Timo Stübing
Kleekamp 54
22339 Hamburg
Deutschland
Phone: +49 40 73440190
E-Mail: info@helferlein.software
Internet: https://helferlein.software
The responsible party for the data processing of this service (hereinafter "App") is
Timo Stübing
Kleekamp 54
22339 Hamburg
Deutschland
Telefon: +49 40 73440190
E-Mail: info@helferlein.software
Internet: https://helferlein.software
(hereinafter "we" or "us") as the controller within the meaning of the applicable data protection law.
Within the scope of the app, we enable you to log amounts of money ("expenses"). For each expense, you can also enter detailed information, for example, when you made an expense and in which category it belongs for you.
You can access this privacy policy at any time under the menu item "Contact + Privacy policy" within the app.
In the delivery state, all data you enter in the app is stored exclusively on your device. At no time is it transmitted to us or to third parties. Furthermore, we do not process any personal data about you when you use the app. Personal data means any information relating to an identified or identifiable natural person.
The app offers you the possibility of sharing and automatic data backup ("Sync and Backup"). This function is switched off by default and can be switched on voluntarily. When you set up the Sync and Backup function for the first time, personal data will be collected, processed and stored. Depending on the login form, this includes the following data:
When activating Sync and Backup, a user account is created via the "Firebase Authentication" service and linked to the personal data you have provided.
Subsequently, all entries and categories as well as some app settings (together: "user data") are transferred once encrypted via the "Firebase Firestore" service to Google's servers and stored there in encrypted form. As long as the Sync and Backup function is activated and the app recognises an active internet connection, all changes to your user data will be automatically transferred to Google servers.
The collection, processing and storage of your personal data as well as the transmission of your user data is necessary to provide the Sync and Backup function and is carried out on the basis of Art. 6 para. 1 a), b) and f). By knowing your identity, we can improve your user experience, enable you to share the app and create and restore a backup. In addition we also ensure that no unauthorised access is made to your user data.
When connecting via a QR code or by entering a joining code ("Guest Join"), an anonymous user account is created that does not contain any personal data, but only a randomly generated user ID. The creation of an anonymous user account is necessary to control access to the shared data.
At no time are personal data or user data shared with third parties.
If you contact us (e.g. by e-mail), the data you provide (e-mail address, surname, first name, title, possibly telephone number) will be stored. These are used for the purpose of contacting you about your request. Your data will be deleted when storage is no longer necessary, you revoke your consent to storage or the purpose for storing the data no longer applies (e.g. after processing your request has been completed). Mandatory legal provisions - in particular retention periods - remain unaffected.
Some data processing operations are only possible with your explicit consent. You can revoke your consent at any time. For the revocation, an informal communication by e-mail to info@helferlein.software. is sufficient. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
As a person affected, you have the right to file a complaint with the responsible supervisory authority in the event of a data protection violation. The responsible supervisory authority with regard to data protection issues is the state data protection commissioner of the federal state in which our company's registered office is located. The following link provides a list of data protection officers and their contact details: shorturl.at/hlwHI
You have the right to have data—that we process automatically on the basis of your consent or in fulfilment of a contract—handed over to you or to third parties. The data will be provided in a machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.
Within the scope of the applicable legal regulations, you have the right at any time to free disclosure of your stored personal data, the origin of the data, its recipients and the purpose of the data processing and, if applicable, the right to correction, blocking or deletion of this data. In this regard and also for further questions on the subject of personal data, you can contact us at any time via the contact options listed in the imprint.
If you are using the Sync and Backup function, you have the possibility at any time to delete your user account from the app's settings. Upon deletion, your user account and your stored personal data are immediately deleted. Your user data will be deleted within 60 days.
If you use the Sync and Backup function as a guest, your anonymous user account will be automatically deleted when you disable the function.
This app uses features of the Expo software development platform ("Expo Framework"). The provider of the platform is 650 Industries, Inc., 624 University Avenue, 1st Floor, Palo Alto, CA 94301, USA.
Expo allows us to deliver the app simultaneously for Apple's iOS and Google's Android, as well as provide you with app updates.
The Expo framework allows us to provide in-app updates, so-called over-the-air updates. This means that the app performs a version check every time it is started and contacts the Expo servers. If a new app version is available there, it is automatically downloaded. No personal data or information that could identify the user or the device is transmitted, but only the latest app version and associated data, such as images or icons.
