Phone: 0170 / 98 54 171
We take data protection very seriously and try to accumulate only data we really need. We don’t use services like Google Analytics to collection surf statistitcs of our websites users. We don’t collect contract or payment data of our customers. We don’t create profiles of our users and we don’t collect usage statistics in our apps.
Legal basis for obtaining consent are Art. 6(1)(a) and Art. 7 GDPR
Legal basis for processing to perform contracts and to respond to queries is Art. 6(1)(b) GDPR
Legal basis for processing data for legal obligations are Art. 6(1)(c) GDPR
Legal basis for processing data for the purpose of our legitimate interests are Art. 6(1)(f) GDPR
Collaboration with third parties
Data is only transmitted to third parties for commissioned data processing under foundation of legal permission (Art. 6(1(b) GPRD)), personal consent, on basis of our legitimate interests (e.g. webhosting) or legal duties. Any assignment for commissioned data processing is based on Art. 28 GDPR.
Transmitting data to third party countries
Data processing and transmission is only executed if necessary for the performance of our tasks, with your consent, due to a legal obligation/duty or because of our legitimate interests. Requirements for processing and transmission of the data are Art. 44 ff. GDPR.
Rights of affected persons
Corresponding to Art. 15 GDPR you have the right about information regarding your processed data and a copy thereof.
Corresponding to Art. 16 GDPR you have the right of rectification or completion of your data.
Corresponding to Art. 17 GDPR you have the right of erasure of your data or to limit the processing.
Corresponding to Art. 20 GDPR you have the right to receive your personal data and to demand transmittion to third parties.
Corresponding to Art. 77 GDPR you have the right to lodge a complaint with a supervisory authority.
Corresponding to Art. 7(3) GDPR you have the right to widthdraw your consent also with effect for the future.
Corresponding to Art. 21 GDPR you have the right to object to the processing of your data for the future.
Corresponding to Art. 21 GDPR you have the right to object to the processing of the provided data.
Erasure of Data
Corresponding to Art. 17 and 18 GDPR we will delete or limit the processing of your data. This is carried out when the processing is not appropriate for the purpose it was collected anymore and no legal causes prevent it.
We use a webhosting provider to publish our online offering. It is possible that the provider collect statistical data like called web pages, date, time, sent data amount, Browser, Operating System, the previousely visited IP address. This happens due to its legitimate interests on foundation of Art. 6(1)(f) GDPR. Compulsory archiving applies.
When contacting us via email, phone or social media your provided data is processed based on Art. 6(1)(b GDPR) to answer and process your queries. The provided information is persisted in a Ticket System and are deleted when necessary.
Contract- und payment data
When purchasing our apps our customers enter into a contract with the respective Store operator (eg. Microsoft, Google, Apple). All contract and payment data is processed by this operator. We don’t have any access to personal data. In the Google Play Store we get an order identification number wich has no connection to payment information like credit card numbers.
CookDiary does not process personal data. All entered data is saved locally on the device and never transmitted without explicit permission.
CookDiary does not collect data automatically. The data has to be entered manually or by using the Mealmaster import functions. Data can be overwritten by restoring a CookDiary backup file.
The user decides which data is entered in CookDiary.
All data is saved for the duration of its usage. The user can delete the data at any time.
CookDiary for Desktop uses the Internet connection to check for app updates It does not transfer any personal data by doing so.
Usage of cloud providers
CookDiary can upload data to Microsoft OneDrive. The requires the user to authorize with her/his username and password, which are not stored or read by CookDiary. CookDiary only stores a so called access token which the cloud service provides and allows logins without entering username and password again for a specific time. This token is stored encrypted and deleted when the user logs out of the cloud service in CookDiary. The token is refreshed from time to time. If it should expire the user has to authorize again.
The synchronized data itself is only transferred via SSL.
Sending of emails
CookDiary can prepare mails on demand. These mails are not sent by CookDiary. CookDiary only tells the operating systems, that a mail should be sent and which contents it should contain. This starts the mail app which is configured for sending mails on the used device.
All information refers to the most current app version and is compiled to the best of our knowledge. Changes can be necessary due to improvements and changes of the app. We are not responsible for improper use of function (e.g. entering personal data in fields which are not designated for it).