Personal data (usually referred to just as "data" below) will only be processed by us to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents, and the services offered there.
Per Art. 4 No. 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as the "GDPR"), "processing" refers to any operation or set of operations such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction performed on personal data, whether by automated means or not.
The following privacy policy is intended to inform you in particular about the type, scope, purpose, duration, and legal basis for the processing of such data either under our own control or in conjunction with others. We also inform you below about the third-party components we use to optimize our website and improve the user experience which may result in said third parties also processing data they collect and control.
Our privacy policy is structured as follows:
I. Information about us as controllers of your data
II. The rights
of users and data subjects
III. Information about the data
processing
The party responsible for this website (the "controller") for purposes of data protection law is:
Julian Reck
Lessingstraße 11
76135 Karlsruhe
Germany
Telephone: +49 17657932967
Email: support@nutrizi-app.de
The controller's data protection officer is:
Julian Reck
With regard to the data processing to be described in more detail below, users and data subjects have the right
In addition, the controller is obliged to inform all recipients to whom it discloses data of any such corrections, deletions, or restrictions placed on processing the same per Art. 16, 17 Para. 1, 18 GDPR. However, this obligation does not apply if such notification is impossible or involves a disproportionate effort. Nevertheless, users have a right to information about these recipients.
Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the controller's future processing of their data pursuant to Art. 6 Para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct advertising is permissible.
Your data processed when using our website will be deleted or blocked as soon as the purpose for its storage ceases to apply, provided the deletion of the same is not in breach of any statutory storage obligations or unless otherwise stipulated below.
If you contact us via email or the contact form, the data you provide will be used for the purpose of processing your request. We must have this data in order to process and answer your inquiry; otherwise we will not be able to answer it in full or at all.
The legal basis for this data processing is Art. 6 Para. 1 lit. b) GDPR.
Your data will be deleted once we have fully answered your inquiry and there is no further legal obligation to store your data, such as if an order or contract resulted therefrom.
In general, when using services, e.g. querying information from third-party providers, it cannot be ruled out that automatically transmitted metadata will be evaluated by the respective third-party provider. It must be assumed that at least the following information is sent along and potentially evaluated: IP address, time stamp, requested information, HTTP access status, amount of data transferred, referrer URL, browser type, browser information, operating system, end device type.
We use Firebase Crashlytics to constantly improve the stability of the application. In case of a crash of the application, anonymized information that helps to identify and fix the error is transferred to Firebase Crashlytics. This information does not contain any directly linkable personal data. An evaluation of the automatically transmitted meta data (IP address, platform information (e.g. iOS/Android)) by Crashlytics cannot be excluded. By default, Crashlytics is deactivated and requires the user's consent to use it. Crashlytics can be deactivated again at any time under "Settings". Crashlytics is a service of Firebase, which belongs to Google. The privacy policy for Firebase can be found here. The Google privacy policy can be found here.
We use "Firebase Authentication" for registration, authentication and authorization. The following information is stored and retrieved during registration and login:
The password is stored cryptographically encrypted and is not visible to us. During registration, in addition to the data listed above, the following data will be stored and used/changed accordingly when using the platform:
“Firebase Firestore" is used to store the above data. Packages are published under the username, which is defined by the user. It is not possible for other users to find out personal information about other users unless this user specifically decides to publish it (for example by putting it in the title or description). We cannot be held responsible for this. However, we offer the possibility that packages can be reported, either via the function in the app itself or you can also contact us via the contact options in the imprint. The user has the possibility to delete self-created packages at any time. The user also has the option to delete his account. Hereby all information which is directly assignable to the identity of this person will be deleted. The packages themselves are stored in "Firebase Storage". "Firebase Authentication", "Firebase Firestore" and "Firebase Storage" are services of Firebase, which belongs to Google. The privacy policy applicable to Firebase can be found here. The Google privacy policy can be found here.
The application contains links to third-party providers. When you click on a third-party link, you will be redirected to their site. These external sites are not operated by us, so different privacy policies apply to them. You can usually find these on their website. We have no influence on their handling of your data and therefore bear no responsibility for their handling of your data, their provided content or other.
When using the barcode scanner, only information related exclusively to the barcode read and automatically generated metadata (IP address, platform information (e.g. iOS/Android), etc.) are transmitted to an external interface ("Open Food Facts"). Their privacy policy can be found here.
When using the FDC search, only information resulting from the search query and automatically generated metadata (IP address, platform information (e.g. iOS/Android), etc.) are transmitted to an external interface ("Food Data Central API"). Their privacy policy can be found here.
The app uses, in order to ensure compliance with the trial period and the extended trial period of the in-app purchase, a software package called NTP, which retrieves the current time from a software interface. We use the interface "time.google.com" for this purpose. You can find the Google privacy policy here.
When making in-app purchases, functionalities of the respective platform (for iOS: "Apple Appstore" for Google: "Google Playstore") are used. Please familiarize yourself with their privacy policy beforehand. You can find Apple's privacy policy here. Google's privacy policy can be found here.
If you contact us via email or the contact form, the data you provide will be used for the purpose of processing your request. We must have this data in order to process and answer your inquiry; otherwise we will not be able to answer it in full or at all. The legal basis for this data processing is Art. 6 Para. 1 lit. b) GDPR. Your data will be deleted once we have fully answered your inquiry and there is no further legal obligation to store your data, such as if an order or contract resulted therefrom.
We reserve the right to adjust the privacy policy under certain circumstances. The current version as seen in the application always applies to the use of the application. The privacy policy is based on the Model Data Protection Statement by Anwaltskanzlei Weiß & Partner.