Privacy Policy

Privacy Policy

for the apps from

Bored Owl Games

Candyflip Games

Personal data (hereinafter referred to as “data”) are processed by us only as necessary and for the purpose of providing a functional and user-friendly website, including its content and the services offered there.

In accordance with Art. 4 no. 1. of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to only as “GDPR”), “processing” shall mean any operation or set of operations which is performed upon personal data, whether or not by automated means, such as collection, recording, organization, arrangement, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

With the following privacy policy, we inform you in particular about the nature, scope, purpose, duration and legal basis of the processing of personal data, insofar as we decide either alone or jointly with others on the purposes and means of processing. In addition, we inform you below about the third-party components used by us for optimization purposes as well as to increase the quality of use, insofar as third parties process data in turn on their own responsibility.

Our data protection declaration is structured as follows:

I. Information about us as the responsible party

II. rights of users and data subjects

III. Information on data processing

IV. The rights of users

V. Further information on data collection and processing

I. Information about us as the responsible party

Responsible provider of this website in the sense of data protection law is:

Simon Werner Softwareentwicklung

Zweibrueckener Str. 75

90441 Nuernberg

Germany

Telephone: +49 (0) 152 – 55304363

E-Mail: boredowlgames@gmail.com

II. Rights of users and data subjects

With regard to the data processing described in more detail below, users and data subjects have the right to

• To confirmation as to whether data concerning them is being processed, to information about the data being processed, to further information about the data processing and to copies of the data (cf. also Art. 15 GDPR);
• to correction or completion of incorrect or incomplete data (cf. also Art. 16 GDPR);
• to the immediate erasure of the data concerning them (cf. also Art. 17 GDPR), or, alternatively, insofar as further processing is necessary pursuant to Art. 17 (3) GDPR, to the restriction of processing in accordance with Art. 18 GDPR;
• to receive the data concerning them and provided by them and to transfer this data to other providers/controllers (cf. also Art. 20 GDPR);
• to lodge a complaint with the supervisory authority if they are of the opinion that the data concerning them is being processed by the provider in breach of data protection provisions (cf. also Art. 77 GDPR).

In addition, the Provider is obliged to inform all recipients to whom data has been disclosed by the Provider about any correction or deletion of data or restriction of processing that takes place on the basis of Articles 16, 17 (1), 18 GDPR. However, this obligation does not exist insofar as this notification is impossible or involves a disproportionate effort. Notwithstanding the above, the user has a right to information about these recipients.

Likewise, users and data subjects have the right to object to the future processing of data concerning them in accordance with Art. 21 GDPR, insofar as the data is processed by the provider in accordance with Art. 6 para. 1 lit. f) GDPR. In particular, an objection to data processing for the purpose of direct marketing is permitted.

II. Information on data processing

Your data processed when using our website will be deleted or blocked as soon as the purpose of the storage no longer applies, the deletion of the data does not conflict with any legal obligations to retain data and no other information is provided below on individual processing procedures.

Contract processing

The data provided by you in order to make use of our range of goods and/or services will be processed by us for the purpose of processing the contract and are necessary to this extent. Conclusion and processing of the contract are not possible without the provision of your data.

The legal basis for the processing is Art. 6 para. 1 lit. b) GDPR.

We delete the data with complete contract execution, but must observe the retention periods under tax and commercial law.

In the context of contract processing, we pass on your data to the transport company commissioned with the delivery of goods or to the financial service provider, insofar as the transfer is necessary for the delivery of goods or for payment purposes.

The legal basis for the transfer of data is then Art. 6 para. 1 lit. b) GDPR.

Hosting and Backend Infrastructure

The purpose of these types of services is to host data and files so that this application can be managed and used. Furthermore, these offerings can provide a pre-built infrastructure that handles specific functions or entire components for this application. Some of these services operate with geographically distributed servers, making it difficult to determine where personal data is stored.

Firebase (Firebase, Inc.)

Firebase is a web hosting and backend service provided by Google Inc.

Personal data processed: various types of data, as described in the privacy policy of the service.

Processing location: USA – Pivacy Policy.

Firebase Hosting (Firebase, Inc.).

Firebase Hosting is a web hosting service provided by Google LLC or by Google Ireland Limited, depending on the location from which this application is accessed.

Personal data processed: various types of data, as described in the privacy policy of the service.

Processing location: USA – Pivacy Policy.

Firebase Cloud Firestore.

Firebase Cloud Firestore is a web hosting and backend service provided by Google LLC or by Google Ireland Limited, depending on the location from which this application is accessed.

Personal Data Processed: Usage data; various types of data as described in the service’s privacy policy.

