Data protection

Welcome to Seatti's privacy policy ("Privacy Policy"). This Privacy Policy applies to the website ("Website") and applications ("App and/or Website") providing services to users in the European Union and operated by Seatti GmbH, Enzianweg 30, 82335 Berg, Germany.

This Privacy Policy explains how Seatti ("Seatti" and/or "We" and/or "Us") collects, stores, protects and shares your information as defined below ("Personal Data") and with whom we share it. Seatti is the controller of your Personal Data within the meaning of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

We encourage you to read this Privacy Policy in conjunction with our Terms of Service.

1. collection of personal data

Personal data is individual information about personal or factual circumstances of an identified or identifiable natural person (data subject - you). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

1.1 Registration information

To enable you to use the App or the Website, we may collect certain information ("Registration Information") about you, such as:

- Name
- Username
- E-mail address
- Location and time zone
- Department
- Company name

The collection and processing of the personal data mentioned in this section 1.1 is based on Art. 6 para. 1 (b) DSGVO (necessary for the performance of a contract with you). The data will be deleted as soon as the purpose of the contract is fulfilled.

1.2 Collection, processing & use of data within the scope of Seatti services

For the purpose of providing Our Services, We process the categories of personal data listed in subsections 1.2.1 through 1.2.3 below.


The processing of this data is necessary to fulfill our contract with you (Art. 6 para. 1 (b) DSGVO). The data will be deleted as soon as the purpose of the contract has been fulfilled.

1.2.1 We process usage data from our customers so that we can provide our customers with the information they need in our app.
1.2.2 We collect analytical usage data for our Custom Export function.
1.2.3 For the use of our interactive floor plans, we also collect and store floor plans for our customers.

1.3 Payments

For the purpose of payment processing, we process the personal data required for this purpose.


We currently only offer payment by bank transfer. The legal basis for processing your data for the purpose of payment processing is Art. 6 para. 1 (b) DSGVO. In addition, we have a legitimate interest in offering an effective and secure payment method (Art. 6 para. 1 (f) DSGVO). The data will be deleted when the purpose of the contract is fulfilled.

1.4 E-mail communication

1.4.1 Newsletter

We may send you our newsletter and other direct mail marketing emails, provided that you have given your prior consent. Once you have signed up, you will receive an email with a link to activate the newsletter service. In other words, we will send you an email to the address you provided when you signed up, asking you to confirm that you want to receive the newsletter. If you do not confirm your subscription, your data will not be stored in our email sending tool. You have the right to unsubscribe from receiving such e-mails at any time with effect for the future. To do so, please click on the "Unsubscribe" link in the email and follow the instructions.

The collection and processing of the personal data mentioned in the previous paragraph is based on your consent pursuant to Art. 6 para. 1 (a), 7 DSGVO. If you give us your consent to process your personal data for a specific purpose, you can revoke your consent at any time and we will stop processing your data for this purpose and delete the data immediately.

1.4.2 Direct marketing

Email addresses collected when you register for an account are used for direct marketing for our products and services. If you no longer wish to receive direct marketing, you can opt out of the use of your email address at any time. The unsubscribe link is located in the header of each email or in your profile settings.


The collection and processing of the personal data mentioned in the above paragraph is based on your consent pursuant to Art. 6 para. 1 (a), 7 DSGVO. If you consent to us processing your personal data for a specific purpose, you may withdraw your consent at any time and we will stop processing your data for that purpose and delete the data immediately.

1.5 Log and usage data

Our servers automatically record information ("Log and Usage Data") that arises from your use of the Website and/or the App, which in turn helps us improve our service. Log and Usage Data may include information such as your IP address, browser type, referring domain, pages visited, access times, your mobile carrier, and search terms. Other actions, such as interactions with Seatti and advertisements, may also be included in log and usage data. An IP address is a number associated with the service through which you access the Internet, such as your ISP (Internet Service Provider), business, or university.

The collection and processing of the personal data mentioned in the preceding paragraph is based on Art. 6 para. 1 (f) DSGVO. According to Art. 6 para. 1 (f) DSGVO, the processing of personal data is lawful if it is necessary for the purposes of the legitimate interests of the controller (Seatti), unless those interests override the interests or fundamental rights and freedoms of the data subject (you). Our legitimate interests are to manage the App and/or Website, to improve our services and to detect and prevent hacking attacks.

