Personal data (hereinafter mostly referred to as "data") is processed by us only to the extent necessary and for
the
purpose of providing a functional and user-friendly website, including its content and the services offered
there.
According to Art. 4 Paragraph 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation
(hereinafter
referred to as "GDPR"), "processing" means any process or series of processes carried out with or without the help
of
automated processes with personal data, such as the collection, collection, organization, organization, storage,
adaptation or modification, reading, querying, use, disclosure by transmission, distribution or another form of
provision, comparison or the link, the restriction, the deletion or the destruction.
With the following data protection declaration, we inform you in particular about the type, scope, purpose,
duration and
legal basis of the processing of personal data, insofar as we either alone or together with others decide on the
purposes and means of the processing. In addition, we will inform you below about the third-party components we
use for
optimization purposes and to increase the quality of use, insofar as third parties process data on their own
responsibility.
Our data protection declaration is structured as follows:
I. Information about us as responsible
II. Rights of users and the parties affected
III. Information on data processing
MangoSolutions (Benjamin Sieweke und Louis Reinisch GbR)
Kafkastrasse 67
33729 Bielefeld
Owner: Benjamin Sieweke und Louis Reinisch
Telephone: +49 152 025288815
Email: hello@mangomobile.io
With regard to the data processing described in more detail below, users and parties affected have the
right
• on confirmation of whether data relating to them are processed, on information about the processed data, on
further
information on data processing and on copies of the data (see also Art. 15 GDPR);
• to correct or complete incorrect or incomplete data (see also Art. 16 GDPR);
• immediate deletion of the data concerning them (cf. also Art. 17 GDPR), or, alternatively, if further processing
in
accordance with Art. 17 Para. 3 GDPR is required, restriction of processing in accordance with Art. 18
GDPR;
• on receipt of the data concerning them and provided by them and on the transmission of this data to other
providers /
responsible persons (cf. also Art. 20 GDPR);
• on complaint to the supervisory authority, provided that they believe that the data concerning them will be
processed
by the provider in violation of data protection regulations (cf. also Art. 77 GDPR).
In addition, the provider is obliged to notify all recipients to whom data have been disclosed to the provider
about any
correction or deletion of data or the restriction of processing that takes place on the basis of Articles 16, 17
(1), 18
GDPR teaching. However, this obligation does not exist if this communication is impossible or involves
disproportionate
effort. Regardless of this fact, the user has the right to information about these recipients.
According to Art. 21 GDPR, users and data subjects also have the right to object to the future processing of their
data,
provided that the data is provided by the provider in accordance with Art. 6 Para. 1 lit. f) GDPR are processed.
In
particular, an objection to data processing for the purpose of direct advertising is permitted.
If you would like to assert the above rights, please send your request by email or post, clearly identifying
yourself,
to the address given in Section I.
Server data
For technical reasons, in particular to ensure a secure and stable website, data is transmitted to us or our web
space
provider through your internet browser. With these so-called server log files, i.a. Type and version of your
internet
browser, the operating system, the website from which you switched to our website (referrer URL), the website (s)
of our
website that you visit, the date and time of the respective access and the IP address of the Internet connection
from
which our website is used.
The data collected in this way is temporarily stored, but not together with other data from you.
This storage takes place on the legal basis of Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the
improvement, stability, functionality and security of our website.
For internal management reasons, we store the postcode, email and the name of a buyer on our servers. These can,
as
described in II. At the request of every user, the citizens of the European Union, be deleted or changed.
Our website, as well as APIs that are used to process user data, are hosted on Amazon "AWS" and Google Cloud
servers.
Since we have no influence on the storage of the data at Google and Amazon, we refer here to the respective data
protection declarations: Amazon
and Google.
Amazon Web Services, Inc., 410 Terry Avenue North, Seattle, WA 98109, USA.
Google Cloud, Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
We use "Stripe" as the payment platform.
(Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland.)
