Data Protection Statement
Your privacy is important to us. We take the protection of your personal data and their confidential
treatment very seriously. Your data will be processed exclusively within the legal framework of the data
protection provisions of the European Union, particularly the General Data Protection Regulation
(hereinafter: “GDPR”). This data protection statement provides you with information about the processing of
your personal data and your data protection rights when using our website.
1. Data Processor and Data Protection Officer
The Data Processor as defined in data protection legislation is
ckDOO GmbH
Grünewaldstr. 6
D-40474 Düsseldorf
eMail:dataprotect@ckdoo.com
If you have any questions or suggestions about data protection, please feel free to contact us.
ckDOO GmbH
Grünewaldstr. 6
D-40474 Düsseldorf
eMail:dataprotect@ckdoo.com
If you have any questions or suggestions about data protection, please feel free to contact us.
2. Object of data protection
The object of data protection is personal data. Personal data means any information relating
to an identified or identifiable natural person (a so-called data subject). This includes,
for example, details such as the name, postal address, email address and phone number,
though other details are also necessarily created while using our website, such as the
beginning, end and extent of use.
3. Type, scope, purposes and legal basis for data processing
Below you will find an overview of the type, scope, purposes and legal basis of data
processing on our website.
3.1 Provision of our website
When you access our website on your device, we process the following data:
• Date and time of access
• Duration of visit
• Your operating system
• Volume of data sent
• Type of access
• IP address
• Domain name
We process this data on the basis of GDPR Article 6 (1) point f, as they are
required for us to provide the service, to ensure technical operation and to
investigate and remove malfunctions. It is in our interest to ensure the use and
technical operability of our website. This data is automatically processed when our
website is accessed. Unless they are provided, you cannot use our services. We
usually erase these data after seven days unless, under exceptional circumstances,
we need them for a longer period for the above-mentioned purposes. In such a case we
erase the data as soon as they are no longer required for the relevant purpose.
3.2 Contact form
You have the option of contacting us through a form. If you use the “Contact form”, we need the following
mandatory details (marked as such): name, email address, message. The data serves the purpose of meeting
your request for contact. We process this data on the basis of GDPR Article 6 (1) point f. The purpose of
processing your data is solely to deal with your contact request. As soon as your contact request has been
concluded, we will erase the data we have collected via the contact form. Any personal data that were
additionally collected during the sending process are erased if they are no longer required for the purposes
for which they were collected or otherwise processed.
3.3 Links to third-party websites
If websites and services by other site owners are linked to this website, they have been and will continue
to be designed and supplied by third parties. We have no influence on the design, content or function of
third-party services, and we expressly distance ourselves from any content provided by linked third-party
sites. Please remember that third-party sites linked to this website may have their own cookies which are
installed on your device to collect personal data. We have no influence over this. In such cases you may
wish to obtain more information directly from the owners of the third-party websites linked to this site.
3.4 TLS encryption with https
TLS, encryption and https sound very technical and they are. We use HTTPS (Hypertext Transfer Protocol Secure stands for "secure hypertext transfer protocol") to transfer data over the internet in a tap-proof way.
This means that the complete transmission of all data from your browser to our web server is secured - no one can "listen in".
Thus, we have implemented an additional layer of security and fulfill data protection by design of technology Article 25(1) DSGVO). By using TLS (Transport Layer Security), an encryption protocol for secure data transmission on the Internet, we can ensure the protection of confidential data.
You can recognize the use of this protection of data transmission by the small lock symbol at the top left of the browser to the left of the Internet address (e.g., beispielseite.de) and the use of the scheme https (instead of http) as part of our Internet address.
If you want to know more about encryption, we recommend the Google search for "Hypertext Transfer Protocol Secure wiki" to get good links to further information.
3.5 IONOS WebAnalytics Privacy Policy
We use the analysis tool IONOS WebAnalytics of the German company 1&1 IONOS SE, Elgendorfer Straße 57, 56410 Montabaur, Germany on our website. The tool helps us analyze our website and data is also collected and stored for this purpose. However, this tool does not collect data that could identify you as a person. Nevertheless, we would like to inform you in more detail about data processing and storage in this privacy policy and also explain why we use IONOS WebAnalytics.
