Summary

The following summary of our Data Privacy Policy provides a simple overview of what happens to your personal data when you use this app. Personal data is any data that can be used to personally identify you. For more detailed information on the subject of data privacy, you may consult the full Privacy Policy below this summary.

Who is responsible for how data is collected and processed by this app?
We are a company called “Smart Data Applications Cologne UG (haftungsbeschränkt)”, and we are responsible for how data is collected and processed by this app. You can find our contact details in the “Notice about the responsible party” section of the Privacy Policy below.

How do we collect your data?
When you use this app, we collect events from your iOS calendars in order to display countdowns for these events. This data is only collected if you give your consent after first starting the app. The app also stores your user settings, including whether you have given the app access to your calendar events, or whether you have viewed the tutorial. Moreover, the app receives information about purchases you have made within the app from the Apple App Store. Together with device metadata, this information is sent to an external server.

What do we use your data for?
We process your data to ensure that our app runs as intended, as well as to optimize the app. If we do not have access to events from your calendars, and if we do not keep track of your user settings, it is not possible to use this app to display countdowns for specific events from your calendars. Furthermore, in order to offer an option for subscribing to the Pro Version, we need to send device metadata and information about your in-app purchases to an external server. On the server, this data is used to validate whether attempted subscriptions were successful, whether existing subscriptions are still active, and whether existing subscriptions were renewed. Based on your purchase history, the external server also calculates statistics about the number of subscriptions we have received. We use this information to optimize the app – for example, by adding features which will increase future subscriptions.

What rights do you have regarding your data?
You have the right, at any time and free of charge, to receive information about what personal data we process, where your data is collected from, who it is sent to, as well as for what purpose. You also have a right to demand the rectification or deletion of this data. If you have given your consent to data processing, you can revoke this consent at any time for the future. You also have the right, under certain circumstances, to demand the restriction of the processing of your personal data. Furthermore, you have the right to lodge a complaint with a relevant supervisory authority.

Data Privacy Policy

1. General notes and mandatory information

Data protection
We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with legal regulations as well as this Privacy Policy. When you use this app, various personal data is collected. Personal data is data that can be used to identify you personally. This Privacy Policy explains what data we collect and what we use it for. We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) is not secure 100 % of the time, and that complete protection of data against access by third parties is not possible.

Notice about the responsible party
The responsible party for data processing through this app is:


Storage duration
Unless a more specific storage duration is specified within this Privacy Policy, your personal data will remain with us until the purpose for processing the data ceases to exist. If you request deletion of your data or revoke your consent to data processing, your data will be deleted immediately. If there are legal reasons for storing your personal data (e.g. retention periods under tax or commercial law), the data will be deleted after these reasons cease to exist.

General information on the legal basis for data processing by this app
We process your personal data in accordance with the General Data Protection Regulation (GDPR) of the European Union. The GDPR provides the following legal grounds for us to process your data:

  • If you have consented to data processing, we process your personal data on the basis of Article 6 (1) (a) GDPR.
  • If special types of data pursuant to Article 9 (1) GDPR are processed, we process your data according to Article 9 (2) (a) GDPR.
  • If you have given express consent to the transfer of your personal data to other countries, data processing is also carried out on the basis of Article 49 (1) (a) GDPR.
  • If we need your data to fulfill a contract or to implement pre-contractual measures, we process your data on the basis of Article 6 (1) (b) GDPR.
  • If we need to process your data to fulfill legal obligations, we process your data on the basis of Article 6 (1) (c) GDPR.
  • We may also process your data based on our legitimate interest according to Article 6 (1) (f) GDPR.

Information about the relevant legal basis in each individual instance of data processing is provided in the following paragraphs of this Privacy Policy.

Revoking your consent to data processing
Many data processing operations are only possible with your explicit consent. If you have given your consent but would like to revoke it for the future, you can do so at any time.

