Privacy Policy FB Athletic APP

This application collects personal data from its users.

This document can be printed for record-keeping purposes using the "Print" command in the browser.

Provider and responsible party

Felix Benderoth
Klotzstraße 11
24118 Kiel

Provider's email address: info@fbathletic.de

Types of data collected

The personal data processed by this application, either independently or through third parties, includes: first name; last name; email address.

Full details regarding each type of personal data processed are provided in the relevant sections of this privacy policy or, where applicable, through explanatory texts displayed prior to data collection.
Personal data may be provided voluntarily by the user or, in the case of usage data, collected automatically when this application is used.
Unless otherwise stated, providing all data requested by this application is mandatory. If the user refuses to provide the data, this application may be unable to provide its services. In cases where this application explicitly states that providing personal data is voluntary, users may choose not to provide this data without any consequences for the availability or functionality of the service.
Users who are unsure which personal data is mandatory can contact the provider.
Any use of cookies – or other tracking tools – by this application or by third-party service providers used by this application serves the purpose of providing the service requested by the user, and any other purposes described in this document and in the Cookie Policy.

Users are responsible for all personal data of third parties that is obtained, published or shared through this application.

Type and location of data processing

Processing methods

The provider processes users' personal data in a proper manner and takes appropriate security measures to prevent unauthorized access, disclosure, alteration or destruction of data.
Data processing is carried out using computers or IT-based systems according to organizational procedures and methods specifically designed for the stated purposes. In addition to the data controller, other individuals, either internal (human resources, sales, marketing, legal department, system administrators) or external – and in that case, where necessary, designated by the data controller as data processors (such as technical service providers, delivery companies, hosting providers, IT companies, or communications agencies) – may operate this application and thus have access to the data. A current list of these parties can be requested from the provider at any time.

Location

The data will be processed at the provider's branch and at all other locations where the entities involved in data processing are located.

Depending on the user's location, data transfers may involve transferring the user's data to a country other than their own. To learn more about where the transferred data is processed, users can consult the section with detailed information on the processing of personal data.

Storage duration

Unless otherwise specified in this document, personal data will be processed and stored for as long as necessary for the purpose for which it was collected, and may be retained for longer periods if required to comply with a legal obligation or based on the user's consent.

Purposes of processing

Personal data about the user is collected so that the provider can deliver the service and also comply with its legal obligations, respond to enforcement requests, protect its rights and interests (or those of users or third parties), and detect malicious or fraudulent activity. In addition, data is collected for the following purposes: platform services and hosting, hosting and backend infrastructure, productivity management, and user database management.

Users can find further detailed information on these processing purposes and the personal data used for each purpose in the section “Detailed information on the processing of personal data” of this document.

Detailed information on the processing of personal data

Personal data is collected for the following purposes using the following services:

Hosting and backend infrastructure

These types of services are designed to host data and files so that this application can be managed and used. Furthermore, these services can provide a pre-built infrastructure that handles specific functions or entire components for this application.

Some of the services listed below may, but do not necessarily, operate via geographically distributed servers, making it difficult to determine the actual location where personal data is stored.

Amazon Web Services (AWS) (Amazon Web Services, Inc.)

Amazon Web Services (AWS) is a web hosting and backend service provided by Amazon Web Services, Inc.

Personal data processed: various types of data, as described in the service's privacy policy.

Place of processing: Germany – Privacy policy .

Supabase, Inc.

Our app uses the data hosting service “Supabase” from Supabase, Inc., 970 Toa Payoh North #07-04, Singapore 318992.

For more information on how user data is handled, please see Supabase's privacy policy: https://supabase.com/docs/company/privacy

TrafficPlex GmbH

Consul-Smidt-Str. 90
28217 Bremen,
Germany

Platform services and hosting

These services are designed to host and operate key components of the application, enabling it to be offered from a unified platform. Such platforms provide the provider with a range of tools—such as analytics and commenting features, user and database management, e-commerce, and payment processing—which involve the processing of personal data.
Some of these services use geographically distributed servers, making it difficult to determine the location where personal data is stored.

