Effective as of 01 October 2023.
Introduction
This Privacy Policy explains how Breastinform / orimus GmbH (“Breastinform” or “we” or “us”) collects, stores, uses, transfers and shares Personal Data from our users (“you”) in connection with the Breastinform mobile application (the “App”)*, and the Breastinform website including any products and services related to it (the "Website") (all collectively, the “Services”).
We reserve the right to and may change this Privacy Policy from time to time. If we make any material changes, we will notify you by presenting you with a new version of this Privacy Policy. If permitted by applicable law, your continued use of the Services after the effective date of an updated version of the Privacy Policy will indicate your acceptance of the Privacy Policy as modified. In some cases, you will be given a choice about whether to explicitly accept changes to the Privacy Policy. If you do not accept the terms of the Privacy Policy, please do not use the Services.
Personal Data we collect from you
We do not actively collect personal data from you. You do not need any personal data to sign in and no personal data to use the app. We may receive personal data about you from other sources and third parties (through the support us function, for example).
We DO NOT connect to any third-party services, such as Apple HealthKit and Google Fit, and we WILL NOT import Personal Data about your health and activities into the App.
When you access or use the Services, we may automatically collect the following information:
Device Information:
Device model;
Information about the operating system and its version;
Unique device identifiers (e.g. IDFA);
Enabled device accessibility features (e.g. display features, hearing features, physical and motor features);
Mobile operator and network information;
Device storage information;
Version of your device system.
Location Information:
IP address;
Time zone;
Information about your mobile service provider.
Data about your use of the Services, including, among others:
Frequency of use;
Areas and features of the Services that you access, visit or use;
Engagement with particular features.
Almost all data is stored locally on the phone. As of October 2023 we only sync the reports of your Breast Self Examination to our servers.
You are identified through a random user ID. WE DO NOT HAVE ACCESS TO ANY INFORMATION THAT IS LINKED TO YOUR USER ID. We cannot read any of your reports and cannot see or read any information you have entered.
If you are going to support us with a higher amount than €25 and leave the app to make the purchase on our website, we need your name, your address and your E-Mail address to send you an invoice and your voucher.
We make automated decisions using your cycle data to predict your future cycles or ovulation. Those data is also only saved locally and not transferred to our servers. You consent to it when you accept our Terms of Service.
We need to use some of your device data to send you reminders, e.g., via push notifications. You can disable this anytime in your device settings. You are asked to give us permission to send you reminders at the start of the app.
We may aggregate, anonymize or de-identify your Personal Data so that it cannot reasonably be used to identify you. Such data is no longer Personal Data.
We may process your name and email to reply to your support request or to contact you about a specific query or question you have raised. After we have replied to your request, we will immediately delete the data and your message, including your email-address.
We will not sell or rent your Personal Data. We will not disclose your Personal Data except as otherwise described in this Privacy Policy. Furthermore, we may share your Personal Data with our service providers solely as described in this Privacy Policy.
As we do not collect your Personal Data inside the App, we can't access or change it. If you support us and believe that your Personal Data is inaccurate, you have a right to contact us and ask us to correct such Personal Data.
You have a right to request information about what Personal Data we process about you, to access all your Personal Data, and receive a copy of it, including in a structured and portable form (.json).
You may ask us to erase your Personal Data if you withdraw your consent to processing. In this case, we can only delete your account from our server.
Сontact us at support@breastinform.com to exercise your privacy rights and we will address your request within 30 days after receipt. It may take us up to 90 days in some cases, for example for full erasure of your Personal Data stored in our backup systems. We will let you know if we need more time and explain the reasons for the delay. Subject to applicable laws, you may have a right to lodge a complaint with your local data protection authority about any of our activities (related to your privacy rights, among others) that you think are not compliant with applicable law. If you have any concerns about our privacy practices, please let us know at support@breastinform.com.
With your consent, we may share some of your non-health Personal Data with Google AdMob or Apple Search Ads for marketing and promotional purposes. If we need to share your Personal Data with other platforms for this purpose, except as we have explained in this Privacy Policy, we will ask for your consent.
In some situations, we engage other companies to process your Personal Data on our behalf. We refer to these companies as “processors.” Processors are companies that help us run the Services, support our communication with you or perform other App-related activities.
Hostgator is used for the Account Information and the synchronization of the reports. Their privacy policy can be found here: https://www.hostgator.com/help/article/privacy-policy
Cloudflare is used for the our server security. Their privacy policy can be found here: https://www.cloudflare.com/privacypolicy/
Google, Apple Stripe and Paypal are used for Payment processing. You can find their privacy policy here:
https://www.apple.com/legal/privacy/data/en/app-store/
https://policies.google.com/privacy
https://www.paypal.com/uk/webapps/mpp/ua/privacy-full
https://stripe.com/de/privacy
Special circumstances
We may also share some of your Personal Data in the following special circumstances:
in response to subpoenas, court orders or legal processes, to the extent permitted and as restricted by law (including to meet national security or law enforcement requirements);
when disclosure is required to maintain the security and integrity of the Services, or to protect any user’s security or the security of other persons, consistent with applicable laws. In such cases we may also delete some of your Personal Data (e.g., by resetting your password to avoid unauthorized access);
when disclosure is directed or consented to by the user who has input the Personal Data;
in the event that we go through a business transition, such as a merger, divestiture, acquisition, liquidation or sale of all or a portion of its assets, your information will, in most instances, be part of the assets transferred.
Depending on the circumstance, we may rely on legitimate interest or legal obligation as our legal basis for the above processing activities.
At any time, you can deactivate your account and erase your Personal Data by emailing support@breastinform.com. If you choose to deactivate your account, we will generally delete all your Personal Data and it will not be recoverable should you later create another account. If you choose to delete the App from your device or your account becomes inactive, we will retain your Personal Data for a period of 3 years in case you decide to re-activate the Services or re-install the App.
The Services are not intended for children and we do not knowingly collect personal information about children under 13 years old through the Services. If you are aware of anyone under 13 using the Services, please contact us at support@breastinform.com, and we will take the required steps. Due to legal requirements, we DO NOT ALLOW the use of the Services by residents of EEA or the UK younger than 16 years old. If you are aware of anyone younger than 16 using the Services, please contact us at support@breastinform.com and we will take required steps.
Data we collect is transferred to and processed in the U.S. (where it is governed by U.S. law). The laws of the U.S. and the laws of other countries may not offer the same protections as the laws of your jurisdiction.