Embedded Files
1. Data Protection Provisions
1. Data Protection Provisions
Conota e.U. has developed the Conota app as a freemium app. This service is provided by Conota e.U. free of charge (with the exception of eventual Pro features) and is intended for use on an ‘as is’ basis without any warranty for defects. User privacy is of utmost importance to us at Conota. Therefore, only data that is necessary to provide a reliable and efficient service is collected.
This Privacy Policy informs visitors and users of the Conota app in accordance with Art 13 GDPR about the conducted processing of personal data by Conota e.U. when using our service.
If you decide to use our service, you consent to the collection and use of information in accordance with this privacy policy.
The terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, which can be accessed at Conota, unless otherwise defined in this Privacy Policy.
2. Data Processing in Connection with the Conota App
2. Data Processing in Connection with the Conota App
2.1. Data or Categories of Data Processing when Using the Conota App and Purposes of Processing
2.1. Data or Categories of Data Processing when Using the Conota App and Purposes of Processing
User Data
When using the Conota app, user data is processed. This includes both data manually entered by the user, such as company name, logo, name, notes, and project names, job title, industry, company size, survey and feedback data, as well as analytics data. This data is processed for classic analytics evaluation, error analysis, and creation of a profile for the user.
The user profiles thus created are further used for targeted advertising for companies via the own IT infrastructure, and the data is processed in this sense.
The company name provided by the user is used for contacting to initiate a contractual relationship, especially the sale of a corporate license, with the respective company. However, user data is not transmitted in this process.
When using a corporate license, admin and employee accounts are also created, for which the following data is processed: company name, logo, email address, phone number, password, name, as well as usage data and device specifications of the end user. If the end user logs into their account via Google, Microsoft, or other services, relevant profile data such as email address, name, and profile picture are processed. The specific data processed is listed in advance. Information about employee accounts is shared with admin accounts.
Log Data
Whenever our service is used and in the event of an error in the app, we collect and process data and information (via third-party products) called log data from your used device. This log data includes the Internet Protocol (IP) address of your device, device name, operating system version, app configuration when using our service, the time and date of service use.
When processing log data, third-party services and content are included. Please refer to point 4 of this privacy policy for these processes.
Cookies
Cookies are files with a small amount of data that are stored on your device with the help of the browser.
The Conota app does not use cookies itself but may access code and libraries from third parties that use cookies. If you do not wish this, you can object to the use of cookies or allow this only in individual cases. Technical cookies are absolutely necessary for the proper functioning of the app and cannot be deactivated.
Other Data
When using the Conota app, the following data may also be processed:
In the context of payment processing, the following data is processed:
- Name of the organisation
- Adress
- Email adress
- Phone number
- Payment information (IBAN and BIC)
- VAT number and other identification numbers
In the context of targeted advertising for companies via the own IT infrastructure, the following data is transmitted to advertising partners via UTM tags in URLs:
- Job title
- Industry
- Company size
3. Legal Basis of Processing
3. Legal Basis of Processing
The legal bases for processing your personal data are:
- Necessity for the fulfillment of the contract and for the implementation of pre-contractual measures taken at the request of the data subject between Conota e.U. and the user (Art 6 para 1 lit b GDPR).
- Overriding legitimate interest, which consists in achieving the above-mentioned purposes (Art 6 para 1 lit f GDPR).
- Overriding legitimate interest in connection with the assertion, exercise, or defense of legal claims (Art 6 para 1 lit c GDPR).
The processing may also be based on your consent (Art 6 para 1 lit a GDPR). This consent can be revoked at any time, whereby the lawfulness of the processing carried out based on the consent until the revocation is not affected (see point 12.2. for more details).
The respective processing of your data is carried out only to the extent necessary (Art 5 para 1 lit c GDPR).
4. Data Recipients
4. Data Recipients
When using the Conota app, it may be necessary to transmit your personal data to the following recipients:
§ Data Recipient: Stripe, Inc
§ Purpose of data processing: Payment-Provider
§ Legal basis for data processing: Contractual Necessity (Art 6 para 1 lit b GDPR)
§ Registered office: USA
§ Secure third country transfer: Stripe, Inc is listed under the EU-US Data Privacy Framework (HR and Non-HR Data)
§ Data Recipient: Google LLC (Google Fonts; Google Analytics; Google Play-Dienste; Google Tag Manager; Firebase Crashlytics; AdMob, Firebase, Google Cloud Platform)
§ Purpose of data processing: Collection of fonts; statistical evaluation of the app; display of relevant advertising; measurement of conversion rate (success of the respective advertisement); advertising service; integrated map service; tag management system (control of when a tag is triggered);
§ Legal basis for data processing: Consent (Art 6 para 1 lit a GDPR), Contractual Necessity (Art 6 para 1 lit b GDPR) and Overriding Legitimate Interest (Art 6 para 1 lit f GDPR)
§ Registered office: USA
§ Secure third country transfer: Google LLC is listed under the EU-US Data Privacy Framework (HR and Non-HR Data)
§ Data Recipient: Meta Platforms, Inc
§ Purpose of data processing: Social Media Service; statistical evaluation of the app; display of relevant advertising; measurement of conversion rate (success of the respective advertisement); advertising service;
§ Legal basis for data processing: Consent (Art 6 para 1 lit a GDPR)
§ Registered office: USA
§ Secure third country transfer: Meta Platforms, Inc is listed under the EU-US Data Privacy Framework (Non-HR Data)
§ Data Recipient: RevenueCat, Inc
§ Purpose of data processing: Management of in-app subscriptions
