YouLoggit GmbH (hereinafter “we”, “YouLoggit”; where applicable also “VisLogic”) processes personal data in order to provide the services for end customers described in the Terms of Use, Section 1.2 (hereinafter also “YouLoggit Services”).
With YouLoggit, registered members (hereinafter “users”) manage their projects, goals, resolutions, plans and generally “activities” by documenting their progress - among other things to raise awareness, internalize milestones, and develop the ability for realistic self-assessment. In addition, users connect with each other based on shared interests, communicate, and support each other.
To enable this, YouLoggit collects, stores and processes user and usage data, prepares it visually, and displays it to other users or, if enabled by you, also publicly according to individual privacy settings. YouLoggit protects this data against unauthorized access and misuse by third parties.
YouLoggit is under development. Future changes to this privacy policy may be required, e.g. to comply with changing laws, to describe matters more clearly, or to reflect additional features. In such a case, we will comply with the statutory notification requirements; at a minimum, we will notify users four weeks before the new policy takes effect.
YouLoggit GmbH
Rehstieg 8
25335 Elmshorn
Germany
Managing Director: Maxim Szenessy
If you have questions about data protection and privacy, please contact privacy(at)youloggit.com.
We collect, store and process data on rented servers of IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, as well as on servers of YouLoggit GmbH (see Imprint). Data transfer over the internet takes place via encrypted connections (TLS).
We use service providers (processors) for technical provision (in particular hosting, potentially push delivery, potentially payment processing). Where required, we enter into agreements pursuant to Art. 28 GDPR.
We reserve the right, in order to ensure the provision of the YouLoggit Services, to rent additional capacity from third-party providers if necessary and/or to change our storage or hosting provider. In the event of such a change, we will notify our users/contractual partners in accordance with the statutory requirements.
Our system records a set of general data and information each time our websites are accessed by a data subject or an automated system. This general data and information is stored in the web server log files. In particular, the following may be recorded: browser types and versions used, operating system, referrer URL, subpages/endpoints, date and time of access, IP address, internet service provider, and similar data and information serving hazard prevention and IT security.
This information is required to deliver content correctly, ensure the functionality of our systems, and increase the security of IT systems (e.g. to prevent/analyze attacks). In addition, it may be necessary to provide law enforcement authorities, in the event of a cyberattack, with the information required for prosecution. Server logs are stored separately from content that you actively add to your user account.
As a rule, we collect and use personal data of our users only to the extent that this is necessary for providing the YouLoggit Services and the website.
Depending on the processing activity, we rely on different legal bases:
Personal data is deleted or blocked as soon as the purpose of storage no longer applies and no statutory retention obligations prevent deletion. Storage may continue beyond this if provided for by European or national legislators in Union law regulations, laws, or other provisions to which we are subject. Data is also blocked or deleted when a prescribed retention period expires, unless further storage is necessary for concluding or performing a contract.
The YouLoggit Services are generally not designed to process special categories of personal data within the meaning of Art. 9 GDPR (e.g. health data, religious or philosophical beliefs, political opinions). Please do not upload such data and do not publish it in posts, chats, or goals.
If you nevertheless provide such data, you do so at your own responsibility. You must ensure that - where required - a valid legal basis exists (e.g. the explicit consent of the data subjects). We may delete such content after becoming aware of it or restrict access to it, where this is necessary or appropriate.
Note: We cannot automatically detect special categories of personal data in every case. If you inform us about such content (e.g. via support), we will review it to the extent possible and, if necessary, initiate deletion or restriction.
The use of push notifications is optional. If you enable push notifications in the YouLoggit app, we use a push service for technical delivery. On Android, Google Firebase Cloud Messaging (“FCM”) is typically used; on iOS, delivery is carried out via Apple Push Notification Service (“APNs”) (possibly mediated via FCM).
Important: As a rule, we do not send any content of your goals, posts, or chats via the push service. Instead, where possible, the push message contains only a minimal technical trigger (e.g. “New event available”). The actual data is then retrieved by your app directly (encrypted) from servers of YouLoggit GmbH.
In the context of delivery, the following data may be processed in particular:
Legal basis is your consent pursuant to Art. 6(1)(a) GDPR, insofar as you enable push notifications. You can revoke this consent at any time by disabling push notifications in the app or in your operating system settings.