Right to object to the collection of data in certain cases and to direct marketing (Article 21 GDPR)
IF WE PROCESS YOUR DATA ON THE BASIS OF ARTICLE 6 (1) (E) OR (F) GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION. THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. IN ALL INDIVIDUAL CASES, THE LEGAL BASIS FOR PROCESSING YOUR DATA IS DOCUMENTED IN THIS PRIVACY POLICY. IF YOU REVOKE YOUR CONSENT, WE WILL NO LONGER PROCESS YOUR PERSONAL DATA – UNLESS THERE ARE COMPELLING AND LEGITIMATE GROUNDS FOR PROCESSING YOUR DATA WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS; OR IF PROCESSING YOUR DATA IS NECESSARY FOR THE ESTABLISHMENT, EXERCISE OR DEFENCE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ARTICLE 21 (1) GDPR). IF YOUR PERSONAL DATA IS PROCESSED FOR THE PURPOSE OF DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF YOUR PERSONAL DATA FOR THE PURPOSE OF SUCH MARKETING. THIS ALSO APPLIES TO PROFILING, INSOFAR AS IT IS CONNECTED WITH SUCH DIRECT ADVERTISING. IF YOU OBJECT, YOUR PERSONAL DATA WILL SUBSEQUENTLY NO LONGER BE USED FOR THE PURPOSE OF DIRECT MARKETING (OBJECTION PURSUANT TO ARTICLE 21 (2) DSGVO).

Right to appeal to a relevant supervisory authority
If the processing of your personal data infringes on GDPR regulations, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement. Your right to lodge a complaint exists without prejudice to other administrative or judicial remedies.

Right to data portability
In cases where we process your data based on your consent or in order to fulfill contractual obligations, you have the right to receive this data in a common, machine-readable format. You also have the right to request direct transfer of the data to a third party. If you request the direct transfer of the data to a third party, we will only comply with your request if it is technically feasible.

Access, rectification and erasure
Within the framework of the GDPR, you have the right, at any time and free of charge, to receive information about what personal data we process, where it is collected from, recipients to whom it has been or will be disclosed, and the purpose for which it is collected. You also have a right, where applicable, to rectification and erasure of your data. For this and other questions related to you personal data, you may contact us at any time.

Right to restriction of processing
You have the right to request restriction of processing of your personal data. For this purpose, you can contact us at any time. The right to restriction of processing applies in the following cases:

  • If you contest the accuracy of your personal data stored by us, we usually need time to verify this. For the duration of the review, you have the right to request the restriction of processing of your personal data.
  • If our processing of your personal data is unlawful and you oppose the erasure of the data, you may request a restriction of processing.
  • If we no longer need your personal data, but you need it for the establishment, exercise or defence of legal claims, you have the right to request the restriction of processing of your personal data in place of erasure.
  • If you have lodged an objection to processing pursuant to Article 21 (1) GDPR, you have the right to request the restriction of processing of your personal data pending the verification whether our legitimate interests override yours.
  • If you have restricted processing of your personal data, your data will, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State.

2. Data collected by this app

Calendar events
This app collects events from your iOS calendars. This is necessary to show countdowns for specific events within the app – i.e., it is necessary for the app’s core functionality of displaying your calendar events. Thus, processing of your calendar events is based on our legitimate interest according to Article 6 (1) (f) GDPR. Note that events are only collected if you give consent after first starting the app, and you can revoke your consent at any time within the iOS system settings.

A calendar event consists of the following variables:

  • Location: the location for the event (e.g. “Cologne”)
  • Start date: a time and date at which the event starts (e.g. “2023-04-27T20:55:40.965167”)
  • End date: a time and date at which the event ends (e.g. “2023-04-15T20:55:40.965167”)
  • Title: the title given to the event (e.g. “Birthday Party”)
  • Last modified date: the time and date at which the even was last modified (e.g. “2023-04-15T20:55:40.965167”)
  • Calendar: the calendar from which the event was collected (e.g. “Birthdays”)
  • ID: a unique ID to identify the event (e.g. “008f9d23-3a4f-46fj-a263-3cfg5adbn4d4”)

When the app is running, it periodically collects all available events from your calendars. Events are then shown within two different sections of the app: In the “Add Countdown” section, where you can select events from your calendars in order to create a countdown based on the selected events; and in the “Your Countdowns” section, where we show a countdown for each event you have selected in the “Add Countdown” section.

Collected calendar events are stored within the app on your device. If you revoke consent to calendar access within the iOS system settings, the app will no longer access your calendar events; and with the exception of unique IDs, all event data is deleted from the app. If a countdown was created before consent was revoked, the unique ID of the underlying event will still be stored within the app. This is so that the app can automatically re-create countdowns if you grant calendar access again in the future. Note that, without calendar access, it is not possible to re-construct an event based only its unique ID. All calendar events stored within the app, including their unique IDs, are deleted if you uninstall the app from your device.

