Privacy Policy - All In App All In App

Privacy Policy

image

By using The All In App you entrust The All In App Inc. with your data. The objective of this privacy policy is to be transparent and inform you, as a user of The All In App software, about the following:

– what kind of data will be processed,

– why this data is processed,

– how the data we collect is used,

– how and when the data is deleted,

– what rights you have as a user of The All In App.

I. Overview and definitions

The All In App offers companies a social intranet as a service for the supply of internal information, communication and networking.

This privacy policy applies to The All In App customers and their employees, as well as any other end users identified by the customer. It includes all associated services (The All In App services), among others the use of The All In App software as a social intranet on the desktop, as a web view app, or mobile app. The term “customer” refers to those companies that use The All In App software and have concluded corresponding contracts or maintain pre-contractual relationships with us, The All In App.

End users” are the employees of such companies, but possibly also their suppliers, sales representatives, etc. who actively use The All In App software and thus implement an individual social intranet. The All In App is not in a direct contractual relationship with the end users, we only specify a contract with the customer.

II. Reservation to change

The circumstances and purposes of the data processing may change. We will inform you about the adjustment of our privacy policy in good time and detail if your rights or freedoms are affected by said changes.

IV. Data processing with The All In App services

By using The All In App’s services, connection data can be collected automatically in addition to the data you provide yourself. The information that is relevant to you and therefore particularly worthy of protection for us are those by means of which you can be personally identified:

  • e.g. name
  • e-mail address
  • telephone number
  • Other forms of “personal data”.

We process these only to the extent that we have been instructed to do so by the responsible customer or to the extent it is necessary in order to provide you with an optimal user experience of The All In App for your company.

1. Automatically processed data

a) Access data

By using The All In App Services, your device automatically transmits information to our server, which is stored temporally as logfiles. These logfiles include:

– IP address

– Browser

– Operating system and device

– Network

– Date and time of any request

– The website making the request

– Respective volume of data transferred

This data is necessary for us to display you our services and guarantee stability and security. This data is collected in order to provide improvement of data protection, network protection, and overall information security. The data is stored for up to seven days and deleted afterward; except for when a threat from the user has been discovered.

b) Cookies and Local Storage

For statistical evaluation and reach measurement we use cookies and other local storage technology. Cookies are small text files that are stored on your hard disk in association with the browser you’re using and by which the body which sets the cookie (in this case, us) transmits certain information. Cookies cannot run programs or deliver viruses to your computer. They exist and serve to make our services more user-friendly and effective.

Local storage stores data locally in the cache of your browser. This data is stored persistently; therefore, this data also remains stored after closing your browser window or the program. You may erase them by deleting your browser’s history. Local storage enables us to save your preferences when using The All In App on your device, so they will be accessible the next time you visit. The following data may be stored locally:

– Your last login name

– User language

– messaging sidebar (if left open)

– Your filter settings

Third parties do not have access to the data stored in local storage. The data will neither be transmitted to third parties nor used for advertisement. We use this technology as well as the storage of cookies out of our legitimate interest to present you a high-quality experience with The All In App.

You can configure your browser settings as desired and refuse to accept any cookies or delete them. You also receive an overview of all stored cookies and local data. On mobile devices identifiers can be deactivated accordingly. You can figure out how that works in the help menu of your device or browser settings. Please note that you may not be able to use all functions of our services if certain identifiers are deactivated.

2. Data provided by the user

The sharing of content and information by users lies within the nature of a social intranet. In addition to your registration, you also provide data by posting and commenting. The contracts with our customers or your company prevent us from using this content unless it is necessary for the provision and optimization of our services, or legally required. This is therefore not processed by us beyond the mere storage on the servers of our service providers. We also have no control over the content of this data, which is rather the responsibility of the customers. We also generally delete such data only at the request of the responsible person/customer, or after the end of our contractual relationship with them.

a) Registration data

In order to be able to use The All In App services, a user account must be created. Your name and e-mail address must be entered. There is no obligation to use a real name, which means that you are not forced to reveal your true identity if you do not wish to; you may also choose a nickname. Note that your company may require you to register with a real name. You may also voluntarily provide additional information to personalize your profile. This additional information includes:

  • such as date of birth
  • cell phone number
  • Address
  • job title/department.

The registration data is collected so that you can register for The All In App services and use them. The All In App collects data out of the interest to provide a user-friendly experience. The responsible body for all data collection is the customer.

A complete deletion of user accounts, as well as a reactivation on demand, is not feasible; however, in the event of an account being deleted by the end user, the customer has the option of setting a deadline after which the personal data is automatically anonymized. After this period of time, identification of the user is no longer possible and recovery of the account is then excluded.

b) Communication data

The All In App services offer you the possibility to post your own content, comment on others’ or communicate with your employees via our messaging feature and internal feed (see your company’s internal terms of use). These are core functions of a social intranet, the data processing is therefore carried out for the purpose of providing our services. Along with these core functions, your photos or camera will never be accessed without first obtaining your consent. Even with consent, only the photo you select will be accessed, never your entire library (unless permission to your camera roll is given) You can later revoke or renew your consent at any time directly in the settings of your device.

