Since 25th May 2018 all data processors have been under the obligation to follow the Regulation of the European Parliament and the Council (EU) 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter:{' '} „RODO”).
Due to the above, the administrator of this mobile app known as Kardiolog (hereinafter: “the App”), AllBright Technologies Spółka z ograniczoną odpowiedzialnością with the seat in Warsaw – KRS number 0000748442, Tax Number NIP 9512469259, Statistical Number REGON 381287816 (hereinafter: “AllBright Technologies”), in order to comply with the information obligation as defined in Article 13 and 14 of the GDPR hereby announces that the following Privacy Policy (hereinafter: “Privacy Policy”) shall govern the use of the App.
AllBright Technologies respects the User’s (hereinafter:{' '} “The User’s”) right to privacy, therefore in order to use the App it is not necessary to provide any personal data that identifies you or enables your identification as the User of the App.
However, we would like to note that with regard to using the App, AllBright Technologies obtains information to the extent necessary to guarantee continuous improvement of the App and the services offered therein (including the information related to the Users’ activity in the App). That’s why we would like to share some information about us, about what we do and about the nature, scope and purposes of processing the User’s data collected in the App.
The App does not save any data uploaded thereto (including health-related data) in any location other than your mobile device it is installed on. The App does not send this data to the cloud, nor does it transfer the data to the Data Controller’s servers or to any third parties. This means that it is only possible to access your data uploaded to the App on a specific mobile device from the level of this device. Your data will be deleted when the App is deleted from the mobile device or when your account is deleted from the App, and it will be impossible to recover the data otherwise than by reuploading it to the App by the User. The Data Controller shall not be liable for any loss of your data (including health-related data) which results from unauthorised access to your mobile device.
We use Google Analytics in order to generate and analyse statistics related to the use of the App, which means we can obtain general information such as demographic and geographical data as well as information about the Users’ activity in the App. The data collected in this respect is not linked to specific Users. The data is anonymized, which means it does not refer to individual Users, but to the total User population.
This data is processed only for the purpose of our legitimate interest, as defined in Article 6 para 1 (f) of the GDPR, which involves statistical measurements and improving the App by adjusting it to the needs and convenience of the User population.
The above scope of User data is provided to us by Google Inc. (1600 Amphitheatre Parkway Mountain View, CA 94043, USA, “Google”)– due to the fact that AllBright Technologies uses Google Analytics. Google does not use the collected data to identify individual Users and does not combine the information to enable User identification. We use IP anonymization (IP masking) services. In order to find out more about the scope and rules for collecting data in this service, please consult the Google privacy policy available at: https://www.google.com/intl/pl/policies/privacy/partners
The recipients of anonymized data related to the general User population may be entities that support our business activity, in particular providers of third-party systems. <u>As indicated above, the Data Controller does not collect or store personal data that enables the identification of specific Users. This data will not be disclosed to third parties.</u>
The anonymized data of the general User population shall be stored until the end of business operations of AllBright Technologies.
Since data protection measures are not applicable to anonymized data, i.e. information that does not pertain to an identified or identifiable natural person, or to personal data anonymized to prevent or disable the identification of data subjects, the Users of the App do not have the rights as defined in Articles 15- 21 of the GDPR.
However, if you believe that any of your rights related to personal data have been violated or there is any other infringement of the GDPR requirements on our part, you have a right to file a complaint directly with the President of the Office for Personal Data Protection. Before you do it, though, we would also like to encourage you to try and clarify any doubts with us.
You can contact the Data Controller (also in order to exercise your rights as a User) via e-mail info@kardiolog.app or by sending written correspondence to: ul. Krzysztofa Kieślowskiego 3D/2, 02-962 Warsaw, Poland.
The Privacy Policy is subject to reviews and updated from time to time, in order to reflect any changes in our ongoing business operations. You can always look up the date of the privacy notification to see when the last update was made.