User settings
This App Stores your user settings. Storing user settings is necessary for the app to run as intended. Processing of your user settings is thus based on our legitimate interest according to Article 6 (1) (f) GDPR.

The following user settings are stored:

  • Whether you have given consent for the app to access your iOS calendars
  • Whether you have viewed the tutorial
  • The time and date at which calendar events were last synchronized
  • Pro version status: Whether you have purchased the Pro version of the app

Your “Pro version status” is passed to the app by the Apple App Store. Please note that the app does not have access to your sensitive payment data, such as credit card information. Your payment data is passed directly to Apple and does not go through the app.

User settings are stored within the app on your device. If you uninstall the app from your device, user settings stored within the app are deleted.

App Store receipts
This app receives so-called App Store receipts from the Apple App Store. App Store receipts are encrypted files containing information about your in-app purchase history, including information about the time of each purchase as well as additional information about the state of each purchase (e.g. whether a given subscription is still active, whether it will be automatically renewed, or whether it has been canceled).

The app receives an App Store receipt from the Apple App Store every time you purchase or attempt to purchase a subscription to the Pro Version, as well as every time an existing subscription is automatically renewed. Together with metadata about your device, receipts are sent to an external server for the purpose of validating whether your purchase was successful, whether an existing subscription is still active, and whether an existing subscription was automatically renewed. Device metadata is e.g. the device type, the manufacturer of the device, the serial number, and information about your operating system.

On the external server, each receipt is first decrypted, and its content is used to verify that the receipt was issued by Apple. The server also checks whether the receipt was issued for your particular device and for this particular app. The receipt is considered validated only if it was in fact issued by Apple, for your particular device, and for this particular app. If a given App Store receipt has been validated and the status of your subscription is also marked as “active” within the receipt, features of the Pro version will be unlocked for you.

Without this validation process, we would not be able to tell whether purchases were successful, whether existing subscriptions are still active, and whether existing subscriptions were automatically renewed. Note that, for technical reasons, the validation process must be carried out on an external server. The validation process, including the transfer of data to an external server, is thus necessary for us to generate revenue through a subscription model. Processing of device metadata and data from App Store receipts is based on Article 6 (1) (f) GDPR. We have a legitimate interest in generating revenue through a subscription model.

Receipt validation is carried out by IAPTIC SAS. That is, the app sends device metadata and App Store receipts to servers operated by IAPTIC SAS, located in Germany and Finland, where IAPTIC SAS performs the validation process described above. Please be aware that, without additional sources of data pertaining to you, it is not possible to personally identify you based on the data we send to IAPTIC SAS. Device metadata is only used to match App Store receipts to your device, and App Store receipts only contain information about your purchase history.

IAPTIC SAS stores information about your purchases on their servers, where it is only accessible from an encrypted private virtual network and protected with industry standard encryption. The purpose of storage is to provide us with statistics about our subscriptions. We use these statistics to optimize the app, e.g. to evaluate whether changes to the app will increase subscriptions. Further storage and processing of device metadata and data from App Store receipts, after receipt validation, is based on Article 6 (1) (f) GDPR. We have a legitimate interest in optimizing the app so as to increase future subscriptions.

Contacting us by phone or e-mail
If you contact us by phone or e-mail, we will store your inquiry as well as all personal data (name, content of inquiry) in order to properly process your inquiry. We will not pass on this data without your consent.

If your request is related to the fulfillment of a contract or is necessary for the implementation of pre-contractual measures, the processing of this data is based on Article 6 (1) (b) GDPR. In all other cases, data processing is based on our legitimate interest to effectively process inquiries addressed to us [Article 6 (1) (f) GDPR]. If we have requested your consent, data processing is based on your consent [Article 6 (1) (a) GDPR]. Note that you can revoke your consent at any time.

The data you send us via inquiries will remain with us until you request us to delete it, revoke your consent to storage, or until the purpose for storing the data no longer applies (e.g. after we have fully processed your request). In all cases, we will adhere to mandatory legal provisions – in particular to statutory retention periods.

Created with the aid of:
https://www.e-recht24.de