1.6. information we receive or collect when you access our app and/or website through your mobile device

When you access our App and/or Website from your cell phone or other mobile device, including iPads and other tablets, we collect your mobile device identifier and IP address. We may create and assign an identifier for your device that is similar to an account number. We may collect the name you have associated with your device, device type, phone number, country, and any other information you provide to us, such as username, character name, geographic location, or email address.


If you enable these features, we may collect your device's geolocation data and store your device's coordinates to provide you with certain features. We may also use your device's geolocation data to personalize the App and/or the Website and to help you interact with other users. You can control your location information settings in your account settings and turn them off if you really want to. Even if you have disabled location services, we can determine your city, state, and country location based on your IP address (but not your exact location).


The collection and processing of the personal data mentioned in the previous paragraph is based on Art. 6 para. 1 (f) DSGVO. According to Art. 6 para. 1 (f) DSGVO, the processing of personal data is lawful if it is necessary for the purposes of the legitimate interests of the controller (Seatti), unless those interests override the interests or fundamental rights and freedoms of the data subject (you). Our legitimate interests are to manage the App and/or the Website, to improve our services and to detect and prevent hacking attacks.

1.7 Customer support

If you contact our customer service, we will receive your email address and may track your IP address and the information you send to us in order to resolve your inquiry. We will keep records of our communications with you, including any complaints we receive from you about other users (and from other users about you).

The collection and processing of the personal data mentioned in the preceding paragraph is based on Art. 6 para. 1 (b) DSGVO (necessary for the performance of a contract with you).

2. use of personal data

Where appropriate, we may use personal information about you to:


- to create your account;
- to determine how you use our App and/or Website and improve its stability, user flow and graphical interface;
- to identify and suggest connections with other users of the App and/or Website;
- to enable communication between users;
- to contact you regarding the Website, technical support, your account or other inquiries;
- to provide you with services or information you have requested or products or services you have ordered;
- prevent fraud or potentially illegal activity and monitor and enforce our App and/or Website terms, conditions, and notices;
- notify you of updates to the App and/or Website;
- monitor or improve the use of the App and/or Website or solicit input and feedback
feedback;
- deliver, customize and target the advertising and content you see to your audience (see Section 6 on Cookies);
- send you promotional materials or special offers; and
- disclose your personal information in certain circumstances.

3. disclosure of your personal data

Our policy is not to share your personal information except in the limited circumstances described below:


Service Providers - We may share your personal data with our service providers. Our service providers may be located in countries other than the country where the data was originally collected, including countries outside the European Economic Area ("EEA"). These countries may not have the same data protection laws as the country where you provided the data. If we transfer your data to other countries, we will protect it and comply with applicable laws that provide adequate protection for transfers of data outside the EEA.


Law Enforcement - We will cooperate with law enforcement authorities when and to the extent consistent with applicable privacy laws. This may include retaining or disclosing your personal information, including your registration information, if we believe in good faith that such action is necessary to comply with a law or regulation, or if we believe disclosure is necessary to comply with a judicial proceeding, court order or legal process, to resolve fraud, security or technical issues, or to protect our rights or property.


If applicable, the collection and processing of the personal data mentioned in the previous paragraph is based on Art. 6 para. 1 (f) DSGVO (according to Art. 6 para. 1 (f) DSGVO, the processing of personal data is lawful if it is necessary for the purposes of the legitimate interests of the controller (Seatti), unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject (you)) - our legitimate interest is the enforcement and protection of our rights or on Art. 6 para. 1 (c) (necessary to comply with a legal obligation of the data controller (Seatti)).


Business Transfers - In the event that Seatti or one of our affiliates is involved in a bankruptcy, merger, acquisition, reorganization or asset sale, your information may be transferred as part of that transaction if and to the extent consistent with applicable data protection laws.


The collection and processing of the personal data mentioned in the preceding paragraph is based on Art. 6 para. 1 (f) DSGVO. According to Art. 6 para. 1 (f) DSGVO, the processing of personal data is lawful if it is necessary for the purposes of the legitimate interests of the controller (Seatti), unless those interests override the interests or fundamental rights and freedoms of the data subject (you). Our legitimate interest is to be able to comply with our obligations in connection with such transaction.


Non-Personal Information - We may share or disclose your aggregated or otherwise non-personal information with third parties to perform industry analysis and demographic profiling.

