The website www.cryptoadvisor.info (“Website”) and the app “Crypto Tree” (together with the website hereinafter referred to as “App”) is operated by Crypto Tree GmbH, Sexauerstraße 5, 81827 Munich, Germany, firstname.lastname@example.org (“Crypto Tree”, “we” or “us”). Further details can be found in our imprint.
With this information on data protection, we would like to inform you how we process personal data when you open and use our App and when we provide our services, and what rights you have in this regard.
1 Data Processing
1.1 Opening and using our App
Each time you open and continue to use our App, information is automatically transmitted to us, depending on the specific use of the App and the specific device with which you access the App. This includes the IP address of your device, location of your device (if you have allowed this in the settings of your end device), date and time of access, name and address (URL) of the requested data, content of search queries, name and content of accessed entries, content of comments, ratings and messages, transferred data volume, notification whether the query was successful, information about the browser used and the operating system and name of your internet provider. We also store information about discount tokens that you have used or may still use. For this we use a private blockchain.
The processing of the data is necessary for the provision of our services via the App (Art. 6 (1) lit. b) of the Data Protection Basic Regulation (DSGVO)).
In addition, the data is evaluated in anonymous and aggregated form (i.e. conclusions about individual users are not possible) and used for statistical purposes, in the interest of system security, the technical administration of the network infrastructure and to optimize our App. These are all our legitimate interests (Art. 6 (1) lit. f) DSGVO)
1.2 Processing of personal data
We process personal data in accordance with Section 1.1 for the purpose of concluding contracts and fulfilling contractual obligations (based on Art. 6 (1) lit. b) DSGVO).
As far as we process personal data for accounting, calculation of costs and the fulfilment of legal obligations (e.g. from commercial or tax law), we rely on Art. 6 para. 1 lit. c) DSGVO.
On the legal basis of Art. 6 (1) lit. f) DSGVO, we collect information, among other things, through participation in conferences and events, personal recommendations for the use of our services and through selected external business partners.
Based on your consent (and thus Art. 6 (1) lit. a) DSGVO) we use data to provide you with information about products, services, events and other information worth knowing about our company. You can revoke your consent at any time with effect for the future under the contact data given at the beginning.
1.3 Cookies, tracking pixels and similar technologies
Cookies are small text files, tracking pixels are small graphic files that are stored on your computer (collectively referred to hereinafter as “Cookies”). Cookies enable us to identify you as a specific customer and to store both your personal preferences when using our Website and technical information. The main advantage for you is that you do not have to enter the information contained in the Cookies every time you visit our Website. Cookies do not necessarily contain or pass on personal data. If, however, you enter personal data on our Website, this may be linked to the data stored in the Cookies.
In order to determine whether you have consented to the processing of data in connection with Cookies as it was required, we use a Cookie due to our legitimate interest, which informs us exactly what type of processing you have consented to or have not consented to.
You can disable or block the storage of Cookies in your browser generally or only for our Website. You can find out how to do this in the help function of your browser. However, this may lead to restrictions in the user-friendliness of our Website.
1.4 Updates and Newsletter
When you register for our updates (free newsletter for the app), the data requested by you for this purpose, i.e. your e-mail address, will be transmitted to us. The indication of your name and the indication about the holding of crypto currencies takes place voluntarily. At the same time, we store the IP address of the Internet connection from which you access our website as well as the date and time of your registration. As part of the subsequent registration process, we will obtain your consent to the sending of updates. By activating the confirmation link there, you give us your consent to the use of your personal data in accordance with Art. 6 para. 1 lit. a DSGVO. We use the collected data exclusively for the dispatch of updates to the app. We use the Google Forms form (see 6.6) for sending updates regarding testing within the beta phase of the App. You may revoke your consent to the dispatch of updates and newsletters at any time with effect for the future in accordance with Art. 7 para. 3 DSGVO. To do so, you simply need to inform us of your revocation or click on the unsubscribe link contained in each newsletter.