Recipients / processing: Data required for delivery may be transmitted to the respective platform providers (in particular Google and/or Apple). For Firebase services, Google typically acts as a processor under the GDPR. Details are governed by the Firebase Data Processing and Security Terms. Firebase Data Processing and Security Terms
Third-country transfer: A transfer to third countries (e.g. the USA) cannot be ruled out. Such transfers are based on appropriate safeguards (e.g. Standard Contractual Clauses (SCCs) and/or, where applicable, adequacy decisions). Firebase provides SCC documents: Firebase SCCs
Retention period: We generally store push tokens only as long as required for delivery (e.g. until logout, app uninstallation, or token renewal). Server logs are handled according to Section 3.5.
Many websites and servers of other companies use cookies and/or so-called “pixels” and other methods to collect data about user behavior. This can be used to create interest profiles and deliver personalized advertising.
We do not use tracking or marketing cookies and do not deploy tracking pixels for advertising purposes.
If users see advertising within YouLoggit, any relation to interests is only due to the fact that users have visited the areas/pages that interest them or where topic-related advertising might appear. There is no algorithmic, automated, personal profiling for individualized ad selection.
We use only technically necessary cookies or comparable storage mechanisms that are required for operating the website and login (e.g. session/security functions). These are set as soon as you use the website and/or log in. Consent is generally not required for these.
We do not use tracking or marketing cookies. If we should use optional cookies/trackers in the future, we will obtain explicit consent (opt-in) in advance where required.
Cookies are stored on the user’s device and transmitted by it to our website. You have full control over cookies via your browser. You can disable or restrict cookies by changing your browser settings. Cookies that have already been stored can be deleted at any time. If cookies are disabled, some website functions may no longer be fully available.
In apps, the respective operating system and app settings apply; in apps we also use cookies/comparable storage mechanisms only insofar as necessary for providing the functionality.
The Terms of Use govern the rights and obligations of both parties: those of the user and those of the operator (YouLoggit).
In addition, they contain rules that make operation of the YouLoggit Services practical (e.g. visibility settings, local caching, deletion/termination as well as rules on reporting and abuse). See in particular Section 2.
The Terms of Use supplement this privacy policy; where data protection aspects are governed in the Terms of Use, they apply in conjunction with this privacy policy.
The Terms of Use also describe how you can terminate. Upon termination/objection, certain services may no longer be available; see Section 12.
You can contact us via the provided email addresses (see also Terms of Use, Section 13) or via a contact form on our websites, if available. In this case, the personal data transmitted with the email is processed to handle your request. There is no disclosure of the data to third parties in this context, unless this is necessary to handle the request. The data is used exclusively to process the request.
Other personal data processed during the sending process serves to prevent misuse of the contact form and to ensure the security of our information technology systems.
The legal basis for processing data transmitted via a contact form or by sending an email is Art. 6(1)(f) GDPR (legitimate interest in processing the inquiry). If the email contact is aimed at concluding a contract, the additional legal basis is Art. 6(1)(b) GDPR.
The data is deleted as soon as it is no longer necessary for achieving the purpose for which it was collected. For data transmitted by email, this is the case once the respective matter has been completed and no statutory retention obligations prevent deletion. If the matter is relevant for billing, a retention period of up to 10 years may apply.
You have the possibility at any time to object to the processing of your personal data in the context of contacting us. If you contact us by email, the process may not be continued in the event of an objection. You can object via the contact address stated above. All personal data stored in the course of the contact will be deleted in this case, unless statutory retention obligations or other legitimate reasons require further storage.
You have the right to withdraw consent you have given, with effect for the future, pursuant to Art. 7(3) GDPR.
You may object to the processing of your personal data pursuant to Art. 21 GDPR at any time, insofar as the processing is based on Art. 6(1)(e) or (f) GDPR.
Some processing activities are necessary to provide the YouLoggit Services (Art. 6(1)(b) GDPR). If you object to such processing or do not provide necessary data, certain functions or use of the services as a whole may no longer be possible. If you withdraw consent, the respective optional features (e.g. push notifications) can no longer be used.
Data subjects have the right pursuant to Art. 77 GDPR to lodge a complaint with the competent supervisory authority. An overview of supervisory authorities can be accessed, for example, via the BfDI website: bfdi.bund.de - Addresses & links
If you have questions about data protection and privacy at YouLoggit, please contact us exclusively by email at privacy(at)youloggit.com.