4. storage and retention of data

The processing of your personal data usually takes place in Germany or in member states of the European Union. If, in certain cases, processing takes place in third countries, this will only occur if the adequacy of the level of data protection in the third country has been confirmed by the European Commission in accordance with Article 45 of the GDPR on the basis of the EU standard contractual clauses or if it has been ensured in another way that the level of data protection at the recipient is adequate.


We will retain your personal information for as long as your account is active or as necessary to provide products or services to you. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. We will not retain your personal information longer than is necessary for the purposes stated in this Privacy Policy.

5. data security

Seatti takes appropriate technical and organizational measures to protect the data against unauthorized, accidental or unlawful destruction, loss, alteration, misuse, disclosure or access and against all other unlawful forms of processing. These security measures have been taken taking into account the state of the art, the implementation costs, the risks involved in the processing and the nature of the personal data, with particular attention to sensitive data. In particular, appropriate awareness, confidentiality obligations and training ensure that the data are not transferred or disclosed to unauthorized persons.

6. cookies

Cookies are small data files that are transferred to your computer's hard drive. Like many websites, we use "cookie" technology to collect additional data about website usage and to improve Seatti, but for many parts of our app and/or website, such as searching and viewing public user profiles or lists, we do not require cookies.


The cookies we collect allow us to learn how people interact with Seatti. Cookies store information about your website visits and can recognize you and your preferences each time you visit Seatti. They help us to provide you with a better service.


If for any reason you do not want all your activities to be stored by Seatti, you can set your browser and cell phone settings to block cookies and local storage, but please remember that you may not be able to access all of Seatti's features if you do so.

6.1 Necessary and functional cookies

Some cookies are necessary for the functioning of the website and cannot be disabled. Without these cookies, you will not be able to view our website properly. We also use functional cookies that help us improve the performance of our website.


The collection and processing of the personal data mentioned in this section is based on Art. 6 para. 1 (f) DSGVO. Our legitimate interest is to analyze the use of the app and/or website and to improve our services. The necessary cookies are stored for the duration of your browser session.

6.2 Performance and advertising cookies

These cookies allow us to analyze the use of the website so that we can measure and improve performance. They are also used by advertising companies to serve ads that are relevant to your interests. These cookies contain a unique key to distinguish the browsing habits of individual users.


If you wish to prevent performance and advertising cookies from being stored, you can change your cookie preferences at any time by changing your cookie settings above.
The legal basis for performance cookies and advertising cookies is consent pursuant to Art. 6 para. 1 (a) DSGVO. Of course, you can revoke your declarations of consent at any time for the future. If you no longer consent to us passing on your data to the service providers named in our privacy policy, you can refuse this in the cookie settings on our website.

6.3 We use the following cookie variants

Required cookies

These cookies are necessary for the website to function correctly. They allow you to access and navigate the website and use various services, features and tools. Examples include remembering previous actions (e.g. text entered). These cookies cannot be disabled.

Analytics & Research

The Website uses Google Analytics, a web analytics service provided by Google, Inc ("Google"). Google Analytics uses "performance cookies" to analyze how you use the Website and the Services. The information generated by the cookie about your use of the website and services (including your IP address) will be transmitted to and stored by Google on servers in the United States. This website uses Google Analytics with the extension code "gat._anonymizeIp()"; therefore, only shortened IP addresses are further processed, so that a direct personal reference is excluded. Your IP address will be shortened beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area (i.e. the last octet of the IP address will be anonymized). Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. Google will use this information on behalf of the operator of the website for the purpose of evaluating your use of the website and its services, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. Google will not associate the IP address transmitted by your browser as part of Google Analytics with any other data held by Google. You can prevent the use of Google Analytics by disabling cookies in your browser settings. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the processing of this data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en.


For more information about Google analytic cookies, see Google's help pages and privacy policy:
- Google Privacy Policy
- Google Analytics Help Pages

Analysis & Feedback

We use Hotjar to better understand the needs of our users and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users' experiences (e.g., how much time they spend on which pages, which links they click, what users like and don't like, etc.) and allows us to build and maintain our Service using user feedback. Hotjar uses cookies and other technologies to collect data about the behavior of our users and their devices. This includes a device's IP address (processed during your session and stored in anonymized form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), and the preferred language in which our website is displayed. Hotjar stores this information on our behalf in a pseudonymized user profile. Hotjar is contractually prohibited from selling the data collected on our behalf.
For more details, see the "About Hotjar" section on Hotjar's support page.

