The following information applies to all our mobile applications (apps) for smartphones and tablet PCs. The use of these apps may involve the processing of personal information. Our intention is for the following information to provide you with an overview of these processes so that you can understand them. In order to ensure fair processing, we would also like to inform you about your rights under the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG).
Table of Contents
- Responsible Entity (Controller)
- General Information on the Processing of Personal Data
- Duration of Storage
- Transmission of Data
- Data Collection during Downloading
- Access Rights of this App
- Registration and Login
- Data Processing in our Apps
- Payments made through our App
- Processing App Log Files
- The Right to Object
- Your Rights
- Complaints to Government Authorities
1. Responsible Entity (Controller)
The responsible entity (controller) according to Art. 4 Abs. 7 EU General Data Protection Regulation (GDPR) is:
Juhu Games UG (haftungsbeschränkt)
CEO Christian Teister
Saseler Chaussee 148
22393 Hamburg, Germany
‘Controller’ means the entity that decides how and why personal information is processed. The controller is hereafter known as “Juhu Games”, “we” or “us”.
If you have any questions or suggestions about this information or would like to contact us to exercise your rights, please send an email to: firstname.lastname@example.org
2. General Information on the Processing of Personal Data
The use of the products and services we offer may result in the processing of personal data. The term “personal data” under data protection law refers to all information relating to a specific or identifiable person. An IP address can also be considered personal data. An IP address is assigned to each device connected to the internet by the internet service provider, so that it can send and receive data. When you use the apps, we collect data that you provide yourself. In addition, when you use the app, we automatically collect certain information about your use of it.
We process personal data in compliance with the relevant data protection regulations of the GDPR and the German BDSG. We will only process data where we are legally permitted to do so. When you use these apps, we will process personal data only with your consent (Art. 6 paragraph 1 sentence 1 letter a GDPR), for the performance of a contract to which you are a party, or in order to take steps at your request prior to entering into a contract (Art. 6 paragraph 1 sentence 1 letter b GDPR), for compliance with a legal obligation (Art. 6 paragraph 1 sentence 1 letter a GDPR) or if the processing is necessary for the purposes of our legitimate interests or the legitimate interests of a third party, except where such interests are overridden by your interests or fundamental rights and freedoms which require the protection of personal data (Art. 6 paragraph 1 sentence 1 letter f GDPR).
3. Duration of Storage
Unless otherwise stated in the following sections, we will store the data only as long as necessary to achieve the purpose of processing or to fulfill our contractual or statutory obligations.
4. Transmission of Data
Unless otherwise stated in the following sections, data will be processed on the servers of technical service providers commissioned by us for this purpose. These service providers will only process the data after having received express instructions and they are contractually obliged to guarantee adequate technical and organizational measures for data protection. These providers are based inside the European Union.
5. Data Collection during Downloading
6. Access Rights of this App
This app requires various access permissions from your device. These are required to maintain certain functionality of our apps. For example, if you only want to download updates using a wireless connection, the app needs access to your wireless connection. If you would like to purchase additional content via the app, we may need access to the interface required for your app store. Another example is what is referred to as “push notifications”, in which we can use an interface to display a message directly on your device. You will receive information prior to the installation as to which access permissions are required by our app.
The legal basis for the processing of technically necessary access permissions is Art. 6 paragraph 1 sentence 1 letter b GDPR. All further access permissions are based on Art. 6 paragraph 1 sentence 1 letter f GDPR.
In Android, various access permissions are needed on your mobile device. Under “Settings/Apps” you can subsequently check the access rights of our apps.
7. Registration and Login
In order to use certain functions of the app, registration within the app is required. Upon completion of the registration process, a contract of use is entered into.
8. Data Processing in our Apps
In our apps we are able to track and evaluate various actions at the player level. This especially includes the nickname provided during registration and your actions during the games. For this purpose, we collect your connection data, such as your IP address. We need to be able to process this information to execute gaming operations. It is, therefore, processed on the basis of Art. 6 paragraph 1 sentence 1 letter b GDPR.
9. Payments made through our App
In principle, you can enjoy our games without having to provide personal contact data. If you pay for chargeable activities in our games, your personal data will be collected by the corresponding payment service providers listed.
All payment-relevant data, such as your contact and payment data, are initially collected and processed by the corresponding payment provider. The legal basis for this data processing is Article 6(1)(b) GDPR.
For payments, we collect the geolocation of your IP address, which allows us to determine in which country you are located. The legal basis for this data collection is Art. 6 paragraph 1 sentence 1 letter c GDPR, as the processing is necessary for compliance with a legal obligation. The legal obligation arises from Directive 2006/112/EC (MOSS Directive).
We also receive information from payment providers related to payment fraud prevention. The legal basis for this data collection is Art. 6 paragraph 1 sentence 1 letter c GDPR, as the processing is necessary for compliance with a legal obligation.
10. Processing App Log Files
If you use our services, general information (that is not used on a individual basis) is initially stored automatically, i.e. not through registration. For example, our web servers normally store the following information: IP, Device ID, Device Type, OS, time of the server request.
The processing is carried out for the purposes of our legitimate interests, the legal basis of which is Art. 6 paragraph 1 sentence 1 letter f GDPR. This processing is used for technical administration and the security within the app.
11. The Right to Object
In accordance with Art. 21 GDPR, you have the right to object to any processing operations executed that use Art. 6 paragraph 1 sentence 1 letter e or letter f of GDPR as their legal basis.
12. Your Rights
As the person concerned, you are entitled to exercise your rights against us. In particular, you have the following rights:
- In accordance with Article 15 GDPR and Section 34 BDSG, you have the right to request information as to whether or not, and to what extent, we process personal data about you.
- You have the right to have us correct your data in accordance with Article 16 GDPR.
- You have the right to have us delete your personal data in accordance with Article 17 GDPR and Section 35 BDSG.
- You have the right to have the processing of your personal data restricted in accordance with Article 18 GDPR.
- You have the right, in accordance with Article 20 GDPR, to receive the personal data concerning you that you have provided to us, in a structured, commonly used and machine-readable format and to transmit this data to another controller.
13. Complaints to Government Authorities
If you believe that the processing of your personal data constitutes an infringement of the provisions of the GDPR, you have the right to lodge a complaint with a supervisory authority in accordance with Article 77 GDPR.
Responsible for the content:
Juhu Games UG (haftungsbeschränkt)
Saseler Chaussee 148
CEO: Christian Teister
District court: Amtsgericht Hamburg (Germany)
Trade register number: HRB 131235
Last Changed: May 2018