The Expo framework contains code of some services listed below by default. For technical reasons, the respective code is permanently connected to the Expo framework, but is inactive in this app.
All code of the mentioned services is inactive in this app. This means that no data is transmitted to Expo, or any of the other providers mentioned, nor is the Android Advertising ID read on Android devices or IDFA read on iOS devices.
You can voluntarily support this app with payments or purchase a subscription for the Pro version ("In-App Purchases"). All payments are processed via the Apple or Google in-app payment system. This app uses RevenueCat as a service for processing, verification, managing, and analysing these in-app purchases.
The provider of the service is RevenueCat, Inc. a Delaware corporation with company headquarters at 237 A St. PMB 65402 San Diego, California 92101-4003. RevenueCat's privacy policy can be found at https://www.revenuecat.com/privacy.
When making an In-App Purchase, RevenueCat collects the following anonymised data (hereafter "Transaction Data") in order to process the purchase:
Transaction data is transmitted and stored in order to offer you the recovery of your payment history and to and to be able to to carry out evaluations on the amount, frequency or country of origin of payments.
When using the Sync and Backup feature, the User ID generated by Firebase Authentication is also transmitted to RevenueCat and linked to the anonymised transaction data. This is necessary to assign the subscription status to your sync account, so that the app can display the correct subscription status – regardless of the device and platform used.
The transmission of transaction data is carried out in accordance with the provisions of Art. 46 DSGVO. RevenueCat stores the transferred data in the USA or Europe and is subject to the EU-DSGVO (EU 2016⁄679). More information on the data processing by RevenueCat can be found at https://www.revenuecat.com/dpa.
When carrying out an in-app purchase, the above-mentioned transaction data must be transmitted to RevenueCat; otherwise an in-app purchase is not possible. If you do not agree to this, please do not use the in-app purchases offered.
No personal information is collected or transferred during an in-app purchase, as the payment information in the Apple AppStore or Google PlayStore is not accessible from the outside.
This means that no information other than the above transaction data is collected or transmitted. The app does not send custom app user IDs or attribution information to RevenueCat.
Within the scope of the applicable legal regulations, you have the right at any time to free disclosure about the data stored by RevenueCat and the right to have this data deleted.
Information or deletion is only possible if you provide us with the anonymised User ID or the Sync Account ID stored on your device. Within the app, the anonymised User ID is displayed at this point. The Sync Account ID is displayed under the menu item "Sync and Backup", then "Manage Sync Account" when the "Sync and Backup" feature is enabled.
In any case, your data will be deleted at the latest after the legally prescribed retention periods.
When you use the app, some aspects of your usage behavior are collected anonymously and analyzed statistically. The collected usage data can be analyzed to improve the app and help us to better understand the usage of the app and to develop new features.
The app uses technologies from Google Firebase for this purpose. Google Firebase is a collection of services provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. You can find more information about Firebase here: https://www.firebase.com/terms/privacy-policy.html .
We use the services Authentication, Firestore, Analytics and Crashlytics in connection with Google Firebase.
Firebase Authentication (hereinafter: Authentication) is a sign-up and authentication service. We use Authentication to enable you to create a user account for shared use of the app and automatic data backup ("Sync and Backup"). If you do not use Sync and Backup, no data will be transmitted to Authentication.
The integration and use of Authentication is based on Art. 6 para. 1 lit. a), b), f) GDPR. Our legitimate interest within the meaning of the aforementioned provision lies in the provision of the functions described above for shared use of the app and the creation of automatic backups.
Registration and authentication can take place anonymously or via an email address and password. To simplify the registration and authentication process and improve the user experience, we use third-party identity services. This app uses "Sign in with Apple" and "Google OAuth (Sign in with Google)" as identity services.
To set up the Sync and Backup feature, especially to assign your stored data to your person - for example when setting up the feature on another device or restoring a backup after losing a device - the use of Authentication is absolutely necessary. If you disagree with the transmission of your personal data to Authentication, please do not use the Sync and Backup function.
When you join a sync account as a guest as part of the Sync and Backup feature - either by scanning a QR code or entering an access code - an anonymous user account is created with Google Authentication. This user account does not contain any personal data and consists only of a randomly generated user ID.
When registering via email address, you fill out a registration form and enter your email address and password yourself. Both are transmitted to Google and stored there, the password in encrypted form. The email address and an individual, randomly generated user ID are used by Google to identify your user account.
