MangoMobile

PRIVACY POLICY

Personal data (hereinafter mostly referred to as "data") is processed by us only to the extent necessary and for the purpose of providing a functional and user-friendly website, including its content and the services offered there.

According to Art. 4 Paragraph 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as "GDPR"), "processing" means any process or series of processes carried out with or without the help of automated processes with personal data, such as the collection, collection, organization, organization, storage, adaptation or modification, reading, querying, use, disclosure by transmission, distribution or another form of provision, comparison or the link, the restriction, the deletion or the destruction.

With the following data protection declaration, we inform you in particular about the type, scope, purpose, duration and legal basis of the processing of personal data, insofar as we either alone or together with others decide on the purposes and means of the processing. In addition, we will inform you below about the third-party components we use for optimization purposes and to increase the quality of use, insofar as third parties process data on their own responsibility.

Our data protection declaration is structured as follows:

I. Information about us as responsible
II. Rights of users and the parties affected
III. Information on data processing

I. Information about us as responsible

MangoSolutions (Benjamin Sieweke und Louis Reinisch GbR)
Kafkastrasse 67
33729 Bielefeld
Owner: Benjamin Sieweke und Louis Reinisch
Telephone: +49 152 025288815
Email: hello@mangomobile.io

II. Rights of users and the parties affected

With regard to the data processing described in more detail below, users and parties affected have the right

• on confirmation of whether data relating to them are processed, on information about the processed data, on further information on data processing and on copies of the data (see also Art. 15 GDPR);

• to correct or complete incorrect or incomplete data (see also Art. 16 GDPR);

• immediate deletion of the data concerning them (cf. also Art. 17 GDPR), or, alternatively, if further processing in accordance with Art. 17 Para. 3 GDPR is required, restriction of processing in accordance with Art. 18 GDPR;

• on receipt of the data concerning them and provided by them and on the transmission of this data to other providers / responsible persons (cf. also Art. 20 GDPR);

• on complaint to the supervisory authority, provided that they believe that the data concerning them will be processed by the provider in violation of data protection regulations (cf. also Art. 77 GDPR).

In addition, the provider is obliged to notify all recipients to whom data have been disclosed to the provider about any correction or deletion of data or the restriction of processing that takes place on the basis of Articles 16, 17 (1), 18 GDPR teaching. However, this obligation does not exist if this communication is impossible or involves disproportionate effort. Regardless of this fact, the user has the right to information about these recipients.

According to Art. 21 GDPR, users and data subjects also have the right to object to the future processing of their data, provided that the data is provided by the provider in accordance with Art. 6 Para. 1 lit. f) GDPR are processed. In particular, an objection to data processing for the purpose of direct advertising is permitted.
If you would like to assert the above rights, please send your request by email or post, clearly identifying yourself, to the address given in Section I.

III. Information on data processing

Server data

For technical reasons, in particular to ensure a secure and stable website, data is transmitted to us or our web space provider through your internet browser. With these so-called server log files, i.a. Type and version of your internet browser, the operating system, the website from which you switched to our website (referrer URL), the website (s) of our website that you visit, the date and time of the respective access and the IP address of the Internet connection from which our website is used.

The data collected in this way is temporarily stored, but not together with other data from you. This storage takes place on the legal basis of Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the improvement, stability, functionality and security of our website.

For internal management reasons, we store the postcode, email and the name of a buyer on our servers. These can, as described in II. At the request of every user, the citizens of the European Union, be deleted or changed.

Our website, as well as APIs that are used to process user data, are hosted on Amazon "AWS" and Google Cloud servers. Since we have no influence on the storage of the data at Google and Amazon, we refer here to the respective data protection declarations: Amazon and Google.

Amazon Web Services, Inc., 410 Terry Avenue North, Seattle, WA 98109, USA.

Google Cloud, Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.

We use "Stripe" as the payment platform.
(Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland.)

Stripe stores basic data about a buyer of our product, such as name and address. We transmit the data entered by the user in accordance with Art. 6 Para. 1 lit. b GDPR to Stripe. Your data will only be passed on for the purpose of payment processing with Stripe Payments Europe Ltd. and only to the extent that it is necessary for this.
For more information on exactly what data is saved when purchasing with Stripe, please refer to Stripe's privacy policy.

In all three cases, we would like to point out that there is a possibility that data of users outside the European Union, especially in the USA, will be processed. The possibility of data deletion lies solely with these companies and cannot be influenced by us.


Cookies

a) Session cookies

We use cookies on our website. Cookies are small text files or other storage technologies that are stored on your device by the internet browser you use. These cookies process certain information from you to an individual extent, such as your browser or location data or your IP address.

This processing makes our website more user-friendly, effective and secure, since the processing, for example, enables our website to be displayed in different languages ​​or offers a shopping cart function.

The legal basis for this processing is Art. 6 Para. 1 lit. b.) GDPR, if these cookies process data for contract initiation or contract processing.

