Goodpatch GmbH, Oranienstraße 6, 10997 Berlin, Federal Republic of Germany (hereinafter referred to as “Goodpatch GmbH”, “we” or “us”) processes personal data of visitors of the website https://driveathena.com (“ the website”) and users of our services (hereinafter referred to as “users ” and” you “). Personal data means all data that refer to your person, e.g. name, address, e-mail addresses, user behavior. In the following we inform about the collection of personal data when using the website. This Data Privacy Notice describes how we as controller process your personal data and other information in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, “GDPR”).
If you create a user account on our website, you will be asked to provide personal information about you including but not limited to your name, address, e-mail address and telephone-number. We process such personal data for the purpose of providing our services for you. Providing your personal data is voluntary. However, without providing personal data, you will not be able to create a user account and receive our services. The legal basis for the processing of such personal data is the contract on the use of the website, respectively our service contract concluded with you (Art. 6 (1) lit. b GDPR).
If you contact us to speak with us about any use case or idea, possible workshops or to arrange for demos, you will be asked to provide your name and e-mail address. We will use your name and e-mail address for contacting you. Providing your name and email address is voluntary. However, without providing your name and e-mail address we will not be able to contact you. The legal basis for the processing of your personal data for sending newsletters is your prior expressed consent (Art. 6 (1) lit. a GDPR). You can withdraw your consent at any time without giving reasons by sending an e-mail to firstname.lastname@example.org or by sending a message to the contact details stated below.
If you register for our newsletter and consent to the receipt of newsletters and the processing of your email address for this purpose, you will be asked to provide your name and e-mail address. We will use your name and e-mail address for regularly sending you newsletters regarding product news, promotion and general information about us. Providing your name and email address is voluntary. However, without providing your name and e-mail address you will not receive newsletters. The legal basis for the processing of your personal data for receiving our newsletters is your prior expressed consent (Art. 6 (1) lit. a GDPR). You can withdraw your consent at any time without giving reasons and unsubscribe from the newsletter. You can declare the withdrawal by clicking on the link provided in each newsletter e-mail, by sending an e-mail to email@example.com or by sending a message to the contact details stated below.
Cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive and assigned to the browser you use and which send specific information to the party that sets the cookies. Cookies cannot execute programs or transmit viruses to your computer. They help make our internet platform more user-friendly and efficient. The cookies used by our website are described in the cookie bar.
Below is a list of the cookies used by Goolge Analytics and Youtube:
|Cookie Name||Expiration Time||Description|
|_ga||2 years||Used to distinguish users.|
|_gid||24 hours||Used to distinguish users.|
|_gat||1 minute||Used to throttle request rate.|
Device and Usage information
We collect device and usage information – that may include (i) information specific to the used device to access the Website including, but not limited to IP address, date and time of the request, Greenwich mean time (GMT) time zone difference, request content (concrete page), access status / HTTP status code, amount of data transferred, website that receives the request, browser, operating system and its Interface, language and version of the browser software and (ii) information about using features or notifications on the device to identify you so you do not have to log in each time you visit and analyze trends. The legal basis for this purpose are our legitimate interests (Art. 6 (1) lit. f GDPR) which are the following: Monitoring and maintaining the performance, stability and security of the website, simplifying the use and analysis of usage, trends and activities associated with our website to make our website more user-friendly and effective overall.
We also use analytical services. The legal basis for the processing of your personal data for sending newsletters is your prior expressed consent (Art. 6 (1) lit. a GDPR). You can withdraw your consent at any time without giving reasons by sending an e-mail to firstname.lastname@example.org or by sending a message to the contact details stated below.
Business Partner Data
In the context of our business relationship, we process the personal data of our business partners and business partner’s employees who communicate with us. The legal basis for this purpose are our legitimate interests (Art. 6 (1) lit. f GDPR) which is conducting our business and the performance of our contractual obligations towards our business partners. Business partners and employees concerned may, in order to exercise their rights, contact our data protection officer and also exercise their right to complain to a supervisory authority (see below under Your Rights). Storage of data takes place within our retention periods (see below under Data Storage).
Transfer of Personal Data to Third Parties
Goodpatch GmbH may engage external service providers who act as data processors for Goodpatch GmbH to provide certain services to Goodpatch GmbH, such as: website service providers or IT support providers. When providing such services, these external service providers may have access to and / or may process your personal data. Pursuant to Art. 28 GDPR, these external service providers are contractually obliged to take appropriate technical and organizational security measures to safeguard personal data and to process personal data only as instructed.
Goodpatch GmbH may also transfer your personal data to law enforcement agencies, government authorities, legal counsel and external consultants in accordance with applicable data protection laws. The legal basis for such processing is to comply with any legal obligation that we are subject (Art. 6 (1) lit. c GDPR) to or have legitimate interests, such as the exercise or defense of legal claims (Art. 6 (1) lit. f GDPR).
International Transfer of Personal Data
The personal data that we collected or received from you may be transferred to and processed by recipients which are located inside or outside the European Union and European Economic Area and which do not provide for an adequate level of data protection. To the extent your personal data is transferred to countries that do not provide for an adequate level of data protection from an EU law perspective, we will base the respective transfer on appropriate safeguards, such as standard data protection clauses adopted by the European Commission. You can ask for a copy of such appropriate safeguards by contacting us under the below stated contact data while the access is limited to recipients with a need to know.
Goodpatch GmbH maintains up-to-date technical and organizational measures to ensure the security of data processing in particular to protect your personal data against dangers in data transfers as well as against disclosure to third parties. These measures will be adapted to the state of the art, the protection of personal data and the risks to your rights and freedoms. Insofar as third parties act as processors for us, we ensure the up-to-date technical and organizational measures at such processors to ensure the security of data processing.
Your personal data will be retained as long as necessary to provide you with the requested services. If we no longer need to use your personal data to comply contractual or regulatory obligations, we will remove it from our systems and records and / or take steps to properly anonymize it so that it can no longer be identified from it unless we need to keep your personal information, including personal information to comply with any legal or regulatory obligations to which we are subject, e.g. statutory retention periods resulting from the commercial code or tax laws or when we need data to obtain evidence within the statutes of limitations.
If you have declared your consent for any processing activities, you can withdraw this consent at any time with future effect. You can declare the withdrawal by e-mail to email@example.com or by sending a message to the contact details stated below. A withdrawal will not affect the lawfulness of the processing prior to the withdrawal.
Next to any information obligations of us under the GDPR, you have the following rights with respect to the personal data concerning you:
- Right of Access,
- Right of Rectification,
- Right to Erasure („Right to be forgotten“),
- Right to restriction of processing,
- Right to object to processing,
- Right to data portability.
You also have the right to lodge a complaint with the competent data protection supervisory authority. To exercise your rights, please use the contact details below.
Responsible Controller and Data Protection Officer
Controller pursuant to Art. 4 para. 7 EU GDPR and addressee of your rights is Goodpatch GmbH, Oranienstraße 6, 10997 Berlin, Germany, Federal Republic of Germany.
Phone: +49 30 81 45 75 99 0 E-Mail: firstname.lastname@example.org
Our Data Protection Officer (DPO) is Mr. Jan Bisson
Phone: +49 30 81 45 75 99 0 E-Mail: email@example.com
When you contact us and our DPO, the personal data you provide will be stored to answer your questions. We will delete such data after storage is no longer required, or limit the processing in case of statutory retention requirements. The legal basis for such processing is to comply with any legal obligation that we are subject (Art. 6 (1) lit. c GDPR) to or have legitimate interests, such as the exercise or defense of legal claims (Art. 6 (1) lit. f GDPR).