Privacy

Website

1. Data protection at a glance

General notes

The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data is all data with which you can be personally identified. Detailed information on data protection can be found in our privacy policy below this text.

Data collection on our website

Who is responsible for the data collection on this website?

The data processing on this website is carried out by the website operator. Your contact details can be found in the imprint of this website.

How do we collect your data?

On the one hand, your data is collected by providing us with it. For example, this can be data that you enter in a contact form.

Andere Daten werden automatisch beim Besuch der Website durch unsere IT-Systeme erfasst. Das sind vor allem technische Daten (z.B. Internetbrowser, Betriebssystem oder Uhrzeit des Seitenaufrufs). Die Erfassung dieser Daten erfolgt sobald Sie unsere Cookie und Datenschutzeinstellungen akzeptiert haben..

What do we use your data for?

Some of the data is collected to ensure that the website is provided without errors. Other data may be used to analyze your user behavior.

What rights do you have with respect to your data?

You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction, blocking or deletion of this data. You can contact us at any time at the address given in the imprint for further questions on data protection. You shall also have the right to lodge a complaint with the competent supervisory authority.

Third-party analytics and tools

When you visit our website, your browsing behavior can be statistically evaluated. This is mainly done with cookies and with so-called analysis programs. The analysis of your surfing behavior is usually done anonymously; the surf behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.

You can object to this analysis. We will inform you about the possibilities of objection in this data protection declaration.

2. General notes and mandatory information

Privacy

The operators of these sites take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.

When you use this website, various personal data are collected. Personal data is data that can be used to personally identify you. This privacy policy explains what data we collect and what we use it for. It also explains how and for what purpose this is done.

We would like to point out that data transmission over the Internet (e.g. when communicating via e-mail) may have security gaps. Complete protection of data against access by third parties is not possible.

Note on the responsible body

The data controller on this website is:

chargeyourmind GmbH
Giesenheide 49
40724 Hilden
E-Mail: kontakt@chargeyourmind.de

The responsible body is the natural or legal person who decides alone or jointly with others on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).

Revocation of your consent to data processing

Many data processing operations are only possible with your explicit consent. You can revoke your consent at any time. An informal message by e-mail to us is sufficient for this purpose. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Right to appeal to a supervisory authority

In the event of data protection violations, the person concerned has the right to complain to the competent supervisory authority. The competent supervisory authority in matters of data protection law is the state data protection officer of the federal state in which our company is based. A list of data protection officers and their contact details can be found at the following link:
BFDI

Right to data portability

You have the right to have data that we process automatically processed on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done if it is technically feasible.

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content, such as orders or requests you send to us as a site operator, this site uses SSL or TLS encryption. You can recognize an encrypted connection by changing the address line of the browser from "http://" to "https://" and by the lock icon in your browser line.

If SSL or TLS encryption is enabled, the data you submit to us cannot be read by third parties.

Encrypted payment transactions on this website

If, after the conclusion of a paid contract, there is an obligation to provide us with your payment data (e.g. account number in case of direct debit), this data will be required for payment processing.

Payment transactions via the usual means of payment (Visa/MasterCard, direct debit) are carried out exclusively via an encrypted SSL or TLS connection. You can recognize an encrypted connection by the fact that the address line of the browser changes from \"http://\" to \"https://\" and by the lock icon in your browser line.

In the case of encrypted communication, your payment data, which you transmit to us, cannot be read by third parties.

Information, blocking, deletion

Within the scope of the applicable statutory provisions, you have the right to free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if necessary, a right to rectification, blocking or deletion of this data. You can contact us at any time at the address given in the imprint for further questions on the subject of personal data.

Opposition to advertising emails

The use of contact data published within the scope of the imprint obligation for sending unsolicited advertising and information materials is hereby objected to. The operators of the pages expressly reserve the right to take legal action in the event of unsolicited sending of advertising information, e.g. by spam e-mails.

3. Existence of appropriate guarantees

Contact form

If you send us enquiries via the contact form, your details from the request form, including the contact details you provide there, will be stored with us for the purpose of processing the request and in case of follow-up questions. We do not share this data without your consent.

The processing of the data entered in the contact form is therefore carried out exclusively on the basis of your consent (Art. 6 sec. 1 lit. a GDPR). You can revoke this consent at any time. An informal message by e-mail to us is sufficient for this purpose. The legality of the data processing operations carried out up to the date of revocation remains unaffected by the revocation.