If the processing does not serve to initiate or process the contract, our legitimate interest lies in improving the functionality of our website. The legal basis is then Art. 6 Para. 1 lit. f) GDPR.

These session cookies are deleted when you close your Internet browser.


b) Third party cookies


If necessary, our website also uses cookies from partner companies with which we work for the purpose of advertising, analysis or the functionality of our website.

Please refer to the following information for details, in particular regarding the purposes and the legal basis for the processing of such third-party cookies.


c) Elimination possibility


You can prevent or restrict the installation of cookies by changing your internet browser's settings. You can also delete cookies that have already been saved at any time. The steps and measures required for this, however, depend on your specific internet browser. If you have any questions, please use the help function or documentation of your Internet browser or contact its manufacturer or support.

If you prevent or restrict the installation of cookies, this can lead to the fact that not all functions of our website can be used to their full extent.


Google Analytics

We use Google Analytics on our website. This is a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google".

Through the certification according to the EU-US data protection shield ( “EU-US Privacy Shield” ), Google guarantees that the data protection requirements of the EU are also complied with when processing data in the USA.

The Google Analytics service is used to analyze the usage behavior of our website. The legal basis is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the analysis, optimization and economic operation of our website.

Usage and user-related information, such as IP address, location, time or frequency of visits to our website, are transmitted to a Google server in the USA and stored there. However, we use Google Analytics with the so-called anonymization function. With this function, Google shortens the IP address already within the EU or the EEA.

The data collected in this way is in turn used by Google to provide us with an evaluation of the visit to our website and the usage activities there. This data can also be used to provide other services related to the use of our website and the use of the Internet.

Google states that it will not link your IP address to other data. Google also provides at https://www.google.com/intl/de/policies/privacy/partners further data protection information for you, for example also on the possibilities to prevent the use of data.

Google also offers a so-called deactivation add-on at https://tools.google.com/dlpage/gaoptout along with further information. This add-on can be installed with common internet browsers and offers you further control over the data that Google collects when you access our website. The add-on notifies the JavaScript (ga.js) from Google Analytics that information about visiting our website should not be transmitted to Google Analytics. However, this does not prevent information from being transmitted to us or to other web analysis services. You can of course also find out in this data protection declaration whether and which other web analysis services we use.


Google Fonts

On our website we use Google Fonts to display external fonts. This is a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter referred to as "Google".

Through the certification according to the EU-US data protection shield ( “EU-US Privacy Shield” ), Google guarantees that the data protection requirements of the EU are also complied with when processing data in the USA. In order to enable the display of certain fonts on our website, a connection to the Google server in the USA is established when you visit our website. The legal basis is Art. 6 Para. 1 lit. f) GDPR.

Our legitimate interest lies in the optimization and economic operation of our website. By connecting to Google when you access our website, Google can determine from which website your request was sent and to which IP address the representation of the font is to be transmitted. Google offers at
https://adssettings.google.com/authenticated
https://policies.google.com/privacy
more information, in particular on the options for preventing data usage.


Data security

We make every effort to ensure the security of your data within the framework of the applicable data protection laws and technical options.

Your personal data will be encrypted with us. This applies to your orders and also to the customer login. We use the SSL (Secure Socket Layer) coding system, but point out that data transmission over the Internet (e.g. when communicating by email) can have security gaps. It is not possible to completely protect data from third-party access.

To secure your data, we maintain technical and organizational security measures in accordance with Art. 32 GDPR, which we constantly adapt to the state of the art.

We also do not guarantee that our offer will be available at certain times; Disruptions, interruptions or failures cannot be excluded. The servers we use are regularly carefully backed up.


Customer account / registration function

If you buy something from us, a file is automatically created on our servers. This contains your name, zip code, email and is used exclusively for pre-contractual services, for the fulfillment of the contract or for customer care purposes (e.g. to provide you with an overview of your previous orders from us).

At the same time, we then save the IP address and the date of your registration. This data is not passed on to third parties.

As part of the further registration process, your consent to this processing is obtained and reference is made to this data protection declaration. The data we collect is used exclusively to provide the customer account.

If you consent to this processing, Art. 6 para. 1 lit. a) GDPR is the legal basis for processing.

If the opening of the customer account also serves pre-contractual measures or the fulfillment of the contract, the legal basis for this processing is also Art. 6 Para. 1 lit. b) GDPR.

You can revoke your consent to the opening and maintenance of your customer account at any time with future effect in accordance with Art. 7 Para. 3 GDPR. All you have to do is notify us of your revocation.

The data collected will be deleted as soon as processing is no longer necessary. However, we must observe tax and commercial retention periods.


Contact inquiries / contact options

If you contact us using the contact form or email, the data you provide will be used to process your request. The specification of the data is necessary for processing and answering your request - without providing it, we cannot answer your request or at best only to a limited extent.

The legal basis for this processing is Art. 6 Para. 1 lit. b) GDPR.

Your data will be deleted if your request has been answered in the end and there are no legal retention requirements, such as in the event of a subsequent contract execution.