Ionos (IONOS Group SE)

Ionos is a platform provided by IONOS Group SE that allows the owner to build, host, and operate this application.

Personal data processed: Email address; Last name; First name.

Place of processing: Germany – Privacy policy .

User database management

These types of services allow the provider to create user profiles by initially using the email address, name, or other information that the user has submitted to the application, as well as by tracking user activity through analytics functionalities. This personal data can also be matched with publicly available information about the user (such as social media profiles) and used to build a personal profile that the provider can display and use to improve the application.
Some of these services may also provide for sending time-coordinated messages to the user, such as emails, which this application links to specific actions.

ACT Coding GbR

ACT Coding GbR is our development partner for the app and can therefore view, modify, organize, and delete user data.
A data processing agreement has already been concluded.
For more information, please contact act coding GbR, Wacholderbogen 4, 24963 Tarp

Management of productivity processes

These services assist the provider in managing tasks, collaboration, and general productivity. When using such services, user data is processed and, depending on the processing purpose, may be stored.
These services may be integrated with other third-party services listed in this privacy policy to enable the import and export of the necessary data.

Lightward Inc

We use the Shopify extension "Mechanic" from Lightward Inc. to automate some Shopify tasks, especially creating and sending emails and access data to customers.
You can find more information here: https://mechanic.dev/
You can find information on how your data is handled here:
https://learn.mechanic.dev/platform/policies/data

Cookie Policy

This application uses trackers. Further information can be found in the cookie policy .

Further information for users

Legal basis for processing

The provider may only process personal data of users if one of the following applies:

Users have given their consent for one or more specific purposes.
The data collection is necessary for the performance of a contract with the user and/or for pre-contractual measures arising therefrom;
The processing is necessary for compliance with a legal obligation to which the provider is subject;
The processing is related to a task carried out in the public interest or in the exercise of official authority vested in the provider;
The processing is necessary to protect the legitimate interests of the provider or a third party.

In any case, the provider will gladly provide information about the specific legal basis on which the processing is based, in particular whether the provision of personal data is a legal or contractual obligation or a condition for entering into a contract.

Further information on storage duration

Therefore:

Personal data collected for the purpose of fulfilling a contract concluded between the provider and the user will be stored until the complete fulfillment of this contract.
Personal data collected to protect the legitimate interests of the provider will be stored for as long as necessary to fulfill these purposes. Users can obtain more detailed information about the provider's legitimate interests in the relevant sections of this document or by contacting the provider.

Furthermore, the provider is permitted to store personal data for a longer period if the user has consented to such processing, as long as the consent is not withdrawn. In addition, the provider may be obligated to retain personal data for a longer period if this is necessary to comply with a legal obligation or by order of a public authority.

Personal data is deleted after the retention period has expired. Therefore, the right to information, the right to erasure, the right to rectification, and the right to data portability cannot be exercised after the retention period has expired.

Users' rights under the General Data Protection Regulation (GDPR)

Users can exercise certain rights regarding their data processed by the provider.

Users have the right, to the extent permitted by law, in particular to do the following:

You can withdraw your consent at any time. If the user has previously consented to the processing of personal data, they can withdraw their consent at any time.
You have the right to object to the processing of your data. You have the right to object to the processing of your data if the processing is based on a legal basis other than consent.
Users have the right to obtain information regarding their data. They have the right to know whether their data is being processed by the provider, to receive information about specific aspects of the processing, and to obtain a copy of their data.
Check and correct your data. The user has the right to verify the accuracy of their data and to request that it be updated or corrected.
Users have the right to restrict the processing of their data. In this case, the provider will process the data for no other purpose than storage.
Users have the right to request the deletion or other removal of their personal data. They have the right to request that the provider delete their data.
You have the right to receive your data and have it transferred to another controller. The user has the right to receive their data in a structured, commonly used and machine-readable format and, where technically feasible, to have it transmitted without hindrance to another controller.
File a complaint. Users have the right to file a complaint with the relevant supervisory authority.

