Privacy Policy for the Me Website

Updated December 2021

The privacy and security of your data is of high importance to the Me GbR ("Me", "us", "we"). We process your personal data in various contexts when you use our website. According to Article 13 and Article 14 General Data Protection Regulation ("GDPR") you have the right to be informed about the processing of your personal data. Please read this privacy policy carefully.

§ 1 Name and address of the controller & owner

This privacy statement applies to the processing of your personal data by the Me GbR as the responsible controller for this data processing. Our contact details are: Me GbR‍ represented by the managing directors Yannick Schmid and Max Stubbersfield

Mommsenstraße 5
12203 Berlin
Germany

email: knowyourself.meapp@gmail.com

§ 2 Mode and place of processing personal Data

Generally the Controller/Owner (Me GbR) does not collect or store any personal data of the Visitors/ Users (You) for analytical or any other purposes.

Methods of processing:‍

The Owner takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Owner, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of the Me. GbR (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Owner at any time.

Legal basis of processing:‍

The Owner may process Personal Data relating to Users if one of the following applies:

  • Users have given their consent for one or more specific purposes. Note: Under some legislations the Owner may be allowed to process Personal Data until the User objects to such processing (“opt-out”), without having to rely on consent or any other of the following legal bases. This, however, does not apply, whenever the processing of Personal Data is subject to European data protection law
  • Provision of Data is necessary for the performance of an agreement with the User and/or for any pre-contractual obligations thereof
  • Processing is necessary for compliance with a legal obligation to which the Owner is subject
  • Processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Owner
  • Processing is necessary for the purposes of the legitimate interests pursued by the Owner or by a third party.

In any case, the Owner will gladly help to clarify the specific legal basis that applies to the processing, and in particular whether the provision of Personal Data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.

Place:

The Data is processed at the Owner's operating offices and in any other places where the parties involved in the processing are located.Depending on the User's location, data transfers may involve transferring the User's Data to a country other than their own. To find out more about the place of processing of such transferred Data, Users can check the section containing details about the processing of Personal Data. If broader protection standards are applicable, Users are also entitled to learn about the legal basis of Data transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by the Owner to safeguard their Data.

If any such transfer takes place, Users can find out more by inquiring with the Owner using the information provided in the contact section above.

Retention time:

Personal Data shall be processed and stored for as long as required by the purpose they have been collected for.

Therefore:

  • Personal Data collected for purposes related to the performance of a contract between the Owner and the User shall be retained until such contract has been fully performed.
  • Personal Data collected for the purposes of the Owner’s legitimate interests shall be retained as long as needed to fulfill such purposes. Users may find specific information regarding the legitimate interests pursued by the Owner by contacting the Owner. ‍

The Owner may be allowed to retain Personal Data for a longer period whenever the User has given consent to such processing, as long as such consent is not withdrawn. Furthermore, the Owner may be obliged to retain Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.

Once the retention period expires, Personal Data shall be deleted. Therefore, the right of access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period.

The purposes of processing:

The Data concerning the User is collected to allow the Owner to provide its Service, comply with its legal obligations, respond to enforcement requests, protect its rights and interests (or those of its Users or third parties), detect any malicious or fraudulent activity, as well as the following: Analytics, Displaying content from external platforms, Tag Management and Platform services and hosting.

For specific information about the Personal Data used for each purpose, the User may refer to the following articles.‍Personal Data is collected for the following purposes and using the following services:

§ 4 Provision of the Website

For the provision of our website we use the services of Netlify, Inc., Amazon Web Services, Inc., and Plausible Insights OÜ.

These services have the purpose of hosting and running key components of our website.

Netlify allows the Owner to run and host our website. Amazon Web Services allows the Owner to run and host the analytics of visiting traffic of the website. Plausible allows the Owner to analyze behaviour of visitors of the website.

Personal Data processed: various types of Data as specified in the privacy policies of these services.

Netlify Privacy Policy
AWS Privacy Policy
Plausible

To ensure a secure and stable Internet presence, the browser you use on your terminal device automatically sends information to the server of our website service providers. This information is stored in a server log file until it is deleted. This applies to the following data: ‍

  • IP address of the requesting computer
  • Browser type and browser version
  • Operating system used
  • Referrer URL (website from which access is made)
  • Hostname of the accessing computer
  • Usage information: pages you view
  • Date and time of the server request
  • Telemetry data (i.e., information about how a specific feature or service is performing)
  • Information from cookies (such as cookie ID and settings)
  • Language preference
  • Device type and ID, and device model and manufacturer
  • Geolocation information

Place of processing: United States

§ 4 Your rights as a visitor

Information: You have the right to request information from the Me GbR at any time about your personal data stored by us (Article 15 GDPR). This also applies to the recipients or categories of recipients to whom this data is passed on, the purpose and duration of storage.‍

Correction, deletion, restriction of processing: You also have the right to request correction under the conditions of Article 16 GDPR, deletion under the conditions of Article 17 GDPR or restriction of processing under the conditions of Article 18 GDPR.‍Data transferability: You can also request data transfer at any time under the conditions of Article 20 GDPR.

Objection to processing: ‍In the case of processing of personal data for the performance of tasks in the public interest (Article 6 para. 1 S. 1 lit. e) GDPR) or for the protection of legitimate interests (Article 6 para. 1 S. 1 lit. f) GDPR), you may object to the processing of personal data relating to you at any time with effect for the future. In the event of an objection, we must refrain from any further processing of your data for the aforementioned purposes, unless there are compelling reasons for processing that are worthy of protection and outweigh your interests, rights and freedoms or the processing is necessary to assert, exercise or defend legal claims. Under the conditions of Article 21 para. 1 GDPR, data processing may be objected to for reasons arising from the specific situation of the data subject.

How can you exercise your rights?‍ To exercise these rights, please contact Me GbR under the above address.

You always have the right of appeal to the supervisory authority. ‍Without prejudice to any other administrative or judicial remedy, you have the right to complain to a data protection authority. You may do so by contacting the data protection authority at your usual place of residence or at our headquarters. The address of the supervisory authority responsible for the Me GbR is:

Berlin Commissioner for Data Protection and Freedom of Information Friedrichstraße 219 10969 Berlin Germany