Protecting your personal data is important to us. This Privacy Policy informs you about the collection, processing, and use of your personal data when using our MakeItBookable app and associated website.
The data controller for this website and the MakeItBookable app is:
Dr. Kai Kaapke, St. Mauritius-Weg 16, 31191 Algermissen, Germany
If you have any questions or concerns regarding data protection, you can contact us via email at MakeItBookable@kaapke-online.de or by post at the above address.
This section describes the data processed for the provision of the website, creation of log files, and functionality of the MakeItBookable app.
Temporary storage of data is necessary for the operation of the website to deliver the content to your device. Further storage in log files is essential to ensure website functionality and the security of IT systems, which constitutes our legitimate interest in processing this data.
Data is deleted once it is no longer necessary for its collection purpose.
For website provision, this occurs when the session ends. Log files are accessible only to administrators and are permanently deleted after a maximum of eight weeks.
This data includes the email address you provided for your user account, which is stored until you delete your account via the app.
When your account is deleted, all other data you provided is also deleted. You can request deletion at any time by emailing MakeItBookable@kaapke-online.de with the subject "Delete Account."
To determine the number of resources you have subscribed to, we must share your request and email address with Adapty.
Neither Adapty nor we use this data to track user behavior outside of the app.
The MakeItBookable app allows users to automatically create availability periods and bookings as events in a connected Google Calendar.
To use this feature, the user must connect the app to their Google account and select an existing calendar or create a new calendar where the events generated by the app can be stored.
During the connection process, the user will be asked by Google to grant the application permission to access their Google Calendar. This permission allows the app to read and modify calendar data.
The access is used solely for the following purposes:
The application only accesses and processes events that are created in connection with the use of the app. The app does not access, analyze, or store information from other calendar events or unrelated calendar data belonging to the user.
All processing of calendar data is carried out solely for the purpose of providing the calendar synchronization functionality requested by the user.
MakeItBookable uses Google API Services to access certain Google user data in order to provide the Google Calendar integration.
Access to Google user data occurs only after the user explicitly authorizes the application to connect to their Google account.
Information obtained through Google API Services is used exclusively to provide and improve the functionality of the application, specifically to:
The application does not use data obtained through Google API Services for:
MakeItBookable’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Information obtained through Google API Services will not be transferred to third parties except:
Data is processed based on Article 6(1)(f) GDPR.
We use Google Cloud Platform services for delivering our website and enabling functionality in the MakeItBookable app. The provider is Google Inc., USA.
For European services, Google Ireland Limited (Gordon House, Barrow Street Dublin 4, Ireland) is responsible.
Google also processes your data in the USA. Google is an active participant in the EU-US Data Privacy Framework, ensuring compliant and secure data transfers of EU citizens' personal data to the USA. More information can be found at https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.
Additionally, Google applies Standard Contractual Clauses (SCC) approved by the EU Commission to ensure your data meets European data protection standards when transferred and stored in non-EU countries like the USA.
Through the EU-US Data Privacy Framework and Standard Contractual Clauses, Google commits to upholding European data protection standards, even when storing, processing, or managing data in the USA. These clauses are based on an EU Commission implementation decision. You can find the decision and corresponding Standard Contractual Clauses at https://eur-lex. europa.eu/eli/dec_impl/2021/914/oj?locale=de.
Google offers a data processing agreement under Article 28 GDPR, which forms the data protection basis for our customer relationship with Google.
This agreement includes the EU Standard Contractual Clauses. Here are the terms: https://business.safety.google/intl/de/adsprocessorterms/.
For more on data processed by Google Cloud, visit Google’s Privacy Policy at https://policies.google.com/privacy?hl=en.
Provision of Technical Infrastructure for Data Storage in the MakeItBookable App:
The MakeItBookable app uses MongoDB Inc.'s data storage service (1633 Broadway, 38th Floor, New York, NY 10019), hosted within the EU.
Only the data listed in (a)(2) is stored during your account's active use.
MongoDB Inc. is a data processor and stores data in a way that does not make your email or other data directly accessible to them.
MongoDB Inc. participates in the EU-US Data Privacy Framework, https://www.dataprivacyframework.gov/list, so the principles for Google regarding Standard Contractual Clauses also apply here.
Provision of Technical Infrastructure for Subscription and In-App Purchase Processing in the MakeItBookable App:
The app uses services from Adapty Tech Inc. (2093 Philadelphia Pike #9181, Claymont, DE 19703) for managing subscriptions and in-app purchases.
Adapty Tech Inc. is a data processor, https://adapty.io/data-processing-agreement/.
Adapty Tech Inc. participates in the EU-US Data Privacy Framework, https://www.dataprivacyframework.gov/list, so the principles for Google regarding Standard Contractual Clauses also apply here.
Some of our service providers are located outside the European Economic Area (EEA), particularly in the USA. To ensure an adequate level of data protection, we have concluded Standard Contractual Clauses, approved by the European Commission, with these providers.
You have the right to request information on your personal data we process, as per Article 15 GDPR.
You have the right to object for specific reasons (see Section II).
If the data we process about you is incorrect, you may request correction under Article 16 GDPR. If your data is incomplete, you can request its completion.
You have the right to request deletion of your personal data according to Article 17 GDPR.
You have the right to request restriction of your data’s processing under Article 18 GDPR.
If you believe your personal data is processed in violation of data protection regulations, you have the right to file a complaint with a supervisory authority under Article 77(1) GDPR. This includes the authority responsible for the data controller: The Data Protection Commissioner for Lower Saxony, https://www.lfd.niedersachsen.de/startseite/meldeformulare/online_beschwerde/.
If the conditions of Article 20(1) GDPR are met, you have the right to receive data processed based on your consent or for contract fulfillment, either directly or transferred to a third party. Data collected for website operation and log file storage is essential and not based on consent or contract but is justified under Article 6(1)(f) GDPR.
You have the right to object to the processing of your personal data based on