The data you enter in the contact form will remain with us until you ask us to delete it, revoke your consent to storage or the purpose for data storage is no longer applicable (e.g. after your request has been processed). Mandatory statutory provisions, in particular retention periods, remain unaffected.

4. Analysis Tools

Google Analytics

Diese Website nutzt den Dienst „Google Analytics“, welcher von der Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) angeboten wird, zur Analyse der Websitebenutzung durch Nutzer. Das Tracking findet erst statt nachdem Sie unsere Cookie & Datenschutzeinstellungen akzeptiert haben. Der Dienst verwendet „Cookies“ – Textdateien, welche auf Ihrem Endgerät gespeichert werden. Die durch die Cookies gesammelten Informationen werden im Regelfall an einen Google-Server in den USA gesandt und dort gespeichert.

IP anonymization

Auf dieser Website greift die IP-Anonymisierung. Die IP-Adresse der Nutzer wird innerhalb der Mitgliedsstaaten der EU und des Europäischen Wirtschaftsraum gekürzt. Durch diese Kürzung entfällt der Personenbezug Ihrer IP-Adresse. Im Rahmen der Vereinbarung zur Auftragsdatenvereinbarung, welche die Websitebetreiber mit der Google Inc. geschlossen haben, erstellt diese mithilfe der gesammelten Informationen eine Auswertung der Websitenutzung und der Websiteaktivität und erbringt mit der Internetnutzung verbundene Dienstleistungen.

Browser Plugin

You can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of this website to the full extent. You can also prevent us from collecting the data generated by the cookie and related to your use of the website (including your IP address) and from processing this data by us.

Sie haben dem Tracking durch Google Analytics widerrufen.

topicLab App

Responsible: chargeyourmind GmbH


Igor Shelkovenkov (CEO)

Giesenheide 40
40724 Hilden
Phone +49 2103-7892817
dataprotection@chargeyourmind.de

(below provider) to the users of the topicLab app.
With the following statement we inform you about the nature, scope and purposes of the collection, processing and use of your data in connection with your visit to our website.


I. Summary

The provider stores and processes your personal data in compliance with the relevant data protection regulations, in particular the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG).

The provider observes the principle of data minimization. This means that data is processed to the extent necessary for the purposes of the processing, as is appropriate and necessary for the provision of a functional website and with regard to the content and services offered. The processing is carried out either on the basis of prior consent or, if permitted by legal regulations.

When you visit the provider's website, the provider processes certain usage data in order to enable you to use its offer.

All processed personal data will be deleted by the provider after the storage period has expired.

You have the right to information regarding your data or to rectification, deletion and restriction of the processing of your data, a right of objection to the processing, a right to data portability and a right of appeal to a supervisory authority.

For more information, please see below.


II. Data protection information in accordance with Articles 13, 14 GDPR and Pursuant to § 32 et seq. 2018 BDSG


1. Definitions

a. Personal data

Personal data is any information relating to an identified or identifiable natural person (below referred to as the "data subject"); Identifiable is a natural person who can be identified, directly or indirectly, in particular by association with an identifier such as a name, identification number, location data, online identifier or one or more specific characteristics that are an expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.


b. Inventory data

Existing data are personal data of a user, which are necessary for the establishment, content or modification of a contractual relationship between the service provider and the user via the use of telemedia.


c. Usage data

Usage data is the personal data of a user that is necessary to enable and settle the use of telemedia. This includes in particular characteristics for the identification of the user, information about the beginning and end as well as the extent of the respective use and information about the telemedia used by the user.


d. Processing

Processing is any operation or series of operations carried out with or without the help of automated procedures in connection with personal data such as the collection, collection, organisation, ordering, storage, adaptation or modification, reading, querying, use, disclosure by transmission, dissemination or any other form of provision, comparison or linking, restriction, deletion or destruction.


e. Pseudonymization

Pseudonymisation is the processing of personal data in such a way that the personal data can no longer be assigned to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not assigned to an identified or identifiable natural person.be restricted.


f. Cookies

Cookies are small text files that are stored on your computer. Cookies always have a validity period, which may be limited to the end of the user session (so-called session cookies) or may exist for a longer period of time (so-called persistent cookies). These persistent cookies remain on your computer and enable the provider or its partner companies (so-called third party cookies) to recognize your computer on your next visit. You can set your browser so that you are informed about the setting of cookies and can decide individually on their acceptance or reject the setting of the cookie for certain cases or in general. If cookies are not accepted, the functionality of the website may be limited.


g. Website

A website, also known as a website, is the presence of a private or business provider of telemedia on the world wide web, which is grouped under a specific Internet address. The website includes websites or subpages and optionally available downloadable documents as well as other available audiovisual media services.


h. App

App means an application that can run on smartphones running the iOS and Android operating systems.


