PalmSpace

Discover Your Living Space!



Privacy Policy for the PalmSpace App


This privacy policy explains how we, PalmSpace, collect, use and protect the personal data of our users.

Protecting your privacy is an important concern for us.

Please take the time to read this policy carefully to understand what data is collected, how it is used, and what control options you have.

We are committed to handling your personal information in accordance with applicable data protection regulations.

 If you have any questions or need further information, please do not hesitate to contact us.


This policy informs you about:

I. General Information and Legal Basis
       1- Responsible Party
       2- Legal Basis for Processing
II. Downloading the App
III. Device Data, Hosting
IV. Contacting Us
V. Contractual Processing (Using the App's Functions), Additional Consent Purposes
VI. Registration
VII. Data Sharing with Third Parties
VIII. Rights of the Data Subject
IX. Retention Period of Personal Data
X. Security Information


I. General Information and Legal Basis

The following statement informs you about the type of personal data collected, the purpose for which it is collected and the extent to which this data is made available to third parties through this app and by us as the responsible party.

1- Responsible Party:

Ben Palmbeck
Havighorster Redder 39
22115 Hamburg
Germany
Email: info@palmspace.net
Phone: +4917645648907


2- Legal Basis for Processing

 
The processing of personal data requires a legal basis, which we would like to present to you below.

For processing personal data for which we obtain the consent of the data subject, Article 6 of the General Data Protection Regulation (GDPR) serves as the legal basis.

When processing personal data necessary for the performance of a contract to which the data subject is a party, Article 6(1)(b) GDPR serves as the legal basis. This also includes processing operations necessary for carrying out pre-contractual measures.

To the extent that processing personal data is necessary for compliance with a legal obligation to which our company is subject, Article 6(1)(c) GDPR serves as the legal basis.

If processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, and these interests are not overridden by the interests, fundamental rights and freedoms of the data subject, Article 6(1)(f) GDPR serves as the legal basis for processing. Our legitimate interest lies in conducting our business activities as well as in analyzing, optimizing and ensuring the security of our app offerings.


II. Downloading the App

When downloading the app, the necessary information is transferred to the respective app store (Apple Store, Amazon Appstore, or Google Play Store), including your username, email address and customer number of your account, time of download, payment information and the individual device identifier. We have no control over this data collection and are not responsible for it. We process the data only to the extent necessary for downloading the app to your mobile device. 

For more information, please refer to the privacy policies of the app store operators: For the iOS App Store: Apple Inc., 1 Infinite Loop, Cupertino, CA 95014, USA, available at https://www.apple.com/privacy/privacy-policy/ For the Google Play Store: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, available at https://www.google.de/intl/en/policies/privacy/


III. Device Data, Hosting

Data transmitted by your device to us is automatically stored for the purpose of analysis and security reasons within our legitimate interest.

● Date and time of access to our app 
● Data volume transferred and access status (file transferred, file not found, etc.) 
● IP address 
● Operating system used 
● Device type

These data cannot usually be assigned to specific individuals. A combination of these data with other data sources is not made. The data will be deleted after a statistical evaluation within 7 days. Data required for further storage for evidentiary purposes will be excluded from deletion until the incident is finally clarified.
Our servers are root servers located in Germany and France, meaning that no third party has access to your data. This contributes to an additional level of protection for your information.


IV. Contacting Us

Personal data you provide when making inquiries and contacting us are stored and used exclusively for the purpose of processing these inquiries within the scope of your consent or to initiate a contractual relationship. Data will not be passed on to third parties unless applicable data protection regulations justify a transfer or we are legally obliged to do so.


V. Contractual Processing (Using the App's Functions), Additional Consent Purposes

The personal data you provide for contractual purposes, such as inquiries and using app functions (e.g., name, address, or email address), will only be used internally to answer your inquiries, process your orders, or provide access to certain contractual information.
To use the location, video (microphone) and photo functions for the app, you can enable the app to access these features. Your consent to use these features will be requested by the app ("Allow the app to access location/camera/microphone/photos?"). If you have granted consent, you can withdraw it at any time through the general settings of your mobile device.
Each initiator has the option to provide a pseudo-location (within a 10 km radius) instead of their real location for privacy reasons when publishing activities. This pseudo-location is stored as the actual location in the system, and the real location is deleted. The range of activities is not significantly affected by this small difference.
Push notifications, which may include promotional messages, can be sent to you. Your consent to receive push notifications is given when you affirm the app's prompt ("Allow the app to send notifications?"). This consent can be configured or revoked through your mobile device's general settings.
Further promotional messages (newsletters) or phone calls will only occur if you have explicitly consented to them.


VI. Registration

Our app offers a login option. The personal data entered during login is transmitted to the responsible party and stored for internal use. The date and time of login are stored to prevent misuse of services. Data is not shared with third parties, except for this purpose or if there is a legal obligation to do so.
Registration is required to provide content or services. Registered individuals can have their stored data deleted or modified at any time unless there is a legal exception.


VII. Data Sharing with Third Parties

The personal data you provide will only be used internally to provide app functions. Data will only be shared with third parties if necessary for the app's functionality, if we are legally obliged to do so, or if you have given your consent.


VIII. Rights of the Data Subject

You have the right to access the personal data we store about you. According to legal provisions, you also have the right to correct inaccurate data, restrict processing, data portability, and delete your personal data. Send an email to us with the subject "Data Protection."

You also have the right to lodge a complaint with a data protection supervisory authority if you believe that processing your personal data violates legal provisions.

For reasons arising from your particular situation, you can object to the processing of your personal data based on Art. 6(1)(e) or (f) GDPR at any time; this also applies to profiling based on these provisions (Art. 21 GDPR). If the legal requirements are met, we will no longer process your personal data.

In the case of direct marketing, you have the right to object at any time to the processing of your personal data for such marketing; this also applies to profiling related to direct marketing.

Your objection will result in your personal data no longer being processed for these purposes.

If you have given consent, you have the right to withdraw it at any time. The legality of the processing based on consent until the withdrawal remains unaffected.


IX. Retention Period of Personal Data

We store personal data for the duration of the respective legal retention period or as long as the purpose for collection exists. After the retention period expires, the data will be routinely deleted unless there is a necessity for initiating or fulfilling a contract. If user data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted as much as possible. The data will be blocked and not processed for other purposes. This applies, for example, to user data that must be retained for commercial or tax reasons.


X. Security Information

We strive to process your personal data by taking all technical and organizational measures to ensure compliance with data protection laws and to protect this data:

1) SSL Encryption

Your data transmissions are encrypted using SSL (Secure Socket Layer) to ensure your information is securely transmitted.

2) Database Encryption

Information stored in our database is encrypted to provide an additional layer of protection.

3) Regular Backups

We perform daily backups to ensure that data can be restored in case of data loss or unforeseen events.