Stripe stores basic data about a buyer of our product, such as name and address. We transmit the data entered by
the user
in accordance with Art. 6 Para. 1 lit. b GDPR to Stripe. Your data will only be
passed on for the purpose of payment
processing with Stripe Payments Europe Ltd. and only to the extent that it is necessary for this.
For more information on exactly what data is saved when purchasing with Stripe, please refer to Stripe's privacy policy.
In all three cases, we would like to point out that there is a possibility that data of users outside the European
Union, especially in the USA, will be processed. The possibility of data deletion lies solely with these companies
and
cannot be influenced by us.
Cookies
a) Session cookies
We use cookies on our website. Cookies are small text files or other storage technologies that are stored on your
device
by the internet browser you use. These cookies process certain information from you to an individual extent, such
as
your browser or location data or your IP address.
This processing makes our website more user-friendly, effective and secure, since the processing, for example,
enables
our website to be displayed in different languages or offers a shopping cart function.
The legal basis for this processing is Art. 6 Para. 1 lit. b.) GDPR, if these cookies process data for contract
initiation or contract processing.
If the processing does not serve to initiate or process the contract, our legitimate interest lies in improving
the
functionality of our website. The legal basis is then Art. 6 Para. 1 lit. f) GDPR.
These session cookies are deleted when you close your Internet browser.
b) Third party cookies
If necessary, our website also uses cookies from partner companies with which we work for the purpose of
advertising,
analysis or the functionality of our website.
Please refer to the following information for details, in particular regarding the purposes and the legal basis
for the
processing of such third-party cookies.
c) Elimination possibility
You can prevent or restrict the installation of cookies by changing your internet browser's settings. You can also
delete cookies
that have already been saved at any time. The steps and measures required for this, however, depend on your
specific
internet browser. If you have any questions, please use the help function or documentation of your Internet
browser or
contact its manufacturer or support.
If you prevent or restrict the installation of cookies, this can lead to the fact that not all functions of our
website
can be used to their full extent.
Google Analytics
We use Google Analytics on our website. This is a web analytics service provided by Google Ireland Limited, Gordon
House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google".
Through the certification according to the EU-US data protection shield (
“EU-US Privacy Shield” ), Google guarantees that the data protection requirements of the EU are also
complied with when processing data in the USA.
The Google Analytics service is used to analyze the usage behavior of our website. The legal basis is Art. 6 Para.
1
lit. f) GDPR. Our legitimate interest lies in the analysis, optimization and economic operation of our
website.
Usage and user-related information, such as IP address, location, time or frequency of visits to our website, are
transmitted to a Google server in the USA and stored there. However, we use Google Analytics with the so-called
anonymization function. With this function, Google shortens the IP address already within the EU or the
EEA.
The data collected in this way is in turn used by Google to provide us with an evaluation of the visit to our
website
and the usage activities there. This data can also be used to provide other services related to the use of our
website
and the use of the Internet.
Google states that it will not link your IP address to other data. Google also provides at
https://www.google.com/intl/de/policies/privacy/partners
further data protection information for you, for example also on the possibilities to prevent the use of
data.
Google also offers a so-called deactivation add-on at https://tools.google.com/dlpage/gaoptout
along with further information.
This add-on can be installed with common internet browsers and offers you further control over the data
that Google collects when you access our website. The add-on notifies the JavaScript (ga.js) from Google Analytics
that
information about visiting our website should not be transmitted to Google Analytics. However, this does not
prevent
information from being transmitted to us or to other web analysis services. You can of course also find out in
this data
protection declaration whether and which other web analysis services we use.
Google Fonts
On our website we use Google Fonts to display external fonts. This is a service of Google Ireland Limited, Gordon
House,
Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google".
Through the certification according to the EU-US data protection shield (
“EU-US Privacy Shield” ), Google guarantees that the data protection requirements of the EU are also
complied with when
processing data in the USA.