2. Description and scope of the processing of your data

With this section we inform you about the purposes for which the personal data are to be processed and about the legal basis for the processing.

The provider operates an app that allows users to exchange anonymously on any topic.


a. Processing in the case of registration of a user profile

When you register, the provider processes the data you provide in order to create a user profile and enable you to use the app. As part of the registration process, the provider collects the following data.

Data collection (stock data):
- Full name
- Username
- E-Mail
- Password
- Account and authentication information from third-party integrated services
- Information about the person in the user profile (voluntary)
- Personal information in chat messages (voluntary)

The legal basis for the processing of data is Article 6 (1) lit. a GDPR, if you have given the provider consent, and continue to exercise legitimate interests in accordance with Article 6 paragraph 1 lit. f GDPR. Eligible interests of the provider include the implementation of security functions, which make it necessary for the provider to assign the use of functions of the app to a specific user, as well as in the personalization of the app and the implementation of personalized advertising measures. However, the provider will always use these possibilities only in a concretely appropriate manner. If the purpose of contact ingestion is to start a contract, Article 6 (1) is lit. b GDPR is also a legal basis for data processing.

Data provided by you will be deleted immediately after deletion of the user profile, in the event of failure to complete the user profile at the latest after 3 years after the last use of the user profile, unless your data is subject to a longer storage period for a separate reason (e.g. the storage of information that serves the fulfilment of the contract).

You have the possibility at any time to revoke your consent to the processing of personal data or to object to the data processing, which is not based on consent. The exercise of the revocation or opposition can be made in particular by e-mail to the above-mentioned contact e-mail address(s). All personal data that the provider has stored in the course of contacting us will be deleted in this case. However, the use of the app will no longer be possible.

In principle, your right of withdrawal does not apply to such data that the provider requires in the context of the performance of a contract or pre-contractual measures. However, you may have additional rights.


b. Processing in case of use of the app

When using the app, your mobile device automatically transmits certain data to the provider's server as a result of user input. The following data is collected separately from other data that you may transmit to the provider and used for the aforementioned purposes:

Data collection (usage data)
- the user ID or the user token,
- E-Mail Address,
- the function triggered by the user (e.g. the sent message or the credit purchased),
- the operating system,
- The date and time of the server request

The legal basis for the storage of the data is the legitimate interests of the provider in accordance with Article 6 (1) lit. f GDPR. The legitimate interests of the provider include ensuring the functionality of the app, including the detection of technical failures, and hacker attacks.

The usage data is immediately alienated after an account deletion. Further storage is possible in accordance with data protection permits. In this case, the usage data is alienated, so that it is no longer possible to assign the website retrieval to your mobile device.

The collection of data for the provision of the app and the storage of the data is absolutely necessary for the operation of the app. Consequently, there is no possibility of objection on the part of the user. However, you can exercise your right to object by means of automated procedures using technical specifications such as anonymization of your IP address by VPN providers.


c. Processing of log data

If the app is installed on your device, your mobile device automatically transmits certain data to the provider's server for technical reasons, even if you are not using the app. The following data is collected separately from other data that you may transmit to the provider, collected by the provider, stored in log files (so-called log files) and used for the aforementioned purposes:

Data collection (usage data)
- browser type and browser version (if submitted by you),
- E-Mail Address,
- the user ID or the user token,
- the operating system,
- The date and time of the server request.

The legal basis for the storage of the data is the legitimate interests of the provider in accordance with Article 6 (1) lit. f GDPR. The legitimate interests of the provider include ensuring the functionality of the app, including the detection of technical failures, and hacker attacks.

In case of storage of the data in log files, the usage data will be deleted after 7 days at the latest. Further storage is possible in accordance with data protection permits. In this case, the IP addresses are deleted or alienated, so that it is no longer possible to assign the website to your computer.