1.5 Social media websites
We operate the following social media websites:
The operators of the social media platforms are also involved in the operation of this App. You are also responsible within the meaning of data protection law. We have hardly any influence on the data processing by the platform operators and are dependent on the information of the respective providers. Wherever we can exert influence and participate in the determination of data processing, we ensure that the operator of the social media platform treats the data appropriately within the scope of the possibilities available to us under data protection law.
Data processing by us
The data you enter on our social media pages, such as comments, videos, images, preferences, public messages, etc. are published by the social media platform. We reserve the right to comment on or delete content if necessary. In some cases, we share your content on our App and communicate with you via the social media platform. We use the social media platforms for advertising purposes. The statistics made available to us by the provider of the social media platform can only be influenced to a limited extent by us and cannot be switched off by us. The legal basis is our legitimate interest in carrying out the aforementioned procedures (Art. 6 (1) f) DSGVO).
If you wish to object to certain data processing on which we have influence, please contact us at the address given at the beginning.
Data processing by the operators of social media platforms
Social media platform operators use web tracking methods. Web tracking can also be performed regardless of whether you are logged in or registered with the social media platform. As already mentioned, unfortunately we can hardly influence the webtracking methods of the social media platform and cannot switch it off, for example. It cannot be excluded that the provider of the social media platform may use data, for example to evaluate habits, personal relationships, preferences, etc. In this area we have no influence on the processing of data by the platform operator.
Further information on data processing by the provider of the social media platform and further possibilities for objection can be found in the respective data protection declaration of the providers:
1.6 Push messages
We use Firebase Cloud Messaging (see Section 1.7.1) to send you push messages or in-app messages (messages that are only displayed within the App), for example, to discount promotions for crypto acceptance points near you. The mobile device is assigned a pseudonymized push reference that serves as the target for the push messages or in-app messages. When you install our App, you can agree that we may send you push messages for marketing purposes. The push messages can be deactivated and reactivated at any time in the settings of the mobile device. The processing of personal data serves the purpose of sending push messages and is based on your consent (Art. 6 (1) lit. a DSGVO). You can revoke your consent at any time with effect for the future in the App or via the contact data given at the beginning.
1.7 Disclosure of data to third parties
Specific to Google: The information collected by Google is transmitted to Google, which is headquartered in the USA. Google is self-certified under the privacy shield to ensure adequate protection of your personal information under EU law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI). Further information on data protection at Google can be found at https://policies.google.com/privacy?hl=de.
You can change the settings at https://adssettings.google.com/anonymous or from the NAI (Network Advertising Initiative) deactivation page at http://www.networkadvertising.org Alternatively, you can disable Google cookies via the Digital Advertising Alliance website using the following link http://optout.aboutads.info/?c=2#!/. Finally, you can prevent the storage of Cookies via the general settings of your browser.
1.7.1 Google Firebase
We use Google Firebase, an app development platform from Google LLC. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, “Google”), as base for our App. Google Firebase is a platform that links various other Google Firebase services (see Sections 1.7.2 to 1.7.6 below) to provide comprehensive app management. The data from the individual Google Firebase services are also merged and exchanged between the various Google Firebase services. You can find further information on data protection at Google Firebase here: https://firebase.google.com/terms/data-processing-terms.
You can prevent the collection and transmission of data to Google by downloading and installing the plug-in available at the following link: tools.google.com/dlpage/gaoptout.
1.7.2 Google Analytics
We use Google Analytics for Firebase and Universal Analytics (collectively “Google Analytics”), Google’s Web Analytics Services. Google Analytics enables the creation of statistics about the use of apps and their sources. The storage period of the Cookie is 2 months. We use Google Analytics exclusively for statistical purposes, e.g. to track how many users clicked on a particular element or information. Google Analytics is based on Cookies and records information about your use of our App, including your IP address. To prevent users from being identified by their IP addresses, we use a special code to ensure that your IP address is only collected in a truncated and therefore anonymous form. It is no longer possible to identify individual users with this shortened IP address. You can find further information on data protection at Google Analytics here: https://support.google.com/analytics/answer/2700409?hl=enef_topic=2611283.
