Welcome to TimeToFace. With our app we provide you with an application that you can download to your mobile device. The app sees itself as a social networking and dating portal with the goal of bringing people into personal contact in a simple and uncomplicated way. Data protection is a particularly high priority for us and we want you to feel safe while using our app.
The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states as well as other data protection regulations is:
TimeToFace GmbH, Laimgruber Straße 12, 83339 Chieming
Postal address: TimeToFace GmbH, Laimgruber Straße 12, 83339 Chieming
You have the following rights with respect to us regarding personal data concerning you:
a. Right of access
You also have the right to receive from us at any time, free of charge, information about the personal data stored about you and a copy of this information. You also have a right of access regarding the following information:
When using the app proactively, during registration, login, single sign-in, request email verification link, update email as well as when requesting a new password, we store the access data generated in the process in so-called server log files and partly in databases. This includes date and time of the retrieval, amount of data transferred, location and IP address.
Legal basis for the temporary storage of your data and the log files is Art. 6 para. 1 lit. b GDPR.
This data is evaluated exclusively to ensure the permanent and trouble-free operation of the app and to ensure the proper functionality of the app, as well as for transmission to law enforcement authorities in the event of a cyber attack and ensuring the security of our information technology systems. An evaluation of your data for marketing purposes does not take place in this context.
The collection of data for the provision of the app and the storage of data in log files is mandatory for the operation of our app. Consequently, there is no possibility to object.
If you open a user account via the App, we process the data required for this purpose as well as for the operation of the App, such as the selected user name, email address, search criteria, gender, date of birth, photo, IP address, login data, chat content, as well as such data that was either automatically stored via the single sign-on procedure (in particular name, date of birth, photo, gender and email address) in accordance with section 10 or manually stored in the profile, such as, for example. Search attributes, height, build, search radius, interests, hobbies, favorite vacation countries, etc. The data processed in this way can be adjusted and changed by the user at any time via the profile settings. Excluded from this is the information on the date of birth, and gender.
The legal basis for the processing of personal data is Art. 6 para. 1 lit. b GDPR.
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. This is the case for the data collected during the registration process when the user account is deleted.
In order to offer our users the most relevant recommendations possible for other user profiles and to improve the functionalities of our app, we process the location data of the respective user on the basis of Art. 6 para. 1 lit. a GDPR. If the user consents to this processing by activating the location service, the location data thus collected (longitude and latitude) or the desired location selected by the user is periodically transmitted to our servers and processed there.
The user can object to this data processing at any time for the future by deactivating this location service in the settings of their terminal device. For the smooth or unrestricted operation of the app, the collection of the current location data by activating the location service is absolutely necessary. Consequently, deactivating the location service may limit or completely cancel the functionality of the app.
Customer satisfaction is particularly close to our hearts. For the efficient and optimized execution of our Customer Support, we therefore use the Atlassian Jira Service Desk, a service provided by Atlassian Pty Ltd, c/o Atlassian, Inc, 1098 Harrison Street, San Francisco, CA 94103, USA. This allows for faster and better resolution of inquiries. If you contact our support, e.g. by e-mail, the data entered as well as name and e-mail address are processed via a server of the provider and stored there. Atlassian is certified according to the Privacy Shield Framework and thus meets the European standards for legally compliant commissioned data processing.
The legal basis for this data processing is Art. 6 para. 1 lit. b GDPR.
You can sign up to receive our newsletter. To register, you must provide us with your e-mail address, name and the terminal device used. The registration takes place in a so-called double opt-in process. After registration on our app, we send a confirmation e-mail via the service provider mentioned in item 9, in which you must confirm the registration again. This entire process is documented and stored. This includes both the storage of the registration and confirmation time, as well as your IP address. The collection of this data is necessary so that we can trace and explain the processes in the event of misuse of the e-mail address and therefore serves our legal protection. By subscribing to our newsletter, you agree to receive it. The legal basis for the processing of your data after subscription to the newsletter is Art. 6 para. 1 lit. a GDPR.
You can revoke your consent to the storage and use of your personal data to receive the newsletter and the previously described statistical collection at any time with effect for the future. For the purpose of revoking consent, you can use the link provided for this purpose in the newsletter.
Your data will be deleted as soon as they are no longer necessary to achieve the purpose of their collection. Accordingly, your e-mail address will be stored as long as the subscription to the newsletter is active.
For the optimized processing of our newsletter dispatch, we use the dispatch tool MailChimp, a service of the list provider The Rocket Science Group, LLC, 512 Means St., Suite 404 Atlanta, GA 30318, USA. If you have effectively subscribed to our newsletter as described in section 8, or you have expressly requested or consented to receive it by accepting the T&Cs, then the data required for this purpose will be processed via MailChimp's servers and stored there, so in particular name, email address, device manufacturer, language and data on interactions with emails from TTF. Mailchimp is certified under the Privacy Shield Framework and thus meets the European standards for legally compliant commissioned data processing. Additional information about MailChimp and data protection at MailChimp can be found in the Data Protection Statement of the provider as well as in the further explanations about the GDPR. If you have any questions about MailChimp's data processing, you can also contact MailChimp's data protection officer directly at email@example.com. You can revoke this processing at any time with effect for the future. To do this, either use the unsubscribe button implemented in the respective newsletter or send us a short note by e-mail to the e-mail address specified under 1.