Twitter

We maintain an online presence on Twitter to present our company and our services and to communicate with customers / interested parties. Twitter is a service of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA.

In this respect, we would like to point out that there is a possibility that user data will be processed outside the European Union, especially in the USA. This can result in increased risks for the user in that e.g. later access to user data can be made more difficult. We also have no access to this user data. Access is only possible with Twitter. Twitter Inc. is certified under the Privacy Shield and is therefore committed to complying with European data protection standards.

Privacy Shield

You can find Twitter's data protection information here.


Instagram

We operate a company presence on the Instagram platform to promote our products and services and to communicate with interested parties or customers.

On this social media platform, we are jointly responsible with Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2 Ireland.

Instagram's data protection officer can be reached via a contact form:

https://www.facebook.com/help/contact/540977946302970

We have regulated the shared responsibility in an agreement regarding the respective obligations within the meaning of the GDPR. This agreement, from which the mutual obligations arise, is available at the following link:

https://www.facebook.com/legal/terms/page_controller_addendum

The legal basis for the processing of personal data that follows and is reproduced below is Art. 6 Para. 1 lit. f GDPR. Our legitimate interest is in the analysis, communication, sales and advertising of our products and services.

The legal basis can also be the user's consent in accordance with Art. 6 Para. 1 lit. a GDPR towards the platform operator. The user can revoke his consent for this in accordance with Art. 7 Para. 3 GDPR at any time by notifying the platform operator.

When you access our online presence on the Instagram platform, Facebook Ireland Ltd. As the operator of the platform in the EU, user data (e.g. personal information, IP address etc.) is processed.

This user data is used for statistical information about the use of our company presence on Instagram. Facebook Ireland Ltd. uses this data for market research and advertising purposes as well as to create user profiles. Based on these profiles, Facebook Ireland Ltd. For example, it is possible to advertise users inside and outside of Instagram based on interests. If the user is logged into his Instagram account at the time of the call, Facebook Ireland Ltd. also link the data to the respective user account.

If the user contacts Instagram, the user's personal data entered on this occasion will be used to process the request. We will delete the user's data, provided that the user's request has been answered in the end and there are no statutory retention requirements, such as with a subsequent contract execution.

To process the data, Facebook Ireland Ltd. possibly also set cookies.

If the user does not consent to this processing, it is possible to prevent the installation of cookies by setting the browser accordingly. Cookies that have already been saved can also be deleted at any time. The settings for this depend on the respective browser. In the case of flash cookies, processing cannot be prevented via the settings of the browser, but rather through the corresponding setting of the flash player. If the user prevents or restricts the installation of cookies, this can mean that not all of Facebook's functions can be used to their full extent.

More information on the processing activities, their prevention and the deletion of the data processed by Instagram can be found in Instagram's data policy:

https://help.instagram.com/519522125107875

It is not excluded that the processing by Facebook Ireland Ltd. also via Facebook Inc., 1601 Willow Road, Menlo Park, California 94025 in the USA.

Facebook Inc. has submitted to the "EU-US Privacy Shield" and thereby declares compliance with EU data protection regulations when processing data in the USA.

PrivacyShield


Linking social media via graphics or text link

We also advertise on our website presences on the social networks listed below. The integration takes place via a linked graphic of the respective network. The use of this linked graphic prevents a connection to the respective server of the social network from being automatically established when a website with a social media application is called up in order to display a graphic of the respective network itself. The user is only forwarded to the service of the respective social network by clicking on the corresponding graphic.

After the user has been forwarded, information about the user is recorded by the respective network. It cannot be ruled out that the data collected in this way will be processed in the USA.

This is initially data such as IP address, date, time and page visited. If the user is logged into his user account of the respective network, the network operator may be able to assign the information collected from the user's specific visit to the user's personal account. If the user interacts via a “share” button of the respective network, this information can be saved in the user's personal user account and published if necessary.
If the user wants to prevent the information collected from being directly assigned to his user account, he must log out before clicking on the graphic. There is also the option of configuring the respective user account accordingly.

The following social networks are linked to our site:

Twitter

Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA

Privacy Policy

EU-US data protection certification ("EU-US Privacy Shield")


Instagram

Facebook Inc., 1601 Willow Road, Menlo Park, California 94025 USA

Privacy Policy

EU-US data protection certification ("EU-US Privacy Shield")


Change of data protection information

MangoSolutions reserves the right to change this data protection notice at any time in compliance with the applicable data protection regulations. The user will be informed of any changes to the data protection information on mangomobile.io or by email.

BUSINESS TRANSFERS


If MangoMobile, or substantially all of its assets, were acquired, or in the unlikely event that MangoMobile goes out of business or enters bankruptcy, user information would be one of the assets that is transferred or acquired by a third party.
You acknowledge that such transfers may occur, and that any acquirer of MangoMobile may continue to use your personal information subject to a different Privacy Policy.



Last update: 19th July 2020