Processing location: United States – Pivacy Policy; Ireland – Pivacy Policy.

https://www.google.com/intl/en/privacy/

Firebase inAppMessaging

Firebase inAppMessaging is a messaging service provided by Google LLC or by Google Ireland Limited, depending on the location from which this application is accessed. Firebase Cloud Messaging allows the owner to send messages and notifications to users via platforms such as Android, iOS, and the web. Messages can be sent to individual devices, groups of devices, on specific topics, or to specific user segments.

Personal Data Processed: various types of data as described in the Service’s Privacy Policy.

Processing location: United States – Pivacy Policy; Ireland – Pivacy Policy.

Google Analytics

The services listed in this section allow the Owner to monitor and analyze traffic and track user behavior.

Google Analytics with IP anonymization (Google Inc.).

In our app, we use Google Analytics. This is a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter only referred to as “Google”.

The Google Analytics service is used to analyze the usage behavior of our app. The legal basis is Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the analysis, optimization and economic operation of our app.

Usage and user-related information, such as IP address, location, time or frequency of visits to our website, is transferred to a Google server in the USA and stored there. However, we use Google Analytics with the so-called anonymization function. Through this function, Google already shortens the IP address within the EU or EEA.

The data collected in this way is in turn used by Google to provide us with an evaluation of the visit to our website and the usage activities there. This data may also be used to provide other services related to the use of our website and the use of the Internet.

Google states that it will not associate your IP address with any other data. In addition, Google keeps a record of your IP address at

https://www.google.com/intl/de/policies/privacy/partners

Google provides you with further information on data protection law, including information on how to prevent the use of your data.

Google also offers an opt-out function, which is activated by default in the app. This means that the app has already activated IP anonymization when it is started for the first time. However, this setting can be changed in the settings if desired.

However, this does not prevent information from being transmitted to us or to other web analytics services. If and which other web analytics services are used by us, you will of course also find out in this privacy policy.

Personal data processed: Cookie; Usage data.

Processing location: United States – Pivacy Policy – Opt Out.

III. The rights of the users

Users may exercise certain rights with respect to their data processed by the Provider.

In particular, users have the right to do the following:

• Revoke the consents at any time. If the User has previously consented to the processing of personal data, they may revoke their own consent at any time.
• Object to the processing of their data. The user has the right to object to the processing of their data if the processing is based on a legal basis other than consent. Further information on this is provided below.
• Receive information regarding their data. The user has the right to know whether the data is being processed by the provider, to receive information about individual aspects of the processing and to obtain a copy of the data.
• To have the data checked and corrected. The user has the right to check the accuracy of their data and request that it be updated or corrected.
• Request restriction of the processing of their data. Users have the right to restrict the processing of their data under certain circumstances. In this case, the Provider will not process the data for any purpose other than storage.
• Request deletion or other removal of personal data. Users have the right, under certain circumstances, to request that their data be erased by the Provider.
• Receive their data and have it transferred to another responsible party. Users have the right to receive their data in a structured, common and machine-readable format and, if technically possible, to have it transferred to another controller without hindrance. This provision is applicable if the data is processed by automated means and the processing is based on the user’s consent, on a contract to which the user is party, or on pre-contractual obligations.
• Filing a complaint. Users have the right to file a complaint with the competent supervisory authority.

Details on the right to object to processing

If personal data are processed in the public interest, in the exercise of a sovereign power conferred on the Provider or to safeguard the Provider’s legitimate interests, the User may object to such processing by providing a justification ground relating to his or her particular situation.

Users are informed that they may object to the processing of personal data for direct marketing at any time without giving reasons. Users can find out whether the Provider processes personal data for direct marketing purposes in the relevant sections of this document.

How the rights can be exercised

All requests to exercise the User Rights may be addressed to the Provider via the contact details provided in this document. Requests can be exercised free of charge and will be processed by the Provider as soon as possible, at the latest within one month.

V. Further information about the collection and processing of data

Access of the app to personal data and other apps.

Access permissions:

<uses-permission android:name=”android.permission.INTERNET” />

android.permission.INTERNET is a permission required by apps that access the Internet in some form. To enable inApp messaging, it needs this permission. In addition, we count anonymous game calls anonymously to improve the experience. Only the call of the inGame game is counted, but not data about the user, smartphone or the like.

The legal basis for the collection of your input data and usage data during your use of the app Drunk ‘n’ Master is Art. 6 para. 1 lit. b) GDPR.

The processing of your Functional Data to ensure the general usability, system security and system stability of our services is based on Art. 6 para. 1 lit. b) GDPR.

Muster-Datenschutzerklärung der Anwaltskanzlei Weiß & Partner