PRIVACY POLICY 

Of CultureMaps App (04/2019)

AudioQ UG (haftungsbeschränkt) wishes to inform you about how and why data is collected and used when you use our app, and the extent to which such data is collected and used.

Personal Data

The term ‘personal data’ is defined in the General Data Protection Regulation (hereinafter referred to as ‘the GDPR’). Pursuant to the GDPR, ‘personal data’ is all information relating to an identified or identifiable natural person. This includes, for instance, your real name, your address, your telephone number and your date of birth. Information about your use of this app may also constitute personal data if it is possible to draw inferences about your identity using this information. 

Nature and extent of data processing

AudioQ UG (haftungsbeschränkt) automatically stores the following data every time you access the app: name of accessed app pages, date/time, data volume transferred, notification of successful access, app/version, device type and device name, operating system, IP address and your current location (if you have given permission for the app to access your location data).                                                                                                           

Reasons for using your personal data, legal bases and ability to object

Wherever possible, only anonymised or pseudonymised data will be used. We will only collect, process and use your personal data for the purpose of providing the services of our app, particularly for the purpose of transmitting booking enquiries to us and providing you with information on attractions or events in your immediate vicinity. In respect of the location data necessary for this purpose, we will ask for permission during the installation process and the first time the app is started – and will only access these functions if you have given us permission to do so. We also use your data for statistical and anonymised analysis purposes, and produce pseudonymised user profiles to improve the services provided by the app. We also process your data to authenticate you as an authorised user and ensure the security of our IT systems. These usage purposes also provide us with a legitimate interest in processing your data. The legal basis for data processing is Article 6 (1f) of the GDPR. In respect of the processing of your location data, which requires your express consent, the legal basis is Article 6 (1a) of the GDPR.

Android

Before you download the app on Google Play, you need to give the app permission to access specific capabilities or information (known as permissions groups) on your device. We require permissions for the following purposes:

AuthorizationPurpose
Location (GPS- and network-based)Map-function and location based news for sights, statistics to improve our services
Read, modify or delete USB-storage contentsStorage of offline-maps and pictures
Read Google service configuration telephone status and search identity accounts on the deviceFunctions e.g. receiving push-messages display of pop-ups for our campaigns via push-ID
Receiving internet data
Retrieve network connection
Full network access Access to WiFi
Use of the internet and loading of new app contents

iOS

The following authorizations are queried for the following purposes by iOS before the initial use:

AuthorizationPurpose
Location detectionMap-function and location based news for sights, statistics to improve our services
Sending of push-messagesReceiving of push-messages via push-ID
Mobile data
WiFi
Use of the internet and loading of new app contents

Google Analytics

This app uses Google Analytics, a Web analytics service provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; ‘Google’). It uses the Universal Analytics operating mode. This facilitates the assignment of data, sessions and interactions across multiple devices to a pseudonymous user ID and thus the analysis of a user’s activities across devices.

Google Analytics uses ‘cookies’, which are text files that are stored on your computer and that enable an analysis of your use of the app. The information generated by the cookie about your use of the app will generally be transmitted to, and stored by, Google on servers in the United States. In the event that IP anonymisation has been activated on this app, however, your IP address will be shortened by Google beforehand within member states of the European Union or other countries that are parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and shortened there. The IP address transmitted by your browser in connection with Google Analytics will not be associated with any other data held by Google. Google will use this information on behalf of the app provider for the purpose of evaluating your use of the app, compiling reports on app activity and providing the website provider with other services connected to app and Internet usage. These usage purposes also provide us with a legitimate interest in processing your data. The legal basis for the use of Google Analytics is Article 6 (1f) of the GDPR. Sessions and campaigns end when a certain period has elapsed. Sessions end as standard after 30 minutes if no activity is recorded, whereas campaigns end after six months. The maximum time limit for campaigns is two years. For more detailed information on terms of use and privacy, please refer to https://www.google.com/analytics/terms/gb.html and/or https://policies.google.com/?hl=en.

Operating system providers

Pursuant to the terms of use of your smartphone, the provider (Apple Inc. or Google Inc.) may collect, process and use data. Please refer to the relevant privacy policy/settings of your provider.

No disclosure of data to third parties

We will not disclose your data to third parties unless we are legally obliged to do so or unless you book services via us that necessitate the disclosure of your data to the relevant event organiser or service provider (e.g. travel tickets, tickets, hotels, other tourism-related services). The legal basis for data transmission is, in this instance, Article 6 (1b) of the GDPR, as data transmission is necessary for the performance of a contract. Should external service providers come into contact with your personal data, we have made use of legal, technical and organisational measures and regular monitoring to ensure that such third parties comply with the relevant data protection regulations.

Storage periods

We will only ever store your data for as long as necessary for the purposes outlined above. We will only store your location data in anonymised form; it is not possible for us to identify you using this data. In the event of bookings, your data will be stored for as long as required to perform the underlying contract or to assert/contest any legal claims that may arise. We will only store technical data for as long as necessary to ensure and maintain the security of our systems.

Security

We have taken comprehensive technical and operational security precautions to protect your data against unauthorised access and misuse.

Your rights

We are happy to provide you with information as to whether we hold any of your personal data and, if so, which data. Subject to the relevant statutory requirements, you also have the right to rectification (Article 16 of the GDPR), the right to restriction of processing (Article 18 of the GDPR), the right to erasure (Article 17 of the GDPR), the right to object (Article 21 of the GDPR) and the right to data portability (Article 20 of the GDPR). 

Without prejudice to these rights and the option of seeking any other administrative or judicial remedy, you are also free to exercise your right to lodge a complaint with a supervisory authority at any time – in particular in the member state of your habitual residence, place of work or the place of the alleged infringement – if you consider that the processing of personal data relating to you infringes data protection legislation (Article 77 of the GDPR).

Amendments to this Privacy Policy

We reserve the right to amend this Privacy Policy in accordance with statutory regulations at any time.

Data controller and contact details

If you have any questions about the collection, processing or use of your personal data, if you would like information about data or if you wish to rectify or erase data, or restrict its use, or if you wish to withdraw consent that has previously been granted, please contact our external Data Protection Officer directly.

AudioQ UG (haftungsbeschränkt)
Heinrich-Heine-Straße 47
30173 Hannover
info@audioq.de