1.7.3 Google Big Query / Google Data Studio
We use Google’s Big Query for Firebase (“Big Query”) to analyze detailed information about serious and minor crashes and stack traces, predictions, cloud messaging, and/or performance monitoring. For this purpose, data from Google Analytics (see “Google Analytics” (3.2) above) is imported into BigQuery. We use Google Data Studio (“Data Studio”) from Google to visualize and report on BigQuery and Google Analytics data.
1.7.4 Google AdSense
We use Google AdSense from Google to serve personalized ads to our users. A Cookie is set as soon as you call up our App. The information obtained through the Cookie is used to personalize the ads shown to a user in the App.
1.7.5 Google Maps
We use Google’s maps to display maps in our App so that we can provide you with all the features of the App, in particular to display crypto acceptance points. Google sets a Cookie and collects your IP address and other data. We and Google have concluded an agreement on joint responsibility pursuant to Art. 26 DSGVO, which can be downloaded here: https://privacy.google.com/intl/de/businesses/mapscontrollerterms/. More information about Google Maps and the data processed by Google can be found here: https://www.google.com/intl/de_de/help/terms_maps/.
1.7.6 Google Drive and Forms
We use Google Drive and Google Forms from Google to sign up and evaluate participation in the Crypto Advisor App Test Beta phase. The data collected using a Google Forms form is stored in a cloud storage facility provided by Google for us, “Google Drive”. Further information about data processing in connection with Google Forms and Google Drive can be found in Google’s data protection information: https://www.google.com/intl/de/policies/privacy/ The user can correct the information in the form at any time.
We use ActiveCampaign, LLC, 1 N Dearborn St., 5th FloorChicago, Illinois 60602, USA for our email marketing. ActiveCampaign is self-certified under the Privacy Shield to ensure adequate protection of your personal information under EU law, https://www.privacyshield.gov/participant?id=a2zt0000000GnH6AAK.
We also use other companies to process personal data on our behalf in accordance with instructions, in particular to develop software, maintain our systems and provide our services.
1.8 Retention period of the data
Personal data is stored for as long as necessary for the above-mentioned purposes. The data shall be deleted at the latest after termination of the contractual relationship and after expiry of the statutory retention periods of civil, commercial and tax law.
Data that is collected in accordance with Section 1.1 when using our App and that can legally be considered personal data (e.g. the complete IP address) is stored for a period of 7 days, unless an unusual incident requires a longer storage period (e.g. after a hacker attack).
If we process data on the basis of legitimate interests (Art. 6 (1) lit. f) DSGVO), these will be stored until you object to the processing or until your legitimate interests prevail.
2 Your rights
2.1 General rights
You can request information regarding the personal data we have stored about you or processed in any other way in connection with the use of our App. In addition, you have the right to receive the data provided by you in a common and machine-readable format and to transfer this data to another provider, provided that the processing is based on consent (Art. 6 (1) lit. a) DSGVO) or on a contract (Art. 6 (1) lit. b) DSGVO) and is carried out using automated procedures. In addition, in justified cases you can demand the deletion, correction or restriction of the processing of your data.
If your personal data is transferred to a country outside the EU that does not provide adequate protection, you may request a copy of the contract that provides for adequate protection of personal data. They also have the general right to complain to a supervisory authority about data processing.
2.2 Revocation and objection
In those cases in which the processing of personal data is based on consent (Art. 6 (1) lit. a) DSGVO), you may revoke your consent at any time with effect for the future.
If we process personal data on the basis of legitimate interests (Art. 6 (1) f) DSGVO), you may object to the processing at any time for reasons arising from your particular situation. In this case, we will no longer use your data unless our interests prevail. You can object to the use of your data for direct marketing purposes at any time and without further consideration.
2.3 Contact details
In order to make use of the aforementioned rights, please contact us directly in writing or by e-mail under the contact details given at the beginning.