In order to enable the display of certain fonts on our website, a connection to the Google server in the USA is
established
when you visit our website. The legal basis is Art. 6 Para. 1 lit. f) GDPR.
Our legitimate interest lies in the optimization and economic operation of our website. By connecting to Google
when you
access our website, Google can determine from which website your request was sent and to which IP address the
representation of the font is to be transmitted. Google offers at
https://adssettings.google.com/authenticated
https://policies.google.com/privacy
more information, in particular on the options for preventing data usage.
Data security
We make every effort to ensure the security of your data within the framework of the applicable data protection
laws and
technical options.
Your personal data will be encrypted with us. This applies to your orders and also to the customer login. We use
the SSL
(Secure Socket Layer) coding system, but point out that data transmission over the Internet (e.g. when
communicating by
email) can have security gaps. It is not possible to completely protect data from third-party access.
To secure your data, we maintain technical and organizational security measures in accordance with Art. 32 GDPR,
which
we constantly adapt to the state of the art.
We also do not guarantee that our offer will be available at certain times; Disruptions, interruptions or failures
cannot be excluded. The servers we use are regularly carefully backed up.
Customer account / registration function
If you buy something from us, a file is automatically created on our servers. This contains your name, zip code,
email
and is used exclusively for pre-contractual services, for the fulfillment of the contract or for customer care
purposes
(e.g. to provide you with an overview of your previous orders from us).
At the same time, we then save the IP address and the date of your registration. This data is not passed on to
third
parties.
As part of the further registration process, your consent to this processing is obtained and reference is made to
this
data protection declaration. The data we collect is used exclusively to provide the customer account.
If you consent to this processing, Art. 6 para. 1 lit. a) GDPR is the legal basis for processing.
If the opening of the customer account also serves pre-contractual measures or the fulfillment of the contract,
the
legal basis for this processing is also Art. 6 Para. 1 lit. b) GDPR.
You can revoke your consent to the opening and maintenance of your customer account at any time with future effect
in
accordance with Art. 7 Para. 3 GDPR. All you have to do is notify us of your revocation.
The data collected will be deleted as soon as processing is no longer necessary. However, we must observe tax and
commercial retention periods.
Contact inquiries / contact options
If you contact us using the contact form or email, the data you provide will be used to process your request. The
specification of the data is necessary for processing and answering your request - without providing it, we cannot
answer your request or at best only to a limited extent.
The legal basis for this processing is Art. 6 Para. 1 lit. b) GDPR.
Your data will be deleted if your request has been answered in the end and there are no legal retention
requirements,
such as in the event of a subsequent contract execution.
Twitter
We maintain an online presence on Twitter to present our company and our services and to communicate with
customers /
interested parties. Twitter is a service of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103,
USA.
In this respect, we would like to point out that there is a possibility that user data will be processed outside
the
European Union, especially in the USA. This can result in increased risks for the user in that e.g. later access
to user
data can be made more difficult. We also have no access to this user data. Access is only possible with Twitter.
Twitter
Inc. is certified under the Privacy Shield and is therefore committed to complying with European data protection
standards.
Privacy Shield
You can find Twitter's data protection information here.
Instagram
We operate a company presence on the Instagram platform to promote our products and services and to communicate
with
interested parties or customers.
On this social media platform, we are jointly responsible with Facebook Ireland Ltd., 4 Grand Canal Square, Grand
Canal
Harbor, Dublin 2 Ireland.
Instagram's data protection officer can be reached via a contact form:
https://www.facebook.com/help/contact/540977946302970
We have regulated the shared responsibility in an agreement regarding the respective obligations within the
meaning of
the GDPR. This agreement, from which the mutual obligations arise, is available at the following link:
https://www.facebook.com/legal/terms/page_controller_addendum
The legal basis for the processing of personal data that follows and is reproduced below is Art. 6 Para. 1 lit. f
GDPR.