Sign in with Apple is a registration and sign-in service provided by Apple Inc., One Apple Park Way, Cupertino, CA 95014, USA. It allows you to sign in with selected information to this app without having to create and remember a separate password. If you wish, a separate relay address can be generated which automatically forwards messages to your personal email address. This keeps your actual email address unknown to us.
After signing in, we receive from Apple the email address you chose and the information you released. We use and store all of this information.
Further information on data protection for the "Sign in with Apple" feature can be found here: https://www.apple.com/de/legal/privacy/data/de/sign-in-with-apple/ .
Google OAuth is a registration and sign-in service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. It allows you to sign in to this app with your Google account information without having to create and remember a separate password.
When signing in, you will be redirected to a page from Google. There you can log in with your user data and at the same time consent to the processing of the following data by us. This links your Google profile to the app. Through this link, we receive the following information from Google:
Further information on data protection for the "Sign in with Google" feature can be found here: https://support.google.com/accounts/answer/12921417?hl=de .
Firebase Firestore (hereinafter: Firestore) is a database service. We use Firestore to enable you to share the app and create automatic backups ("Sync and Backup"). If you do not use "Sync and Backup", no data will be transferred to Firestore.
If you activate "Sync and Backup", the app transfers all entries, categories and some settings (together: "user data") once to Firestore settings via an encrypted connection to Firestore, where they are stored in encrypted form. Subsequently, all new user data and changes to existing user data are automatically transferred to Firestore. As long as Sync and Backup is activated, the app establishes a permanent connection to Firestore when it starts, so that it can be immediately informed about changed data and downloads it.
No inherently personal data is transferred when using Firestore. However, since you decide for yourself which information you record in entries or categories – for example as a note of an entry or as a name of a category - it may still be that personal data is transferred to Firestore and stored there. None of the data you record is evaluated by us or passed on to third parties.
The integration and use of Firestore are based on Art. 6 para. 1 lit. a), b), f) GDPR. Our legitimate interest within the meaning of the aforementioned provision lies in the provision of the functions described above for shared use of the app and the creation of automatic backups.
To use the Sync and Backup function, especially real-time synchronization and usage across multiple platforms (Android, iOS), the use of Firestore is absolutely necessary. If you do not agree with the transfer and storage of your user data at Firestore, please do not use the Sync and Backup function.
For more information about Firestore, please visit: https://firebase.google.com/support/privacy?hl=de .
We use the analytics service Firebase Analytics (heinafter: Analytics) to anonymously monitor and evaluate the usage behavior of users of this app.
Analytics includes various functions that allow us to analyze your in-app behavior. This allows us to determine which functions within our app are used frequently or infrequently, but not who exactly uses these functions.
For example, this allows us to track screen views, button presses, number of your sessions, session duration, operating system, device model, region, first time launches, app executions, app updates, and in-app purchases. An overview of all data types collected by Analytics can be found here: https://support.google.com/firebase/answer/6318039 .
The collected data enters into an anonymous statistic. This forms the basis for anonymous evaluations so that trends can be identified, which can be used to improve the content or structure of the app.
The integration and use of Analytics is based on Art. 6 (1) f) DSGVO. Our legitimate interest within the meaning of the previously mentioned regulation is the optimization of this app and the improvement of our offers.
No personal data is collected, especially not your IP address (see here: https://support.google.com/firebase/answer/9019185?hl=de#IP). Therefore, the collected data cannot be used to identify you personally. Furthermore, notes or amounts of entries or your configured categories are not collected.
There are no cookies in mobile apps. Instead, identifiers (called advertising IDs) are used, which are issued by the mobile device's operating system and can be reset by the user.
You can limit the data collection by Analytics by disabling the use of advertising ID in the device settings of your mobile device.
We use the analytics service Firebase Crashlytics to collect data about the behavior of our app in case of crashes or errors.
In the event of a crash, a crash report is generated and transmitted to Google's servers the next time the app is launched. This report contains information about the use of the app before the crash as well as the state of your end device (app version, device type, operating system, version of the operating system device ID, approximate location, time). This data is analyzed by us for troubleshooting, fixing problems and improving the app.
The integration and use of Firebase Crashlytics is based on Art. 6 para. 1 f) DSGVO. Our legitimate interest within the meaning of the previously mentioned regulation is the development of a functional app and the elimination of operational errors.