The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user. However, you can exercise your right to object by means of automated procedures using technical specifications such as anonymization of your IP address by VPN providers.


d. Information from Integrated Sign-On Services

If you decide to register through or otherwise grant access to a third-party social networking or integrated service (what we call an "Integrated Service"), such as Google, Apple or similar single sign-on service, topicLab may also collect Personal Information that is already associated with your Integrated Service account. You may also have the option of sharing additional information with topicLab through an Integrated Service, as controlled through your settings on that Integrated Service. If you choose to provide such information, during registration or otherwise, topicLab will treat the information as Personal Information and will use it in the ways described in this Privacy Policy.


Existence of appropriate guarantees

e. Pseudonymization

Insofar as the provider collects usage data, he always stores it under pseudonyms (in the case of cookies, e.g. via a unique session key). The provider does not carry pseudonymous data with the data about the bearer of the pseudonym (such as the inventory data).


Use of encryption technologies

When transferring data between your computer or mobile device and the provider's server, the provider uses the Secure Socket Layer (SSL) security system. This technology is designed to protect your data from being read out by unauthorized third parties and offers a very high security standard. You can see that your data is transmitted encrypted by the closed display of a key or lock icon in the lower status bar of your browser.


4. Recipients of personal data in the EU

The provider transmits data to the following bodies within the European Union:
- Aiven Deutschland GmbH, Schönhauser Alleee 148, 10435 Berlin, Deutschland
- MongoDB, Inc., WeWork Goetheplatz, Neue Rothofstra0e 13-19, 60313 Frankfurt am Main, Deutschland
- Elastic, Keizersgracht 281, 1016 ED Amsterdam, Niederlande
- BACTO NET / Stackhero (WERESO), 104 rue Nationale, 59800 Lille, Frankreich

There is an agreement with the above-mentioned suppliers for order processing.


5. Recipients of personal data in third countries

The provider does not transmit data to bodies outside the European Union (third country).


6. Affected rights

You have the right to information about the personal data concerning you, as well as to rectification or deletion or to restrict the processing or a right to object to the processing, the right to data portability and the right of appeal to a supervisory authority in accordance with the description below. In the cases of Section 32 et seq. However, BDSG 2018 only exists to the extent that these are provided for under the BDSG 2018.


a. Your right to information

You have the right to request confirmation from the provider as to whether personal data concerning you will be processed. If this is the case, you have the right to information about these personal data and to the following information: the processing purposes; the categories of personal data that are processed; the recipients or categories of recipients to whom the personal data have been or are still being disclosed, in particular for recipients in third countries or international organisations; where possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining that duration; the existence of a right to rectification or erasure of personal data concerning you or to restrict the processing by the controller or a right to object to such processing; the existence of a right of appeal to a supervisory authority; if the personal data are not collected from the data subject, all available information on the origin of the data; the existence of automated decision-making, including profiling (according to Article 22(1) and 4 GDPR) and, at least in these cases, meaningful information on the logic involved and the scope and intended impact of such processing on the data subject.


b. Right to correction

You have the right to request from the provider without delay the correction of any inaccurate personal data concerning you. You have the right to request the completion of incomplete personal data, including by means of a supplementary declaration, if this is compatible with the above-mentioned purposes of processing or if there is a factual reason for doing so.


c. Right to erasure

You have the right to require the provider to immediately delete personal data concerning you. We are obligated to delete personal data immediately if one of the following reasons applies:

The personal data are no longer necessary for the purposes for which they were collected or otherwise processed; the data subject withdraws his consent on which the processing referred to in Article 6 (1) (a) or Article 9 (2) (a) GDPR was based and there is no other legal basis for processing; the data subject shall object to the processing in accordance with Article 21(1) GDPR and there are no legitimate priority grounds for processing or the data subject shall object to the processing in accordance with Article 21(2) GDPR; the personal data were processed unlawfully; the erasure of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the controller is subject; the personal data have been collected in relation to information society services offered in accordance with Article 8(1) GDPR (consent of a child in relation to information society services).

If we have made the personal data public and we are obliged to delete them, we shall take appropriate measures, including technical measures, taking into account the available technology and implementation costs, to inform data controllers who process the personal data that a data subject has requested us to delete all links to such personal data or copies or replications of that personal data.