3.5.1 What is IONOS WebAnalytics?
IONOS WebAnalytics is, as the name suggests, a tool that serves to analyze our website. The software program collects data such as how long you stay on our website, which buttons you click or from which other websites you have found us. This gives us a good overview of user behavior on our website. All this information is anonymous. This means that we do not identify you as a person through this data, but only receive general usage information and statistics.
3.5.2 Why do we use IONOS WebAnalytics on our website?
Our goal is to provide you with the best possible experience on our website. We are convinced of our offers and want our website to be a helpful and useful place for you. To do this, we need to customize our website as much as possible to meet your needs and concerns. With a web analytics tool like IONOS WebAnalytics and the resulting data we can improve our website to that end. The data can also help us to design advertising and marketing measures more individually. With all these web analyses, however, we are still concerned about the protection of personal data. Unlike other analysis tools, IONOS WebAnalytics does not store and process any data that could identify you as a person.
3.5.3 What data is stored by IONOS WebAnalytics?
The data is collected and stored by log files or by a so-called pixel. A pixel is a snippet of JavaScript code that loads a collection of functions that can be used to track user behavior. WebAnalytics deliberately avoids the use of cookies.
IONOS does not store any personal data about you. When you submit a page request, your IP address is transmitted, but then immediately anonymized and processed in such a way that you cannot be identified as a person.
The following data is stored by IONOS WebAnalytics:
- Your browser type and browser version
- which website you have visited before (referrer)
- which specific website you have visited
- which operating system you are using
- which end device you are using (PC, tablet or smartphone)
- when you came to our site
- your IP address in anonymized form
The data is not passed on to any third-party providers and is only used for statistical analysis.
- Your browser type and browser version
- which website you have visited before (referrer)
- which specific website you have visited
- which operating system you are using
- which end device you are using (PC, tablet or smartphone)
- when you came to our site
- your IP address in anonymized form
The data is not passed on to any third-party providers and is only used for statistical analysis.
3.5.4 How long and where is the data stored?
The data will be stored until the contract between IONOS WebAnalytics and us expires. The data is stored in our log directory in case of a regular web hosting plan and graphical statistics are generated from it. These logs are deleted every 8 weeks.
3.5.5 How can I delete my data or prevent data storage?
In principle, you have the right to information, correction or deletion and restriction of the processing of your personal data at any time. You can also revoke your consent to the processing of data at any time. However, since no personal data is stored or processed via IONOS WebAnalytics and therefore an assignment of you as a person is not possible, the possibility to delete such data does not exist.
We hope we have been able to provide you with the most important information about the truly economical data processing of IONOS WebAnalytics. If you want to learn more about the tracking service, we recommend that you read the company's privacy policy at https://www.ionos.de/hilfe/datenschutz/datenverarbeitung-von-webseitenbesuchern-ihres-11-ionos-produktes/webanalytics/?tid=311263871.
3.6 Cookies
We use so-called cookies to provide you with extensive functions, to make our website more user-friendly and
to optimise our website. Cookies are small files which are saved to your device via your web browser.
3.6.1 Categories of cookies
We use cookies for a variety of purposes and with different functions. Moreover, we make distinctions
between cookies, depending on whether they are mandatory from a technical perspective (i.e. a technical
requirement), how long they are stored and used (known as the retention period) and whether they have been
set by our website itself or by a third party and, if so, by whom (i.e. by which cookie provider).
Technically mandatory cookies: We use certain cookies because they are mandatory requirements to ensure that our website and its functions can work in a legally compliant manner. Such cookies are automatically set when the website or a specific function is accessed, unless you have prevented the setting of cookies through your browser settings. Any data collected through the use of such cookies are processed by us on the basis of GDPR Article 6 (1) point f.
Technically non-mandatory cookies: On the other hand, non-mandatory cookies are set to improve, for instance, the convenience and performance of our website or to save certain settings you have made. We also use technically non-mandatory cookies to obtain information on the frequency with which certain parts of our website are used, so that we can tailor them more closely to your needs in the future. We do not store technically non-mandatory cookies until you click the relevant box, confirming that you have read our cookie note, and continue to use our website. Any data collected through the use of such cookies is processed by us on the basis of GDPR Article 6 (1) point a.
Technically mandatory cookies: We use certain cookies because they are mandatory requirements to ensure that our website and its functions can work in a legally compliant manner. Such cookies are automatically set when the website or a specific function is accessed, unless you have prevented the setting of cookies through your browser settings. Any data collected through the use of such cookies are processed by us on the basis of GDPR Article 6 (1) point f.