Users also have the right to be informed about the legal basis for the transfer of data abroad or to an international organization that is subject to international law or was established by two or more countries, such as the UN, as well as about the security measures taken by the provider to protect their data.

Details regarding the right to object to processing

If personal data is processed in the public interest, in the exercise of official authority vested in the provider, or for the purposes of the provider's legitimate interests, the user may object to such processing by providing a justification relating to his or her particular situation.

Users are informed that they can object to the processing of their personal data for direct marketing purposes at any time, free of charge and without giving reasons. If a user objects to processing for direct marketing purposes, their personal data will no longer be processed for these purposes. Users can find information about whether the provider processes personal data for direct marketing purposes in the relevant sections of this document.

How the rights can be exercised

All requests to exercise user rights can be addressed to the owner using the contact details provided in this document. These requests can be made free of charge and will be answered by the provider as soon as possible, and at the latest within one month, providing users with the legally required information. The provider will communicate any rectification or erasure of personal data or restriction of processing to all recipients to whom personal data have been disclosed, if any, unless this proves impossible or involves disproportionate effort. The provider will inform the user about these recipients upon request.

Further information on the collection and processing of data

Legal measures

The user's personal data may be processed by the provider for the purposes of enforcing legal rights within or in preparation for legal proceedings arising from the improper use of this application or the associated services.
The user declares that they are aware that the provider could be compelled by the authorities to disclose personal data.

Further information about the user's personal data

In addition to the information contained in this privacy policy, this application may, upon request, provide the user with further contextual information relating to specific services or to the collection and processing of personal data.

System logs and maintenance

This application and third-party services may collect files that record interactions taking place through this application (system logs) for operational and maintenance purposes, or use other personal data (e.g., IP address) for this purpose.

Information not contained in this privacy policy

Further information about the collection or processing of personal data can be requested from the provider at any time using the contact details provided.

Changes to this privacy policy

The provider reserves the right to amend this privacy policy at any time by informing users on this page and, where applicable, via this application and/or – to the extent technically and legally feasible – by sending a notification to the contact details the provider holds on file for the users. Users are therefore advised to check this page regularly and, in particular, to note the date of the last modification indicated at the bottom of the page.

Insofar as changes affect data usage based on the user's consent, the provider will obtain new consent where necessary.

Definitions and legal notices

Personal data (or data)

All information that directly or in conjunction with other information identifies or can identify a natural person.

Usage data

Information that this application (or third-party services that this application uses) automatically collects, such as: the IP addresses or domain names of the computers of users using this application, the URI (Uniform Resource Identifier) addresses, the time of the request, the method used to submit the request to the server, the size of the response file received, the numerical code indicating the status of the server response (successful result, error, etc.), the country of origin, the features of the browser and operating system used by the user, the various time details per request (e.g., how much time was spent on each page of the application), and details of the path followed within an application, in particular the sequence of pages visited, as well as other information about the operating system of the device and/or the IT environment of the user.

users

The person using this application, who, unless otherwise specified, is the same as the data subject.

Affected

The natural person to whom the personal data relates.

Data processor (or data processor)

Natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller, as described in this privacy policy.

Responsible party (or provider, sometimes also owner)

The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data and the means used for this purpose, including the security measures relating to the operation and use of this application. Unless otherwise specified, the controller is the natural or legal person through whom this application is offered.

This application

The hardware or software tool used to collect and process the user's personal data.

service

The service offered through this application is as described in the relevant terms and conditions (if any) and on this website/application.

European Union (or EU)

Unless otherwise stated, all references to the European Union in this document refer to all current Member States of the European Union and the European Economic Area (EEA).

Legal notice

This privacy policy applies exclusively to this application, unless otherwise stated in this document.