However, you are not entitled to cancellation in accordance with Article 17 paragraph 3 GDPR, insofar as the processing is necessary for the exercise of the right to freedom of expression and information; to fulfil a legal obligation requiring processing under the law of the Union or the Member States to which the controller is subject, or to carry out a task which is in the public interest or in the exercise of official authority delegated to the controller; for reasons of public interest in the field of public health in accordance with Article 9 (2) (h) and (i) and Article 9 (3) GDPR; for archival purposes in the public interest, for scientific or historical research purposes or for statistical purposes in accordance with Article 89 (1) GDPR, insofar as the law referred to in paragraph 1 is likely to make the achievement of the objectives of such processing impossible or seriously impairs, or for the assertion, exercise or defense of legal claims.


d. Right to restrict processing

You have the right to request from us to restrict the processing if one of the following conditions is met: the accuracy of the personal data is disputed by the data subject for a period that allows the controller to verify the accuracy of the personal data; the processing is unlawful and the data subject refuses to delete the personal data and instead demands the restriction of the use of the personal data; the controller no longer needs the personal data for the purposes of the processing, but the data subject needs it to assert, exercise or defend legal claims, or the data subject has objected to the processing in accordance with Article 21(1) GDPR, until it is established whether the legitimate reasons of the controller outweigh those of the data subject.

Where the processing has been restricted, such personal data may be processed, except for its storage, only with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of an important public interest of the Union or of a Member State. If you have obtained a restriction on processing, we will inform you before the restriction is lifted.


e. Right to data portability

You have the right to use the personal data concerning you, you have provided to a controller in a structured, common and machine-readable format, and you have the right to transfer this data to another controller without hindrance by us or the controller to whom the personal data was provided, provided that the processing is based on consent in accordance with Article 6 (1) (a) GDPR or Article 9 paragraph 2 letter a GDPR or on a contract pursuant to Article 6 (1) (b) GDPR and is automated by means of processing.\n\nWhen exercising your right to data portability in accordance with Article 20 (1) GDPR, you have the right to obtain that the personal data be transmitted directly from a controller to another controller, insofar as this is technically feasible. This right must not affect the rights and freedoms of other persons.\n\nThe exercise of the right to data portability is without prejudice to Article 17 GDPR (right to erasure "right to be forgotten"). This right shall not apply to processing necessary for the performance of a task which is in the public interest or in the exercise of official authority delegated to the controller.

When exercising your right to data portability in accordance with Article 20 (1) GDPR, you have the right to obtain that the personal data be transmitted directly from a controller to another controller, insofar as this is technically feasible. This right must not affect the rights and freedoms of other persons.

The exercise of the right to data portability is without prejudice to Article 17 GDPR (right to erasure "right to be forgotten"). This right shall not apply to processing necessary for the performance of a task which is in the public interest or in the exercise of official authority delegated to the controller.


f. Right to object to the processing

You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you, which is required by Article 6 (1) (e) (performance of a task in the public interest) or f (safeguarding the legitimate interests of the controller or a third party) GDPR; this also applies to profiling based on these provisions. We will no longer process the personal data unless we can prove compelling legitimate grounds for the processing that outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.

If personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling in so far as it is related to such direct marketing. If you object to the processing for direct marketing purposes, the personal data will no longer be processed for these purposes.

We must expressly point out your right of objection to the processing at the latest at the time of the first communication with you; this notice shall be made in a comprehensible form and separate from other information.

In connection with the use of information society services, you may exercise your right of objection by means of automated procedures (e.g. by pressing "non-tracking" functions in the phone, by changing browser settings) using technical specifications, notwithstanding Directive 2002/58/EC.

You have the right to object to the processing of personal data concerning you for scientific or historical research purposes or for statistical purposes in accordance with Article 89 (1) GDPR for reasons arising from your particular situation, unless the processing is necessary for the performance of a task in the public interest.

If you wish to exercise your right of objection, a telephone message or an e-mail to the above-mentioned contact e-mail address is sufficient.


g. Right to appeal to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your place of residence, place of work or place of alleged infringement, if you consider that the processing of personal data concerning you is in breach of this Regulation.

The supervisory authority to which the complaint was lodged shall inform you, as a complainant, of the status and results of the complaint, including the possibility of a judicial remedy under Article 78 GDPR.


h. You can disconnect us from Integrated Services

You may revoke topicLab access to your account on any Integrated Service, such as Google or Apple, at any time by updating the appropriate settings in the account preferences of the respective Integrated Service. You should check your privacy settings on each Integrated Service to understand and change the information sent to us through each Integrated Service. Please review each Integrated Service's terms of use and privacy policies carefully before using their services and connecting to our Service.