property rights arising from the License Agreement. For the purposes of the "Live Tracking" function that allows sharing your current location, we process your current location data only until the time of exiting the Application; data are deleted without unnecessary delay afterward.  
 + 
 +You can change your optional data at any time, for example by deleting an uploaded photograph from the Application. In such a case, the Controller will terminate the processing of such data no later than as of the time at which regular backup data are deleted. 
 + 
 +Any and all personal data processed for analytical purposes are processed only until the compilation of statistical data; afterward, data are automatically deleted. The Controller subsequently analyzes only anonymized summary data. 
 +Cookies are kept for a period of 30 days after being stored on your device. 
 + 
 +Other data that are not listed above are processed no longer than until the time at which your user account will be deleted. 
 + 
 +===== To whom do we provide your personal data? ===== 
 + 
 +Where the Controller transmits your personal data to third parties, the Controller does so for the purpose of fulfilling one of the purposes listed above. Typically, personal data are provided to personal data processors or to other controllers. In the further processing of your personal data, the Controller uses third-party services inside and outside the European Union, such as Host Europe GmbH, DigitalOcean Inc., Google Inc., and Google Ireland Limited, that is entities providing services necessary for the operation of the Application, server hosting, and, where applicable, analytical services. Necessary personal data are provided to the foregoing entities exclusively for the foregoing purpose. 
 + 
 +For the purpose of providing personalized advertising in the Application through the Google AdSense platform, some of your personal data may be provided to third parties acting as independent controllers of such data. For additional information on the Google AdSense service, visit https://policies.google.com/technologies/ads. 
 + 
 +After logging into your user account in the Application and on the Controller's website at http://www.locusmap.app ("Website"), the Controller uses Firebase Authentication services provided by Google Ireland LimitedThese services rely on a unique identifier (ID token) for your identification across a variety of the Controller's and third-party services. The ID token contains your basic identification dataparticularly first name, last name, e-mail address, IP address, and, where applicable, profile photograph. For this purpose, we store your IP address for several weeks after login and the other data listed above until the time at which your user account used in the Application is fully closed. Subsequently, your data are stored for 180 days in the framework of the procedures for backing up data on our servers. 
 + 
 +In case that you activate the Application's incident reporting function, your location data and, if applicable, biometric data are transmitted to the contact persons you specify in the Application. 
 + 
 +Moreover, your personal data are also transmitted based on your consent and instruction you give us by using the applicable function that allows sharing selected data with third parties. Explicit information to the foregoing effect is provided to you through the Application. The Controller bears no liability for any processing carried out by the recipient of such data selected by youowing to the absence of a decision on appropriate protection and adequate guarantees within the meaning of the GDPR, such transmission entails risk and may not provide sufficient protection for your personal data. If you choose to export your personal data to a recipient from a third country outside the European Economic Area, you will be asked for express consent prior to such transmission. 
 + 
 +If you share your itinerary from your library through the Website, you will be able to choose, prior to sharing, whether or not the itinerary will be shared in conjunction with your basic identification data (first name, last name, e-mail address, and, where applicable, uploaded photograph). This function is available only to registered users. 
 + 
 +If you decide to use the Application's Live Tracking function to share your current location in a public group, your user name and current geographic position will be publicly displayed to all persons visiting the Website as well as in the Locus Map application. The Controller does not unilaterally block access to the Website to users from any country, including countries outside the European Union. Selecting whether your current position is shared in real time privately and publicly can be done directly in the Application. 
 + 
 +Your name and location data are shared in the framework of the Live Tracking function only after the activation of the Live Tracking in the Application, and such sharing lasts until you deactivate this function or exit from the Application on your device. The fact that you activate the Live Tracking function and the fact that your name and current position at a given time are actively being shared is indicated in the Application by displaying a rotating arrows icon in the system tray of your device. 
 + 
 +===== What are your rights? ===== 
 + 
 +You have the following rights under the GDPR: 
 +  the right to request the Controller to provide access to personal data in accordance with Article 15 GDPR 
 +  the right to request correction of personal data in accordance with Article 16 GDPR 
 +  * the right to request the erasure of unlawfully processed personal data in accordance with Article 17 GDPR 
 +  * the right to request restriction of personal data processing subject to the conditions laid down in Article 18 GDPR 
 +  * the right to portability of personal data in accordance with Article 20 GDPR 
 +  * the right to object the unlawful processing of personal data in accordance with Article 21 GDPR 
 +The Controller hereby informs you that no automated decisions will be made based on the aforestated personal data within the meaning of the GDPR.  
 + 
 +You also have the right to object the processing of personal data at any time, including, where applicable, profiling, due to reasons pertaining to your specific situation. You can exercise the right to raise objection at any time due to reasons pertaining to your specific situation in case that your personal data are processed for direct marketing purposes, including, where applicable, thereto related profiling. 
 + 
 +If the processing of your personal data violates any provision of the GDPR, you can contact the Controller to rectify the violation. In addition, you can submit the matter to the oversight body, specifically the Office for Personal Data Protection at Pplk. Sochora 27, 170 00 Prague 7, Czech Republic. 
 + 
 +The Controller may update this Personal Data Processing Policy from time to time as necessary. Kindly pay attention to the current version of this Personal Data Processing Policy, which is available HERE. We will inform you of updates of the Personal Data Processing Policy by sending a message to the e-mail address you provide during the registration of your user account through the Application or by means of notifications sent through the Application itself. 
manual/about/gdpr.txt · Last modified: 2021/02/19 15:15 by mstupka

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki