PRIVACY POLICY

We care deeply about our Users' privacy, security, and online safety, all of which are a significant part of becoming a trustworthy and reliable business partner. This Privacy Policy („Policy”) is designed to inform you about how we collect, use, and share your personal data, your rights regarding the information you provide to us – especially in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, also known as General Data Protection Regulation (“GDPR”), that entered into force on 25th May, 2018.

Contents:

1. Basic definitions.
2. Categories of Personal data we can process
3. Purposes and legal basis for Personal data processing
4. Personal data retention period
5. Disclosure of your Personal data
6. Your rights
7. Analytics
8. Automated-decisions making
9. Changes to the Policy

This document explains how we process your personal data when you use our Applications.

1. BASIC DEFINITIONS

Personal data – any information relating to you, that allows your identification i.e.: name, surname, e-mail address, phone number, IP address etc.;

User, you – an end user of the Application;

Application – a software provided and managed by us, allowing Users to record audio and create transcription of it with summary;

Controller – Realms Distribution limited liability company with registered office in Wrocław (50-127), address: ul. Św. Mikołaja 58, entered in the Register of Entrepreneurs kept by the District Court for Wrocław-Fabryczna in Wrocław, VI Commercial Division of the National Court Register under KRS number 0000637257, NIP (Taxpayer Identification Number): 8992798122, share capital: 26 500 PLN, further referred to as “we”, “us”, “our”, etc.

You can contact us with all questions relating to your personal data processing at privacy@awakenrealms.com.

Here you can find basic definitions used in our Policy.

2. CATEGORIES OF PERSONAL DATA WE CAN PROCESS

In connection with your use of our mobile Application, we may process the following data: device manufacturer and model platform type (iOS, Android, Mac, Windows, etc.) and the operating system and version running on your system or device; language; CPU information such as model, the number of CPUs present, frequency, and instruction set support flags; the graphics card type and vendor name; graphics card driver.

Because of that we use third-party services to analyze our mobile Application, we can also collect such data as libraries and SDKs, webview, information about ephemeral processing and pseudonymous data. We can share with our third-party services’ providers also information about off-device (such as server to server transfers), on device transfer to another app and crash logs.

Here you can read about what personal data we collect and process.

3. PURPOSES AND LEGAL BASIS FOR PERSONAL DATA PROCESSING

We can process your Personal data for the purpose of enabling you using our mobile Application and such processing is necessary for the performance of a contract between you and us (art. 6.1(b) of the GDPR). Providing us with such data is not your legal obligation, but it is necessary for you to make use of our mobile Application.

We can process your Personal data for the purpose of analysis of our mobile Application usage and errors/bugs statistics in accordance with our legitimate interest (art. 6.1(f) of the GDPR). Providing us with such data is not your legal obligation and you may object to such processing of your Personal data at any time.

Please also be aware that in case you contact us or we will need to defence or enforce claims related to our Application, we will process your Personal data in accordance with our legitimate interest (based on the art. 6.1.(f) of the GDPR).

In brackets you will find the legal basis for processing your personal data. GDPR stands for General Data Protection Regulation, an EU regulation. You can find it on the official websites of the EU institutions, like https://eur-lex.europa.eu/.

4. PERSONAL DATA RETENTION PERIOD

We store your personal data for the following period:

1. we store your Personal data related to your usage of our mobile Application as long as you use our mobile Application and we process data necessary for the performance of the contract for the duration of the contract (as long as you have our mobile Application downloaded) and no longer than 6 years after its termination;
2. we store your analytic data no longer than 18 months;
3. we store the data necessary to respond to your inquiries for as long as is necessary to resolve your case or as long as is required by law for the limitation periods of claims;
4. we process data necessary to establish or assert possible claims or defend against such claims for the period of limitation of such claims.

Here you can read about how long we will process your personal data and when we will delete it.

5. DISCLOSURE OF YOUR PERSONAL DATA

In any case that we process your Personal Data you can be assured that the access to your Personal data will be granted only to:

1. authorized employees and co-workers, who are obliged to keep them secret and not to use them for purposes other than those for which we have collected them,
2. entities that support us in our service providing, based on appropriate contracts e.g. legal, consulting, telecommunication service providers.

All these entities will have access only to necessary Personal data.

We may also be required to provide specific information relating to you, to public authorities for the purposes of proceedings conducted by them. In this case, the information is provided only if there is a proper legal ground.

We may transfer your Personal data outside of the European Economic Area (especially to the USA), based on a decision on the adequate level of data protection in a third country, standard contractual clauses or binding corporate rules. If we process your personal data outside the European Economic Area, we ensure that we apply appropriate legal safeguards and verify suppliers located in a third country. If you would like to learn more about data transfers, we will be happy to answer any questions you may have and provide you with more detailed information on your personal data transfer. In particular, you can always get information from us about (1) whether your personal data is being transferred outside the EEA, (2) in which country your personal data may be processed, (3) which entities and on what basis have access to your personal data.

