TimeFlip sp. z o.o. (hereinafter "TIMEFLIP") develops and provides software under TIMEFLIP brand, including mobile, web and desktop apps for iOS, Android, Windows and MacOS (hereinafter Software) that is used to operate TIMEFLIP time-tracking device (tracker).
TIMEFLIP strives to use the minimum necessary personal data needed to make its products operational and implements reasonable measures to protect your personal data from unauthorized access, destruction, and modification. 2. Identity and contact details of the controller
The controller within the meaning of the GDPR responsible for the process of your personal data is the company TimeFlip sp. z o.o., registered under KRS number 803 396 in the National Court Register of Poland and having its legal seat at ul. Swiety Marcin 29/8, 61−806, Poznan, Poland. You may contact TimeFlip sp. z o.o. by post or via e-mail: firstname.lastname@example.org 3. Purpose for processing of personal data and types of personal data collected
Processing your order
If you place an order on TimeFlip website, we will collect and process personal data which includes your first name, last name, email address, shipping address, contact phone number and payment information. This personal data is necessary to conclude the purchase contract and fulfill your order. If you do not provide such data, we will not be able to close the contract and process your order.
We process your personal data as specified in this section in order to process your orders, manage your payments, send confirmations of your order, send you notifications of the delivery status and provide other after sales services and customer support. We further use your personal data in order to handle possible complaints or warranty matters. TIMEFLIP does not disclose this data to any third party, except for professional fulfillment companies which are contracted by TIMEFLIP to deliver orders exclusively.
The processing of your personal data as specified in this section is necessary in order to fulfill contractual agreements and is therefore based on Art 6 para 1 lit b GDPR (General Data Protection Regulation (Directive 95/46/EC)). Your account in TIMEFLIP software
If you create an account via our Web app newapp.timeflip.io
or our mobile app to be able to use TIMEFLIP software, we will collect and process personal data which includes your first name, your last name, your e-mail address, your IP-address, your password, IDs of your devices and time logs generated with the use of our software. It is necessary that you provide such personal data if you want to use TIMEFLIP software and services.
We process your data as specified above in order to manage your account and enable time tracking functionality of TIMEFLIP software and device. We further use your personal data in order to provide you with software updates.
The above mentioned personal data is stored on a secure AWS cloud, provided by the Amazon.com, Inc, headquartered at 410 Terry Ave N, Seattle 98 109, WA, USA. We request that a user’s password would ensure enough security by using a combination of minimum 8 symbols, including at least one letter, one number and one special symbol. User’s password is stored as a hash sum, assigning an ID for each user, which is used in communication between the device, mobile and web app. All data collected in the app is transmitted using https protocol. Time logs collected with the use of TIMEFLIP devices are sent to the mobile app using Bluetooth LE protocol. User-generated time data (time logs/entries) is totally impersonal and does not have any link to the actual user’s personal data. It is therefore fully anonymous and is not additionally ciphered.
The processing of your personal data as specified in this section is based on your consent when you create and use the account (Art 6 para 1 lit a GDPR) and, if applicable, on our obligation to fulfill contractual agreements (Art 6 para 1 lit b GDPR).
TIMEFLIP processes and analyzes fully anonymized statistical data in order to develop and improve our services. Communication
We will use your name and e-mail address to inform you about new features of our products or the latest news regarding TIMEFLIP. You can unsubscribe from receiving messages from us by using the respective link at the bottom of our e-mails.
We collect personal data that you provide when contacting us (such as your name, e-mail address, postal address or phone number) and will use such data for the purpose of processing your request.
The processing of your personal data as specified in this section is based on our legitimate interest (Art 6 para 1 lit of GDPR). Comply with legal obligations
We will use your personal data if we believe that it is reasonably necessary to comply with any applicable law, legal process or enforceable request from any competent governmental agency or court. 4. Recipients of your data
Location of recipient
It occurs that some of the recipients of your personal data are located outside the European Union and/or processes your data there. Nevertheless, TimeFlip only transmits your personal data to countries for which the EU Commission has decided that they have an appropriate level of data protection. If this is not the case, we take measures to ensure that all recipients have an adequate data protection level, for which we conclude standard contractual clauses (2010/87/EC and/or 2004/915/EC). Processing and shipping your order
For the purpose of processing and shipping your order, we share your personal data with ShipHero fulfillment service, headquartered at 55 W Railroad Ave, Bldg 4, Garnerville, New York, 10 923, United States. Analyzing tools
We use Facebook Pixel, an analytics tool provided by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbor, D2 Dublin, Ireland. Facebook Pixel allows us to measure conversion rates and to target visitors of our website with advertisements for our products and services in their Facebook — Account.
We use Freshdesk, an online cloud-based customer service software provided by Freshworks Inc, headquartered at 2950 South Delaware Street Suite 201 San Mateo, CA 94 403 United States. Freshdesk ensures multiple support channels, including live chat, email, phone, and social media, so that we can help our customers through their preferred communication method in order to provide quicker support.
The processing of your personal data as specified in this section is based on Art 6 para 1 lit of GDPR. 5. Period for which we store your personal data
For communication purposes as specified above, your personal data will be stored for the event that follow-up-communication occurs for a period of up to 24 months. 6. Your rights regarding the process of your personal data
Where the processing of your personal data is based on consent, you can at any time withdraw such consent. Upon such notice of withdrawal, we will cease to process your personal data and delete the data collected, except where processing your personal data is lawful even without your consent, like for example in case we have any legal obligation or legitimate interest. Please note, that such a withdrawal does not affect the lawfulness of processing your data based on your consent before the withdrawal.
You have at any time the right to request information about your stored personal data, their origin and recipients and the purpose of data processing. You also have the right to demand rectification, transfer, and, where applicable, to object or restrict the processing or deletion of inaccurate or improperly processed data.
In case of an information or revocation request, you need to file sufficient information to your individualization (at least your first name, surname and e-mail address) and valid evidence that this information refers to you. In these cases, or if you have other questions about our data security please contact our data protection office, whose contact details you will find below.
If you consider that the processing of your personal data infringes applicable data protection law, you can lodge a complaint with the competent supervisory authority. In Poland the competent supervisory authority is the Polish Personal Data Protection Office (Urząd Ochrony Danych Osobowych). 7. Data protection requests
All questions and requests regarding data protection shall be sent by email to email@example.com