Our legitimate interest is in the analysis, communication, sales and advertising of our products and
services.
The legal basis can also be the user's consent in accordance with Art. 6 Para. 1 lit. a GDPR towards the platform
operator. The user can revoke his consent for this in accordance with Art. 7 Para. 3 GDPR at any time by notifying
the
platform operator.
When you access our online presence on the Instagram platform, Facebook Ireland Ltd. As the operator of the
platform in
the EU, user data (e.g. personal information, IP address etc.) is processed.
This user data is used for statistical information about the use of our company presence on Instagram. Facebook
Ireland
Ltd. uses this data for market research and advertising purposes as well as to create user profiles. Based on
these
profiles, Facebook Ireland Ltd. For example, it is possible to advertise users inside and outside of Instagram
based on
interests. If the user is logged into his Instagram account at the time of the call, Facebook Ireland Ltd. also
link the
data to the respective user account.
If the user contacts Instagram, the user's personal data entered on this occasion will be used to process the
request.
We will delete the user's data, provided that the user's request has been answered in the end and there are no
statutory
retention requirements, such as with a subsequent contract execution.
To process the data, Facebook Ireland Ltd. possibly also set cookies.
If the user does not consent to this processing, it is possible to prevent the installation of cookies by setting
the
browser accordingly. Cookies that have already been saved can also be deleted at any time. The settings for this
depend
on the respective browser. In the case of flash cookies, processing cannot be prevented via the settings of the
browser,
but rather through the corresponding setting of the flash player. If the user prevents or restricts the
installation of
cookies, this can mean that not all of Facebook's functions can be used to their full extent.
More information on the processing activities, their prevention and the deletion of the data processed by
Instagram can
be found in Instagram's data policy:
https://help.instagram.com/519522125107875
It is not excluded that the processing by Facebook Ireland Ltd. also via Facebook Inc., 1601 Willow Road, Menlo
Park,
California 94025 in the USA.
Facebook Inc. has submitted to the "EU-US Privacy Shield" and thereby declares compliance with EU data protection
regulations when processing data in the USA.
PrivacyShield
Linking social media via graphics or text link
We also advertise on our website presences on the social networks listed below. The integration takes place via a
linked
graphic of the respective network. The use of this linked graphic prevents a connection to the respective server
of the
social network from being automatically established when a website with a social media application is called up in
order
to display a graphic of the respective network itself. The user is only forwarded to the service of the respective
social network by clicking on the corresponding graphic.
After the user has been forwarded, information about the user is recorded by the respective network. It cannot be
ruled
out that the data collected in this way will be processed in the USA.
This is initially data such as IP address, date, time and page visited. If the user is logged into his user
account of
the respective network, the network operator may be able to assign the information collected from the user's
specific
visit to the user's personal account. If the user interacts via a “share” button of the respective network, this
information can be saved in the user's personal user account and published if necessary.
If the user wants to prevent the information collected from being directly assigned to his user account, he must
log out
before clicking on the graphic. There is also the option of configuring the respective user account
accordingly.
The following social networks are linked to our site:
Twitter
Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA
Privacy Policy
EU-US data protection certification ("EU-US Privacy
Shield")
Instagram
Facebook Inc., 1601 Willow Road, Menlo Park, California 94025 USA
Privacy Policy
EU-US data protection certification ("EU-US Privacy
Shield")
Change of data protection information
MangoSolutions reserves the right to change this data protection notice at any time in compliance with the
applicable
data protection regulations.
The user will be informed of any changes to the data protection information on mangomobile.io or by email.
If MangoMobile, or substantially all of its assets, were acquired, or in the unlikely event that MangoMobile goes
out of business or enters bankruptcy, user information would be one of the assets that is transferred or acquired
by a third party.
You acknowledge that such transfers may occur, and that any acquirer of MangoMobile may continue
to use your personal information subject to a different Privacy Policy.
Last update: 19th July 2020