Technically non-mandatory cookies: On the other hand, non-mandatory cookies are set to improve, for instance, the convenience and performance of our website or to save certain settings you have made. We also use technically non-mandatory cookies to obtain information on the frequency with which certain parts of our website are used, so that we can tailor them more closely to your needs in the future. We do not store technically non-mandatory cookies until you click the relevant box, confirming that you have read our cookie note, and continue to use our website. Any data collected through the use of such cookies is processed by us on the basis of GDPR Article 6 (1) point a.
3.6.2 Retention period
Session cookies: Most cookies are only required for as long as you access the current service or continue
your session. They are either erased or lose their validity as soon as you leave our website or your current
session has expired (these are so-called session cookies). Session cookies are used, for instance, to retain
certain information during your session.
Permanent cookies: It happens occasionally that cookies are saved for a longer period of time, for instance, to recognise you when you open our website again at a later point. It means that you can call up saved settings again. This means you can access our website faster and more conveniently, and you don't have to make certain settings again, e.g. specify the relevant language. Permanent cookies are automatically deleted upon the expiry of a defined period of time following the date on which you visited the site or domain where the cookie was set.
Permanent cookies: It happens occasionally that cookies are saved for a longer period of time, for instance, to recognise you when you open our website again at a later point. It means that you can call up saved settings again. This means you can access our website faster and more conveniently, and you don't have to make certain settings again, e.g. specify the relevant language. Permanent cookies are automatically deleted upon the expiry of a defined period of time following the date on which you visited the site or domain where the cookie was set.
3.6.3 Cookie providers
Third-party cookies: So-called third-party cookies are set and used by other providers or websites, for
example by operators of web analysis tools. Further details on web analysis tools and range measurement can
be found below in this Policy. Third-party providers can also use cookies to display adverts or to integrate
social media content, e.g. social plug-ins.
3.6.4 Erasure of and objection to the use of cookies
The acceptance of cookies is not mandatory in the use of our website. If you do not want cookies to be saved
to your device, you can disable the relevant option in the system settings of your browser. Saved cookies
can be deleted through the system settings in your browser at any time. Please note, however, that if you do
not accept cookies, the functions of our services may be limited.
3.6.5 When you access our website, the following cookies may be stored:
Currently cookies are not used.
4 Data protection for the apps created by us
The apps created by us:
Backing Band Pro or bbPro
Backing Band Client or bbClient
Backing Band Controller or bbController
do not store any personal data. However, the following external services are used:
Backing Band Pro or bbPro
Backing Band Client or bbClient
Backing Band Controller or bbController
do not store any personal data. However, the following external services are used:
4.1 Downloading the app
When you download the app, the necessary information is transferred to the Apple App Store. Required
information includes your account username, email address and customer number, time of download, payment
information and individual device ID number, and other information as appropriate. We have no control over
and are not responsible for this data collection and processing. We process the data only to the extent
necessary for downloading the app to your terminal device.
Please also see the Apple privacy policy (https://www.apple.com/de/privacy/privacy-policy/).
Please also see the Apple privacy policy (https://www.apple.com/de/privacy/privacy-policy/).
4.2 Usage analysis by Firebase Analytics or Google Analytics
To help us further improve the app, these statistics show how you use it, such as how often, on which days
and on which devices. Our app uses technology from Firebase Analytics or Google Analytics for Firebase.
Therefore, we transmit this data anonymously to Google Firebase in the USA (Google Inc., 1600 Amphitheatre
Parkway, Mountain View, CA 94043, USA) for analysis purposes. On our behalf, Google Firebase evaluates the
data on the way you use our app, as this data is necessary for us to ensure and further improve the
stability and security of the app. The data collected in this way is not combined with your other profile
information, but is included in anonymous statistics that help us to get to know our users better and to
better adapt the app to their needs. This processing is necessary to ensure and further improve the
stability and security of the App and is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f
DS-GVO.
As a Google company, Firebase is subject to the Google privacy policy: https://www.google.com/policies/privacy/. The data is stored on servers in the USA. Google has certification for the EU-US Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI.
As a Google company, Firebase is subject to the Google privacy policy: https://www.google.com/policies/privacy/. The data is stored on servers in the USA. Google has certification for the EU-US Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI.
