Privacy policy (EN)

Privacy Policy

Remembli website is owned by Ployify GmbH, which is a data controller of your personal data.

We have adopted this Privacy Policy, which determines how we are processing the information collected by Remembli, which also provides the reasons why we must collect certain personal data about you. Therefore, you must read this Privacy Policy before using Remembli website.

We take care of your personal data and undertake to guarantee its confidentiality and security.

-> If you want to delete all your personal data, please click here.

1. introduction

The protection of your personal data is of particular concern to us. Consequently, we treat your personal data in accordance with the applicable legal provisions on the protection, lawful handling and confidentiality of personal data, in particular in accordance with the Data Protection Act (hereinafter ‘DPA’) and the General Data Protection Regulation (hereinafter ‘GDPR’). The following information explains how we process your personal data when you use our web applications (hereinafter referred to as ‘web apps’) and our mobile applications (hereinafter referred to as ‘mobile apps’).

2. name and contact details of the controller

Ployify GmbH (hereinafter ‘Ployify’) is responsible for data processing.

Ployify GmbH
Trauttmansdorffgasse 13/3/2
A-1130 Vienna
privacy@ployify.com

3. data processing

When providing our services, in particular our web app and mobile app, we process personal data of users who use our services. The specific data processing operations are described below:

3.1 Data processing Business Webapp

The following personal data is processed by us when an account is created and used:

- Name data;
- date of birth;
- gender data;
- address data;
- contact data (e.g. email address, telephone number);
- company data;
- additionally uploaded data (documents, images);
- order data (e.g. invoices from service providers);
- timestamp;
- IP address;
- log data.

The data is passed on to our IT service provider (processor), which is based in the EU.
Alternatively, you can log in to the web apps using Apple Sign-in or Google Single Sign-On (see below for details). The following data categories are processed:

- Name data;
- Email data.

The personal data is generally processed by us for the duration of the business relationship and in accordance with the legal requirements (retention obligations). The legal basis for the processing of your personal data is consent pursuant to Article 6(1)(a) GDPR, the fulfilment of pre-contractual and contractual obligations pursuant to Article 6(1)(b) GDPR and the fulfilment of legal obligations pursuant to Article 6(1)(c) GDPR (in order to comply with statutory retention obligations).

The provision and processing of your data is necessary in order to provide you with the service of our business web app.

3.2 Data processing Mobile App

The following personal data is processed by us when an account is created and used:

- Name data;
- gender data;
- company data;
- additionally uploaded data (documents, images);
- timestamp;
- log data.

The data is passed on to our IT service provider (processor), which is based in the EU.

The provision and processing of your data is necessary in order to provide you with the service of our mobile apps.

3.3 Data processing Hostinger

We use Hostinger (Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855, Luxembourg) as a hosting provider (processor) for our web apps and mobile apps. This corresponds to our legitimate interest within the meaning of Art. 6 para. 1 sentence 1 lit. f GDPR, as state-of-the-art hosting of our services is of particular concern to us. We use Paris, France, as the hosting location. In this context, we process the personal data already mentioned above for the individual web apps and mobile apps.
The provision and processing of your data is necessary in order to provide you with the service of our website, web apps and mobile apps.

Hostinger acts as a processor. As part of the contract processing relationship, Hostinger acts exclusively in accordance with our instructions and is contractually obliged to comply with data protection regulations in accordance with Art. 28 GDPR.

Further information on the data protection regulations can be found at the following link https://www.hostinger.com/de/legal/datenschutz-bestimmungen

3.4 Data processing Stripe

We work together with ‘Stripe’ (Stripe Payments Europe Limited, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, D02 H210, Ireland) as a payment service provider. On certain apps (Business Webapp, Service Provider Webapp, Family Member Webapp and Mobile App), payment transactions are therefore processed via Stripe. The following personal data is processed by us in this context

- Name of the bank account holder;
- email address;
- date and time of the transaction;
- transaction amount;
- name of the provider;
- location.

The provision and processing of your data is necessary to provide you with the service of our web apps, in particular payment transactions.

Stripe assumes a dual role as controller and processor for data processing activities. As controller, Stripe uses your submitted data to fulfil regulatory obligations. This corresponds to Stripe's legitimate interest (pursuant to Art. 6 para. 1 lit. f GDPR) and serves the fulfilment of the contract (pursuant to Art. 6 para. 1 lit. b GDPR). We have no influence on this process.

Stripe acts as a processor in order to be able to complete transactions within the payment networks. Within the framework of the order processing relationship, Stripe acts exclusively in accordance with our instructions and has been contractually obliged to comply with data protection regulations within the meaning of Art. 28 GDPR.

Stripe has implemented compliance measures for international data transfers. These apply to all global activities in which Stripe processes personal data of natural persons in the EU. These measures are based on the EU Standard Contractual Clauses (SCCs).

Further information on objection and removal options vis-à-vis Stripe can be found at: https://stripe.com/privacy-center/legal

3.5 Data processing Google Single-Sign-On

We use the authentication service Google Single-Sign-On, among others, to log in to our web apps and mobile apps.

Information from the third-party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

The provision and processing of your data is necessary to provide you with the best possible and frictionless service of our web apps and mobile apps.

Google may also process your data in the USA. Google participates in the EU-US Data Privacy Framework and complies with all regulations regarding the collection, use and storage of personal data transferred from the European Union to the USA. You can find more details under the following link: https://commission.europa.eu/system/files/2023-07/Adequacy%20decision%20EU-US%20Data%20Privacy%20Framework_en.pdf.

The EU Standard Contractual Clauses (SCCs) form a further basis for data processing in connection with Google.

