top of page
AdobeStock_218813826.jpeg

data protection notice

With the following data protection information, we would like to inform you about which types of your personal data we process for which purposes and to what extent.

 

Responsible Body

​

spoboo Gmbh
Kirchsteig 14
78647 Trossingen
Germany

email: info@spoboo.com

imprint

 

Security Measures

​

In accordance with the legal requirements, we take appropriate technical and organizational measures, taking into account current technology status, implementation cost and the type, scope, circumstances, and purposes of processing data as well as probability and extent of threats to rights and freedoms of natural persons to ensure protection levels appropriate to the risk exposure.

​

The measures include, in particular, securing the confidentiality, integrity, and availability of data by controlling physical and electronic access to the data as well as the access, input, transfer, ensuring availability and their separation. Furthermore, we have set up procedures that ensure the exercise of data subject rights, the deletion of data, and reactions to the threat to the data.

 

Shortening the IP address: If IP addresses are processed by me or by the service providers and technologies used and the processing of a full IP address is not required, the IP address will be shortened (also referred to as "IP masking"). The last two digits or the last part of the IP address after a point are removed or replaced by placeholders. The shortening of the IP address is intended to prevent or make it much more difficult to identify a person using their IP address.

​

SSL encryption (https): To protect the transmitted data, SSL encryption is used (prefix https:// in the address line of the browser).

 

Deletion of Data

​

The processed data will be deleted in accordance with the legal requirements as soon as their consent for processing is revoked or other permissions are no longer applicable (e.g., if the purpose of processing this data no longer applies or if it is not required for the purpose).

If the data are not deleted because they are required for other and legally permissible purposes, their processing will be limited to these purposes. This means that the data is blocked and not processed for other purposes.

​

Users can delete their own accounts and all corresponding data in their user profiles. 

 

Provision of the Online Offer and Web Hosting

​

In order to be able to provide the spoboo online service safely and efficiently, we use the services of web hosting providers whose servers (or servers managed by them) can access the online offer. For these purposes, we can use infrastructure and platform services, computing capacity, storage space, and database services, as well as security services and technical maintenance services.

​

The data processed in the context of the provision of the hosting offer can include all information relating to the users of the online offer that arises in the context of use and communication. This regularly includes the IP address, which is necessary in order to be able to deliver the content of online offers to browsers, and all entries made within our online offer or from websites.

​

Collection of access data and log files: Data is collected every time the user accesses the server (so-called server log files). The server log files can include the address and name of the web pages and files accessed, the date and time of access, the amount of data transferred, notification of successful access, browser type, and version, the user's operating system, referrer URL (the previously visited page) and, as a rule, IP Addresses and the requesting provider belong.

​

The server log files can be used on the one hand for security purposes, e.g., to avoid overloading the server (especially in the case of abusive attacks, so-called DDoS attacks) and on the other hand to ensure the load on the server and its stability. The legal basis is legitimate interests.

 

Registration, Login, and User Account

​

Users can create a user account. As part of the registration, the required mandatory information is communicated to the users and processed for the purpose of providing the user account on the basis of contractual obligations. The processed data includes name, user name, age, gender, city and postal code, email address and telephone number. Photo upload is optional. Users can also define sports can corresponding performance levels as part of their profiles. 

​

The data entered during registration will be used for the purpose of using the user account and its purpose.

When using the registration and login functions as well as using the user account, the IP address and the time of the respective user action are stored. The storage takes place on the basis of legitimate interest to protect against misuse and other unauthorized use. A transfer of this data to third parties does not take place unless it is necessary to pursue our claims or there is a legal obligation to do so.

 

Online forum: Participation in the forum requires registration, in which, unless otherwise specified in the registration form, your name, password, and the e-mail address to which the access data will be sent must be given. For security reasons, the password should correspond to state of the art, i.e., it should be complicated and not used elsewhere. Users can reset their passwords on the log-in page of the app.

The contributions of the authors are saved with their name, the time, and the content of the entry. When registering and writing entries, the IP addresses of the users are also stored if the entries contain illegal content, and the IP addresses could be used for legal prosecution. We reserve the right to delete the registrations and entries on the basis of proper consideration.

​

Processed data types are name, contact data, content data, device information, and usage data of the spoboo users. These are processed for user administration and security measures. The legal basis for this is the fulfillment of the contract (registration) and legitimate interest.

 

Affected Rights

​

As a data subject, you have various rights under the GDPR, in particular:

​

Right of objection: You have the right to object at any time to the processing of your personal data, which is based on Article 6 (1) (e) or (f) GDPR, for reasons that arise from your particular situation; this also applies to profiling based on these provisions. If the personal data relating to you are processed in order to operate direct mail, you have the right to object at any time to the processing of the personal data relating to you for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising.

​

Right of revocation in the case of consents, i.e., to revoke granted consents at any time.

​

Right to information, i.e., to request information about whether and which personal data is being processed.

​

Right to deletion and restriction of processing, ie you have the right, in accordance with the legal requirements, to request that the data relating to you be deleted immediately or, alternatively, to request that the processing of the data be restricted in accordance with the legal requirements.

​

Complaint to the supervisory authority: In accordance with the legal requirements, you also have the right to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, your place of work or the place of the alleged infringement, if you are of the opinion that the processing of those concerning your personal data violates the GDPR.

 

Status: 02/09/2021

 
bottom of page