If you decide to delete your account, your posted content and comments will be retained

c) Analysis Tools Function

The All In App and its customers can use The All In App Analytics extension to analyze usage data. The All In App Analytics helps to collect, organize and analyze usage-relevant data in order to make statistical information visible. This way, for example, the platform activity, as well as the relevance and acceptance of content, can be classified, whereby information can be addressed to employees in a more targeted manner. In particular, this can improve the performance of The All In App software and the internal communication amongst employees.

The data will not be used for any other purpose, combined with other data or passed on to third parties. IP addresses are not collected and cookies are not used for analysis by The All In App’s Analytics.

The All In App’s legitimate interest and that of the customer is the concern to further improve the All In App software and optimize the content provided.

V. Data processing when using The All In App

In addition to using The All In App on your desktop, we provide the corresponding webview app (which you can download to your mobile device from the app store).

1. When downloading

Data transmitted by you to the app store, e.g. your payment information or customer number, will be collected and processed by the respective store operator. We are not responsible for this. To find out about this data processing, please check the corresponding privacy policy of the store operator.

 

2. Web Analysis Tools

For the apps, we use so-called web analysis tools. Similar to how we were commissioned by our customers to process data, we instruct (analysis) service providers to use data for us. They collect data regarding the behavior of end-users and help us to evaluate them in order to optimize our services and your experience with The All In App. For example, we want to know how many end-users use our apps, which functions they are most interested in, and where there is room for improvement; therefore, the goal of using analytical tools is to maximize usability. Analysis tools could identify individual users; however, as it is a regular collection of purely statistical data, personal identification is not required. Rather, measures are taken to anonymize personal user data and thus exclude a specific allocation to individual end users.

Listed below are the tools we will use and the data they process:

 

a) Google Analytics

  • Uses cookies/mobile identifiers, and the collected information from which is transmitted to and stored by a Google server in the United States. Google evaluates this statistical data on our behalf so that we can make our offering more interesting and user-friendly for you. The stored usage processes will be otherwise deleted after 14 months at the latest.

Here is an extra link you can visit If you would like to learn more about Google Analytics:

– https://marketingplatform.google.com/about/analytics/terms/us/

VI. Your rights

Here you can inform yourself what rights you have and how you can exercise them.

Our customer, i.e. your company is responsible for the processing of your personal data and the safeguarding of your rights. We are committed to supporting our customers and we want to facilitate the exercise of your rights.

If you e.g. want to correct or delete the personal data that you have registered in the social intranet of your company, please refer to the responsible person in your corporation. Should you contact us directly, we will forward your request to the responsible customer (i.e. your company) and await his instruction.

 

1. Right to access

You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, as well as access to the personal data/following information:

  • why this is happening
  • what kind of data categories are being processed
  • to whom the personal data has been disclosed
  • how long the data will be stored or the criteria used to determine that period respectively
  • whether the right to request rectification or erasure of personal data or restriction of processing personal data concerning you
  • the right to lodge a complaint
  • to what extent guarantees for the data transfer to a third country exists

2. Right to rectification

Should data concerning you be inaccurate or incomplete, you have the right to obtain rectification or completion respectively.

 

3. Right to data portability

You have the right to receive the personal data concerning you and to transmit those data to another controller.

 

4. Right to restriction

You have the right to obtain restriction of processing. If you contested the accuracy of the personal data or objected to processing, for a period enabling us to verify the accuracy or whether the legitimate grounds of us override those of you. You may also obtain restriction of processing the following:

  • if the processing is unlawful
  • if you oppose the erasure of the personal data and request the restriction of their use instead
  • if the data is not needed anymore for the purposes of the processing, but they are required by you subject for the establishment
  • exercise or defense of legal claims.

We will then be subject to the instruction of the customer and ensure that your data still remains; however, it will be excluded from processing. You will be informed in time if the restriction is lifted again.

 

5. Right to erasure

In case your personal data is no longer necessary in relation to the purposes for which they were collected, you objected to the processing or withdrew consent on which the processing is based or there is no other legal ground for the processing, you have the right to obtain the erasure of personal data concerning you without undue delay. The same applies if the data has been unlawfully processed.

Your data will not be erased if the processing is necessary to fulfill a legal obligation. In such cases, we restrict the processing subject to the instruction of the customer. We will act accordingly in cases where the data is necessary for the establishment, exercise, or defense of legal claims.

6. Right to lodge a complaint

You additionally have the right to lodge a complaint with a supervisory authority. You can therefore appeal to the supervisory authority of the state in which the customer has its registered office.

VII. Right to object pursuant and consent withdrawal

You can at any time object to processing which is based on the purposes of legitimate interests. In exercising your right to object you should state the reasons why the processing should be stopped. Your interest thereby needs to override the interest of our customer to process. This can rely on grounds relating to your particular situation. In case of a reasoned objection, we will together with your company examine the situation and either no longer process your personal data or adapt the processing accordingly or demonstrate compelling legitimate grounds for the processing. Given consent to the processing can be withdrawn at any time.

VIII. Data security

We have taken technical and organizational security measures to prevent unwanted access to your data. In particular, we encrypt any transfer to the SSL / TLS standard in conjunction with the respectively highest encryption level supported by your browser or device. Our employees are committed to confidentially and carefully handling personal data. In addition, all service providers have been checked by us.

We also use appropriate technical and organizational security measures in accordance with our internal data protection concept to protect your data against accidental or intentional manipulation, partial or complete loss, destruction, or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

As of May 17, 2022.