The legal basis for this data processing is Art. 6 para. 1 lit. f GDPR, whereby the optimization of our campaigns is our legitimate interest.
TTF informs its users by emails about user-specific information in particular tips & tricks, news, special offers.
You can revoke this processing at any time with effect for the future. To do so, either use the unsubscribe button implemented in the respective email by deactivating the „Team TimeToFace“ function in the app under „App Settings“ and „Notifications“ or send us a short note by email to the email address specified under 1.
. This option does not apply to emails that are not primarily for advertising. This includes emails about contracts, support, or other administrative or transactional notices.
In order to facilitate the registration process for our users, they are offered the option of opening a user account via an existing account with a third-party provider. If a user decides to use this registration method, the first step is to be redirected directly to the selected third-party provider. There, the user is requested by the respective third party provider to enter the access data in order to log in or register with the respective service. If the user is already logged in to the third-party provider with the end device at this point, this login prompt is skipped. You can recognize the login options in the app by the integrated logos of the respective third-party provider. Currently, we offer the option to register via an existing account of the following third-party providers:
In order to provide our app along with all functionalities, in particular the chat function, we use the technology of Google Firebase, a service of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as „Firebase“). Firebase is part of the Google Cloud Platform and offers numerous services for developers. A listing of these can be found here:
https://firebase.google.com/terms/. Firebase provides a Firebase real-time database where we store user and chat data. Here, user data is transmitted to Firebase in order to use the database.
The processing of the data is based on Art. 6 para. p. 1 lit. b GDPR, as the functions can only be guaranteed via Firebase.
The data processed by Firebase may be processed via servers outside of Europe, for example from the USA. We have concluded a contract with Google for commissioned processing in accordance with Art. 28 GDPR, in which Google undertakes to process the data received only in accordance with our instructions and to comply with the EU level of data protection. Further information on data protection in connection with Google Firebase can be found at: https://www.firebase.com/terms/privacy-policy.html.
For Firebase, Google uses the advertising ID of the mobile device in addition to the „instance ID“ described above. In the device settings of your mobile device, you can restrict the use of the advertising ID by changing your menu settings as follows:
- For Android: Settings→Google →Advertisements →Reset Advertising ID
- For iOS: Settings→Privacy→Advertising→ Restrict ad tracking
To measure the installations of our app, we use on the basis of Art. 6 para. p. 1 lit. f GDPR the Firebase real-time database, a technology of Google Firebase (see above), which stores the number of installations as well as automatically recorded events. The collection of this technical data is to be recognized as our legitimate interest. In this data processing, user data is transmitted to Firebase in order to be able to use the database. This data is not personal to us. Nevertheless, we would like to inform you about this data collection below.
If you have a smartphone with iOS operating system, you can prevent the collection by disabling the „Additional analysis“ function under „App settings“ and „Privacy“.
For the purpose of continuous optimization and needs-based design of our app, we use the analysis tool Amplitude of Amplitude Analytics Inc, 501 2nd Street Suite 100, San Francisco, California 94107, USA („Amplitude“). The tool helps us to better understand the usage behavior of our users and to gain insights for further optimization needs. For this purpose, we use the Amplitude library, which processes the following data in particular, such as device information (ID, type, brand, operating system), the IP address of the device used, provider name (e.g. Vodafone), region of origin such as country and/or city, interactions with the app, version status and language used. Gender. Usage profiles can be created from the data processed in this way, which we use exclusively for the aforementioned purposes. Amplitude is certified under the Privacy Shield Framework and thus complies with European standards for lawful commissioned data processing.
The legal basis for the processing of personal data is Art. 6 para. 1 lit. a GDPR.
You can revoke your consent to this data processing at any time with effect by selecting the „Deactivate analysis at any time“ function via „App settings“ and „Privacy“.
We secure our app and other systems through numerous technical and organizational measures against loss, destruction, access, modification or distribution of your data by unauthorized persons. To this end, we continuously update the firewalls we use, the encryption procedures and our security systems. Despite regular checks, complete protection against all threats is nevertheless not possible and cannot be guaranteed by us.
Your personal data will be deleted or blocked as soon as the purpose of storage ceases to apply or you revoke your consent. In addition, storage may take place if this has been provided for by the European or national legislator in Union regulations, laws or other regulations to which the controller is subject. If the purpose of storage ceases to apply, if you revoke your consent or if a storage period prescribed by the European Directive and Regulation or another competent legislator expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions, unless there is a need for further storage of the data for the conclusion or performance of a contract.
We inform you that the provision of personal data is sometimes required by law (e.g. tax regulations) or may also result from contractual provisions (e.g. information on the contractual partner). Sometimes it may be necessary for the conclusion of a contract that you provide us with personal data, which must subsequently be processed by us. For example, you are obliged to provide us with your personal data if you conclude a contract with us. Failure to provide your personal data would mean that the contract with you could not be concluded.