6. YOUR RIGHTS

You have the following rights:

1. right of access. In any time, you can obtain from us confirmation as to whether or not your Personal data are being processed, access to the Personal data and to the following information:

• the purposes of the processing;
• the categories of Personal data concerned;
• who are the recipients;
• where possible, the envisaged period for which the Personal data will be stored, or, if not possible, the criteria used to determine that period;
• where the Personal data are not collected from the data subject, any available information as to their source;
• the existence of automated decision-making, including profiling, and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

2. right to rectification. If you feel that the information relating to you is incorrect or incomplete, you have the right to request the rectification of that data.
3. right to withdraw the consent. You can withdraw your consent at any time, without affecting the legality of the processing, which was performed prior to this withdrawal.
4. right to erasure (‘right to be forgotten’). The GDPR gives you the right to obtain from us the erasure of all your Personal data. We are obligated to make your request, only if one of the following grounds applies:

• your Personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
• you have withdrawn your consent on which the processing is based and there is no other legal ground for your Personal data processing;
• you object to the processing and there are no overriding legitimate grounds for the processing;
• you object to the processing for direct marketing purposes;
• the Personal data have been unlawfully processed;
• the Personal data have to be erased for compliance with a legal obligation in European Union or Member State law to which the controller is subject;
• the Personal data have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.

5. right to restriction of processing. You can also obtain the restriction of processing, where one of the following applies:

• you contest the accuracy of the Personal data – for a period enabling us to verify the accuracy of the Personal data;
• the processing is unlawful but you oppose the erasure of your Personal data and you request the restriction of their use instead;
• we no longer need your Personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defense of legal claims;
• you have objected to your Personal data processing – only until the dispute is resolved.

6. right to data portability. You have right to receive your Personal data in a structured, commonly used and computer-readable format and have the right to transmit those data to another controller, when:

• the processing is based on your consent or on a contract, and
• the processing is carried out by automated means.

7. right to object. According to the GDPR you have right to object:

• to processing of your Personal data, when it is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in Controller – on grounds relating to your particular situation;
• to processing of your Personal data, when it is necessary for the purposes of the legitimate interests pursued by us or by our third party, except where such interests are overridden by the interests or your fundamental rights and freedoms which require protection of Personal data, in particular where the data subject is a child, including profiling – on grounds relating to your particular situation;
• at any time – to processing of your Personal data for direct marketing purposes, which includes profiling to the extent that it is related to such direct marketing;
• to processing of your Personal data for scientific or historical research purposes or statistical purposes – on grounds relating to your particular situation.

If, in spite of your objection, we consider that there are important, legally valid grounds for further processing of your Personal data, which override your interests, rights and freedoms, we can continue processing your Personal data.

If you disagree with the above mentioned our situation assessment, you have the right to lodge a complaint with a supervisory authority.

8. right to lodge a complaint with a supervisory authority. Due to our actions as a Controller, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement.

If you want to lodge a complaint in Poland, since 25th May 2018 the function of the supervisory authority is held by the President of the Data Protection Office / Prezes Urzędu Ochrony Danych Osobowych (PUODO), address: ul. Stawki 2, 00-193 Warszawa, Poland. A detailed description of the procedure for lodging a complaint to PUODO is available on the website maintained by PUODO which you can access by clicking the following link: https://uodo.gov.pl/.

To ensure the best possible functioning of our Application, in some areas we need to use the support of other entities that specialize in these areas.

Before sharing your personal data, we always verify that the recipient is reliable and guarantees compliance with the highest standards of data protection.

Here you can find out about processing your Personal data outside the European Economic Area.

You are in full control of your personal data, to which we have access.

Here you can read about what you can request from us in connection with our processing of your personal data. And we assure you that we will be happy to fulfill your every expectation and request to the extent permitted by law.

7. ANALYTICS

We can use Firebase Crashlytics, which is an analytical tool designed to collect and analyze user data for mobile applications and enable us to perform, diagnose, report errors and track bugs. Detailed information about the scope and principles of data collection related to our mobile Application can be found here and here.

We can also use Google Analytics. Google Analytics are files used by Google to analyze how the application is used and to create statistics and reports regarding the performance of the application. Google does not use the collected data to identify the user, nor does it combine this information to enable identification. Detailed information about the scope and principles of data collection related to our mobile Application can be found here.

Firebase Crashlytics helps us to find out more about errors that has occured in our Application. Thanks to that we will be able to repair them as soon as possible.

Google Analytics helps us to find out how the Applications behave and thanks to that we are able to customize our services.

8. AUTOMATED-DECISIONS MAKING

We will process your personal data by automated means. However, we do not use any information you provide for automated decision-making purposes, including profiling.

In providing you with a mobile Application, we need to use various software and IT tools. However, no algorithm will make any decision directly about you.

9. CHANGES TO THE POLICY

The provisions of the Privacy Policy are subject to improvements and changes, and the latest version will be published each time and will be dated as of the last update.

Changes to our Privacy Policy  may occur.