§ Legal basis for data processing: Contractual Necessity (Art 6 para 1 lit b GDPR)
§ Registered office: USA
§ Secure third country transfer: Standard Contractual Clauses according to Art 46 para 2 lit c GDPRD
§ Data Recipient: Singular Labs, Inc
§ Purpose of data processing: Marketing and protection against click fraud
§ Legal basis for data processing: Overriding Legitimate Interest (Art 6 para 1 lit f GDPR)
§ Registered office: USA
§ Secure third country transfer: Singular Labs, Inc is listed under the EU-US Data Privacy Framework (Non-HR Data)
§ Data Recipient: AppsFlyer Inc
§ Purpose of data processing: Marketing und data analysis
§ Legal basis for data processing: Overriding Legitimate Interest (Art 6 para 1 lit f GDPR)
§ Registered office: USA
§ Secure third country transfer: AppsFlyer Inc is listed under the EU-US Data Privacy Framework (Non-HR Data)
§ Data Recipient: Other Advertising Partners
§ Purpose of data processing: Marketing and advertising placements; advertising analysis service;
§ Legal basis for data processing: Consent (Art 6 para 1 lit a GDPR)
§ List of Advertising Partners: https://sites.google.com/view/conota-ad-partners
5. Data in Stored Media
5. Data in Stored Media
The Conota app creates and stores various types of media such as photos, videos, audio, documents, and other files on the local storage of your device. The stored media files may contain personally identifiable or sensitive information. This information includes, but is not limited to, the content of the media (image, video, or audio), location data (address and coordinates), date and time, device model, as well as any additional information entered into the app, such as notes, reference numbers, project names, or company names. This data may be embedded in the media itself, for example through watermarks, in the file name, or in the metadata of the file, such as EXIF and XMP metadata.
Conota e.U. cannot be held responsible for how you use the media created with the Conota application. In particular, we are not responsible if you share or pass on the media to third parties for any reason.
6. Links to Other Websites
6. Links to Other Websites
Services and websites offered by Conota may contain links to other websites. If you click on a third-party link, you will be directed to that site. Please note that these external sites are not operated by Conota. We strongly recommend that you read the privacy policies of these websites. Conota has no control over and assumes no responsibility for the content, privacy policies, or practices of third-party websites or services.
7. Data Privacy for Children
7. Data Privacy for Children
These services are not directed to persons under the age of 14 . We do not knowingly collect personal data from children under 14 years of age. If we discover that a child under 14 has provided us with personal data, we will immediately delete it from our servers. If you are a parent or guardian and you know that your child has provided us with personal data, please contact us so that we can take the necessary measures.
8. Duration of Processing Your Data (Retention Period)
8. Duration of Processing Your Data (Retention Period)
We store your data only as long as it is necessary for the purposes for which we collected it. In doing so, we take into account legal retention obligations (for example, contracts and other documents from our contractual relationship must generally be kept for seven years for tax reasons according to section 132 BAO).
In justified individual cases, such as for the assertion and defense of legal claims, we may store your data for up to 30 years after the end of the business relationship.
We store data from interested parties (for example, visitors to our website/app or potential cooperation partners) for up to one year from the time of the last contact by the interested party.
9. Collection of Data from Other Sources
9. Collection of Data from Other Sources
We do not collect or process personal data about you from external sources.
10. Automated Decision-Making including Profiling
10. Automated Decision-Making including Profiling
We do not use your data for automated decision-making or profiling purposes according to Art 22 GDPR.
11. Your Rights Regarding the Processing of Your Data
11. Your Rights Regarding the Processing of Your Data
11.1. Right to Information, Correction, Deletion, Objection, and Data Transfer
11.1. Right to Information, Correction, Deletion, Objection, and Data Transfer
If the legal requirements are met, you have the following rights:
- The Right to Request Information about which data of yours is processed by us (see in detail Art 15 GDPR).
- The Right to Request Correction or Completion of incorrect or incomplete data concerning you (see in detail Art 16 GDPR).
- The Right to Delete your data (see in detail Art 17 GDPR).
- The Right to Object to the processing of your data that is necessary for the protection of our legitimate interests or those of a third party. This applies in particular to the processing of your data for advertising purposes (see in detail Art 21 GDPR).
- The Right to Receive and Transfer the data you have provided in a structured, commonly used, and machine-readable format (see in detail Art 20 GDPR).
If you wish to exercise any of these rights, please contact us at info@conota.app.
12. Withdrawal of Consent
12. Withdrawal of Consent
If we process your personal data based on your consent, you have the right to withdraw your consent at any time in accordance with Art 7 para 3 GDPR. This does not affect the lawfulness of the processing carried out based on the consent until the withdrawal.
If you wish to withdraw your consent, please contact us at info@conota.app.
13. Right to Complain to a Supervisory Authority
13. Right to Complain to a Supervisory Authority
Please contact us by post or email if there is an unexpected violation of your right to lawful processing of your data. We will process your request immediately!
You also have the right to lodge a complaint with the supervisory authority responsible for you in accordance with Art 77 GDPR. In Austria, this is the:
Österreichische Datenschutzbehörde (Austrian Data Protection Authority)
Barichgasse 40-42
1030 Wien
14. Contact Us
14. Contact Us
If you have any questions about our Privacy Policy, please do not hesitate to contact us at info@conota.app.
15. Responsible Party (Controller)
15. Responsible Party (Controller)
Controller within the meaning of Art 4 para 7 GDPR is:
Conota e.U.
Managing Director: Michael K. Kostner
Hauptstrasse 31 a-b
6840 Götzis, Austria
Email: info@conota.app
Page updated
Google Sites
Report abuse