3) Personal Data
4) Legal Basis for Data Processing
6) Storage of Data
7) Your Data Protection Rights
8) Contact Details for Data Protection Inquiries
The Controller for the General Data Protection Regulation (“GDPR”) is:
3. Personal Data
3.1 Personal data is any information that relates to an identified or identifiable natural person (the “Affected Person”). Examples include name, user name, academic degree, address (including billing address and shipping address), e-mail address, telephone number (including private and mobile phone number), credit and debit card number, profile picture, date of birth, birthplace, nationality, passport number, signature. There are also special categories of personal data (so called “Sensitive Data”). Under the GDPR such Sensitive Data pertains to e.g. health data.
3.2 We collect and process following usage-related data for the purpose of quality control and improvement of our technology:
• Result of the scan
• Image of the scanned image
• Time of the scan
• Type of the mobile phone used
• Version of the operating system
• Version of the App
• Version of the SDK
• An anonymous number which is unique for every App installation
• Camera features/characteristics
• IP address of the mobile phone used
• Place (city and country) in which the user is during the use
4. Legal Basis for Data Processing
4.1 Legitimate Interest – Art 6 Para. 1 (f) GDPR
We collect and process all data listed under 3.2 for the purpose of quality assurance and quality improvement of our software based on our legitimate interest.
4.2 Legal Obligations – Art 6 para. 1 (c) GDPR
If we are subject to a legal obligation on the basis of which the processing of personal data is necessary, then Art. 6 (1) (c) GDPR serves as the legal basis.
5.1 Due to today’s complexity of certain data processing processes, it has become essential for us to provide certain services with the assistance of third parties. For this we use external service providers (e.g. for webhosting and our IT systems) where your data is provided for this purpose.
5.2 For the hosting service we use a Google Inc. server. The server is located in Frankfurt, Germany. In addition, for training purposes, we use servers from IBM which are located in London, Unitted Kingdom.
5.3 If applicable, the potential recipient of your personal data may be located outside the European Union or processes your personal data there. The level of data protection in other countries may not be the same as that of Austria. However, we only transmit your personal data to countries for which the EU Commission has decided that they have an adequate level of data protection or we take measures to ensure that all recipients have an adequate level of data protection.
5.4 Under certain circumstances, we may be required by law to disclose your information, for example to regulators and law enforcement agencies. However, we will only do so to the extent necessary to prevent and / or detect fraud and other crimes or to ensure network and data security.
6. Storage of Data
7. Your Data Protection Rights
7.1 As the Affected Person, you have the right at any time to obtain information about your stored personal data, its origin and the recipient as well as the purpose of the data processing. You also have the right to correct and transmit your data and, if necessary, to object to, restrict the processing of or deleting of processed data.
7.3 If you believe that the processing of your personal data by Anyline GmbH violates the applicable data protection law or your data protection claims have been violated in another way, you may file a complaint with the competent supervisory authority. In Austria, the Data Protection Authority is responsible.
8. Contact Details of the Data Protection Officer
Should you have any questions regarding the processing of your data or wish to exercise your (information) rights, please contact:
E-Mail: [email protected]