Functionality

These cookies store your settings and preferences, as well as the choices you make (for example, language or regional preferences), to help us personalize your experience and provide you with enhanced features and content.

Website Security & Integrity

These cookies can help us detect and prevent security risks. They can be used to store your session information and help us with our anti-spam measures and can help us fend off phishers and scammers

Website Features & Services

These cookies help deliver experiences such as links to other social media sites, social plugins, and video content, including facilitating the sharing of content between Seatti and your favorite social networks. In some cases, we may allow third parties to place cookies or store data on your device - this is where Seatti's privacy policy ends and yours begins. The third party that places cookies on your device is responsible for how they process their data, so you should read their privacy policies and make sure you agree with them before you start sharing. You can find examples of such policies at the following links:

Performance

We need to use certain cookies and store data on your local storage devices to provide you with the best possible experience. They help you navigate our website and ensure that pages load quickly and respond promptly to your requests.

Our use of cookies and local storage devices, including the specific cookie names, may change over time, but generally falls under the above categories. Please visit this page regularly so that you are aware of any changes.


Notice about Do Not Track
Do Not Track ("DNT") is a privacy setting that users can make in certain web browsers. Currently, we do not recognize or respond to DNT signals.

7. children

Our App and/or Website is not intended for children under the age of 16 and we do not knowingly collect personal data from children under the age of 16. Children who are at least 16 years old may use the App and/or Website subject to prior consent to the collection and processing of their personal data as described in this Privacy Policy.

8. amendment of the privacy policy

We reserve the right to adapt this privacy policy to technical and legal requirements at any time. The most current version of the policy governs our use of your personal information and can always be found at https://www.seatti.co/legal/privacy-policy. If we make a change to this Privacy Policy that we determine, in our sole discretion, to be material, we may, for example, notify you by email to the email associated with your account or post a notice within Seatti. By continuing to access or use the App and/or the Website after these changes become effective, you agree to be bound by the revised Privacy Policy.

9. your rights

Overview
If the relevant legal requirements are met, you have the following rights under the GDPR:


1. The right of access (Article 15 GDPR)
You can request information about the following:
- Which of your personal data we process
- The purposes of the processing
- The category of personal data
- The categories of recipients to whom your personal data have been or will be disclosed
- The planned duration of the storage
- The origin of your data, if they were not collected directly from you


2. The right to rectify inaccurate data or to complete incomplete data (Article 16 GDPR)


3. The right to erasure (Article 17 DSGVO)
You have the right to request the erasure of your data. However, this right only applies insofar as we are not obliged to continue storing the data due to legal or contractual retention periods or other legal obligations or rights.

4. the right to restrict the processing of your data (Article 18 DSGVO)
You may request the restriction of the processing of your data if you dispute the accuracy of your data, the processing is unlawful but you do not wish your data to be deleted, we as the controller no longer need the data but you require it for the assertion, exercise or defense of legal claims, or you have objected to the processing of your data pursuant to Article 21 DSGVO. You have the right to object to data processing under the conditions set out in Article 21 (1) DSGVO on grounds relating to your particular situation. For this purpose, the reasons must be of overriding importance (e.g. danger to life and limb). This general right to object only applies to the processing purposes described in this Privacy Policy and the data processed on the basis of Article 6(1)(e) and/or (f) DSGVO.

5. the right to data portability (Article 20 DSGVO)
You have the right to receive selected data relating to you that is stored by us in a common and machine-readable format or to request that it be transferred to another controller.


6. The right to lodge a complaint with a supervisory authority
For this purpose, you may at any time contact the supervisory authority of the place where you reside, your workplace or the registered office of our company.


7. The right to revoke consent
Insofar as our data processing is based on consent given by you, you have the right to revoke your consent at any time with effect for the future. The consent is then deemed no longer given from this point in time. The revocation of consent is not retroactive. The processing of data during the period in which the consent was valid is not affected by this.


You can exercise the above rights by contacting us at Compliance@seatti.co.

10. contact information

If you have any questions or suggestions, or would like to correct your personal information, please email us at datenschutz@heydata.eu.

You can contact our data protection officer at the following address:


Data Protection Officer @Seatti
heyData GmbH, Schützenstraße 5 10117 Berlin Germany

Tel.: +498941325320