4.3 Crash report by Firebase Crashlytics
To help us improve the app further, reports of crashes are sent to us in case of a crash. Our app uses
technology from Firebase Crashlytics. Therefore we transmit this data anonymously to Google Firebase in the
USA (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) for analysis purposes. On our
behalf, Google Firebase evaluates the data in connection with the crash of our app. This process collects
information about the device used and the usage of our app (e.g. the timestamp, when the app was started and
when the crash occurred), which enables us to diagnose and solve problems. However, this data may also
contain personal data in individual cases if this data is the trigger for the erroneous behavior. This
personal data is not combined with your other profile information. Chat messages are excluded from this and
are not sent with crash reports. The processing of this data is necessary for us to further improve the
stability and security of the app and is based on Art. 6 para. 1 p. 1 lit. f DS-GVO.
As a Google company, Firebase is subject to the Google privacy policy: https://www.google.com/policies/privacy/. The data is stored on servers in the USA. Google has certification for the EU-US Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI.
As a Google company, Firebase is subject to the Google privacy policy: https://www.google.com/policies/privacy/. The data is stored on servers in the USA. Google has certification for the EU-US Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI.
4.4 Objection
In the device settings of your end device you can disable the use of the above mentioned services Firebase
Analytics and Firebase Crashlytics.
5 Recipients of personal data
Internal recipients: Within the ckDOO GmbH only those persons who need this for the purposes mentioned under
point 3 have access.
External recipients: We never pass on your personal data to external recipients outside of the ckDOO GmbH.
External recipients: We never pass on your personal data to external recipients outside of the ckDOO GmbH.
6 Retention period
You will find the retention period for personal data in the relevant chapter on data processing. We
generally apply the rule whereby we only save your personal data for as long as they are required to fulfil
their purposes or – if you have given your consent – until you revoke your consent. If you revoke your
consent, we erase your personal data, unless further processing is permitted under the relevant applicable
statutory provisions. We also erase your personal data if we are under an obligation to do so on legal
grounds.
7 Rights of data subjects
As a data subject you are entitled to the following rights:
Right to information: You have a right to access the data we have stored about you as a person.
Right to rectification and erasure: You can require us to correct inaccurate data or – provided that the
legal grounds are in place – to erase your data.
Restriction of processing: Provided that the legal grounds are in place, you can require us to restrict the
processing of your data.
Data portability: If you have provided us with data on the basis of a contract or your consent, and as long
as there are legal grounds, you can require us to send you the data you gave us in a structured, commonly
used and machine-readable format, or you can require us to send your data to a different controller.
Objection to data processing on the legal basis of “legitimate interest” under GDPR Article 6 (1) point f:
If there are reasons arising from your specific situation, you are entitled to object to our processing of
your data at any time, provided that such an objection has its legal basis in a “legitimate interest”. If
you make use of your right to object, we shall discontinue the processing of your data, unless we can –
within the parameters of the law – demonstrate compelling legitimate grounds for further processing,
outweighing your own rights.
To make use of your right to object, please use the contact details specified in clause 1.
Objection to cookies: You can also object to the use of cookies at any time. You will find the relevant
details in our notes on cookies in clause 3.6.
Revocation of consent: If you have given us your consent to the processing of your data, you can revoke the
same at any time with future effect. This, however, does not affect the legitimacy of processing your data
until the date of revocation.
Right to lodge a complaint with the supervisory authority: You can also lodge a complaint with the competent
supervisory authority if you believe that the processing of your data has breached the latest applicable
law. To do so, you can contact the data protection authority responsible for your place of residence or
country or the data protection authority responsible for ourselves.
Your contact with us: In addition, if you have any questions about the processing of your personal data,
your rights as a data subject or any consent you may have given, please feel free to contact us without
incurring any charge. To exercise any of the aforementioned rights, please contact dataprotect@ckdoo.com or
write to the postal address specified in clause 1. When you do so, please make sure that we can clearly
identify you.
8 Commissioner for data protection
Contact details of our commissioner for data protection:
Carmen Hoffmann
ckDOO GmbH
Grünewaldstr. 6
D-40474Düsseldorf
eMail:dataprotect@ckdoo.com
Carmen Hoffmann
ckDOO GmbH
Grünewaldstr. 6
D-40474Düsseldorf
eMail:dataprotect@ckdoo.com
9 Update status
The latest version of this data protection statement shall be applicable. Last updated: 01 Feb 2020.