For more information on Google's data protection regulations (Google Ads Data Processing Terms), please refer to the following link: https://business.safety.google/intl/de/adsprocessorterms/

Consent to single sign-on registrations can be revoked at any time by "opting out" at the following link: https://adssettings.google.com/authenticated

For more information on the data processed as part of Google single sign-on, please refer to the following link (privacy policy): https://policies.google.com/privacy?hl=de

3.6 Data processing Apple Single-Sign-On

We use the Apple Single-Sign-On authentication service, among others, to log in to our web apps and mobile apps.

Information from the third-party provider: Apple Inc, Infinite Loop, Cupertino, CA 95014, USA.

The provision and processing of your data is necessary in order to provide you with the best possible and frictionless service of our web apps and mobile apps.

The EU standard contractual clauses (SCCs) form a further basis for data processing in connection with Google.

For more information on Apple's data protection regulations, please refer to the following link: https://www.apple.com/legal/privacy/de-ww/

3.7 Data processing Firebase Authentication

Among other things, we use the authentication service Firebase Authentication to log in to our web apps and mobile apps.

Information from the third-party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

The provision and processing of your data is necessary to provide you with the best possible and frictionless service of our web apps and mobile apps.

The EU standard contractual clauses (SCCs) form a further basis for data processing in connection with Google.

For more information on Google's data protection regulations (Google Ads Data Processing Terms), please see the following link: https://business.safety.google/intl/de/adsprocessorterms/

For more information on the data processed in the context of Firebase Authentication, please refer to the following link (privacy policy): https://policies.google.com/privacy?hl=de

3.8 Data processing Firebase Cloud

We use the web hosting and cloud service Firebase for our web apps and mobile apps, among others.

Information from the third-party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

The provision and processing of your data is necessary to provide you with the best possible and frictionless service of our web apps and mobile apps

The EU standard contractual clauses (SCCs) form a further basis for data processing in connection with Google.

For more information on Google's data protection regulations (Google Ads Data Processing Terms), please see the following link: https://business.safety.google/intl/de/adsprocessorterms/

For more information on the data processed in the context of Google Single Sign-on, please refer to the following link (privacy policy): http://www.google.de/intl/de/policies/privacy

3.9 Data processing cookies

We use cookies on our web apps and mobile apps to provide our services. Cookies are small text files containing information that are stored on your end device when you access our web app and mobile app.

On our web apps and mobile apps, we only use consent-free cookies (so-called strictly necessary cookies) whose purpose is to enable the transmission of a message via an electronic communication network and cookies that are absolutely necessary to provide our services; such cookies are also processed by us without your consent.

For information purposes, we would like to explain the different types of cookies to you once again

Consent-free cookies and cookies requiring consent

Consent-free cookies are those cookies that we need in order to make the applications and functions available at all (so-called essential cookies). These cookies are only stored until you close your browser. All other cookies are cookies that require consent.

First-party and third-party cookies

First-party cookies are cookies that are set and retrieved by us or our commissioned processors. Third-party cookies are cookies that are set and accessed by other controllers. Consequently, a distinction must be made here as to where a cookie comes from.

Session and persistent cookies

Session cookies are cookies that are automatically deleted when the browser is closed and persistent cookies are cookies that remain stored on your computer/end device for a certain period of time after the browser is closed.

Specifically, the following cookies are used on our web apps and mobile apps:

AUTH_SESSION_ID_LEGACY

Ployify

Essentiell

---

__stripe_mid

Stripe

Set for fraud prevention purposes and helps Stripe assess the risk associated with an attempted transaction.

https://stripe.com/en-gb-at/legal/cookies-policy

Essentiell

---

__stripe_sid

Stripe

Set for fraud prevention purposes and helps Stripe assess the risk associated with an attempted transaction.

https://stripe.com/en-gb-at/legal/cookies-policy

Essentiell

---

localStorage-locale

Ployify

Locale of the application

Essentiell

---

localStorage-i18nextLng

Ployify

Language of the application

Essentiell

---

rows_per_page_for_*

Ployify

Store size of various application tables

Essentiell

---

iconify*

Ployify

Cache used icons for faster access

Essentiell

4 Google Fonts

We have embedded Google Fonts on our web apps and mobile apps. This is a service provided by Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. For this purpose, no connection is established with Google's servers in order to load and correctly display the required web fonts; instead, we have integrated the fonts locally.

The legal basis for the processing of your personal data is our legitimate interest in accordance with Article 6(1)(f) GDPR. Our legitimate interest is to make our web apps and mobile apps user-friendly and to display the texts and fonts correctly.

You can find more information about the use of data by Google in general at https://www.google.com/intl/de/policies/privacy.

5. automated decision-making / profiling

No automated decision-making, including profiling, takes place.

6. your rights as a data subject

We would also like to draw your attention to the following rights to which you are entitled as a data subject:

- Right of access by the controller to personal data concerning you under Article 15 GDPR
- Right to rectification under Article 16 GDPR
- Right to erasure under Article 17 GDPR
- Right to restriction of processing under Article 18 GDPR
- Right to data portability under Article 20 GDPR
- Right to object to processing under Article 21 GDPR
- Right to withdraw consent under Article 7(3) GDPR

You also have the right to lodge a complaint with the competent supervisory authority (in Austria, the data protection authority based in Vienna). In this regard, we refer you to the website of the Austrian Data Protection Authority at www.dsb.gv.atabrufbare. However, you can also contact us directly at the email address privacy@ployify.com if you have any complaints.

7. status

It may be necessary to update this privacy policy due to technical developments and new legal requirements. We will inform you of this in advance.

Status: 18.04.2025