Obsrv.app – Privacy Notice

Last updated: 31 August 2022

Welcome to Obsrv.app!

When you use the Obsrv.app services (the "Services") or visit our website, we need to process some information about you to make our Services work and to evaluate how you use our Services. This information may include personal data about you.

This notice summarises how we collect and process your personal data in relation to the Services and our website and what choices you have with respect to your privacy.

What type of personal data do we process?

• Registration information : At the time of registration, we request certain information from you, such as your name, email address and your company’s name and address. This data is necessary for the provision of our Services.
• Payment information: For billing purposes, you need to provide billing and payment information, such as payment card details, and you company’s name and address. This data is necessary to provide you with the Services.
• Your use of the Services: We collect information about you when you visit and interact with the Services. This information includes internet protocol (IP) address, as well as browser type, operating system, device type, information on how often you use our Services and certain functionalities.
• Cookie information: We use cookies and other information gathering technologies for a variety of purposes. These technologies may provide us with personal data, information about devices and networks you utilize to access our website, and other information regarding your interactions. For detailed information about the use of cookies, please see section about “Why and how do we use cookies?”.
• Other information : You may decide to share further information, including personal data, with us when you submit forms on our website or otherwise communicate with us.

Why do we process your data?

• Services: We will use some of your personal data for the provision and maintenance of our Services.
• Billing: We will process certain information, such as financial data, for billing purposes, i.e. to complete transactions, and send you purchase confirmations and invoices.
• Communication: We will send you information regarding the Services, such as administrative messages, to your email address provided to us. Please be aware that you cannot opt out of receiving certain service messages from us, including necessary security alerts and legal notices.
• Marketing: Upon your consent, we may use your email address to send you marketing communications. To understand how our users interacts with our Services, and to improve the performance of our websites, online marketing campaigns and social media pages, we collect and analyse information.
• Developing Services : We use analytics software to allow us to better understand the behaviour of our users to grow our business. This software records information, such as how often our Services are used, and the events that occur while using the Services. We use this aggregated information to identify usage patterns and trends.
• Protecting our legitimate business interests and legal rights : Where required by law or where we believe it is necessary to protect our legal rights, interests and the interests of others, we use information about you in connection with legal claims, compliance, regulatory, and audit functions, and disclosures in connection with the acquisition, merger or sale of our business.
• Other : We may also process your data for any other purposes for which we obtain your consent where necessary or otherwise in accordance applicable law and this policy.

What is the legal basis of our data processing?

We collect and process information about you only where we have legal bases for doing so under applicable EU laws. This means we collect and use your information only where:

• It is necessary in order to provide you the Services, including to set up and maintain an account for you;
• It satisfies a legitimate interest (which is not overridden by your data protection interests), such as for research and development, and to protect our legal rights and interests;
• You give us consent to do so for a specific purpose;
• It is needed to comply with a legal obligation.

Who is responsible for the processing of your personal data?

The Services are provided by Daniel Schmidt, independent entrepreneur (address: Hámory Imre utca 30, 2051 Biatorbágy, Hungary) (the "Service Provider"). Accordingly, the Service Provider will be the controller of your data.

In any case, certain activities of the Service Provider are outsourced to third parties (see below).

Do we share your data with third parties?

We never sell your personal data to third parties. However, in certain cases we need to share your personal data with others. In any case, we will share your personal data only in accordance with applicable laws and this notice, and in the following cases:

• Legal compliance: We may transmit personal data if the applicable legal provisions so require, or when such action is necessary to comply with any laws, e.g. with criminal authorities if we are required to cooperate for such purposes. We may also need to share personal data for the protection of our rights and interests, to protect your safety or the safety of others or to investigate fraud, in accordance with the applicable laws.
• Third-party service providers : In certain cases, we use third party data providers. For example, we may outsource billing and payment transactions to third parties. Our data processors always undertake to use the personal data shared only in relation to their services provided to us.

Service provider	Seat	Service
DigitalOcean, LLC	101 Avenue of the Americas 10th Floor New York, NY 10013 United States	Data hosting
Amazon Web Services EMEA Sarl	38 avenue John F. Kennedy, L-1855 Luxembourg	Cloud storage
Billingo Technologies Zrt.	Árbóc utca 6, 1133 Budapest, Hungary	Billing
Stripe Payments Europe Limited	C/O A & L Goodbody, Ifsc, North Wall Quay, Dublin D01 H104, Ireland	Payment transactions
Google Ireland Limited	Google Building Gordon House, Barrow St, Dublin 4, Ireland	Analytics
Twilio, Inc.	101 Spear Street, First Floor, San Francisco, California, 94105, United States	Automated emails
Bright Data, Inc.	3 Hamahshev St., Netanya, Central District, Israel	Proxy network

In principle, your data is stored within the territory of the EEA. We will only transfer personal data outside of the EEA in accordance with applicable laws.

How and why do we use cookies?

We use cookies, web beacons, pixel tags, and similar technologies to make our service more attractive and to enable certain features. Cookies are small text files stored by us to your computer, smartphone or other device. They are unique to your device or your browser. There are other similar technologies which are sent to your computer or mobile device. We refer to all of these technologies as “cookies”.

We use the following types of cookies:

• Essential cookies : These cookies are essential for our website to function. They enable your movement around our website and, in the case of certain functions, they enable logging in, filling in forms or set preferences. This category of cookies cannot be disabled.
• Performance cookies : These cookies help us understand how visitors arrive at and browse our websites. These cookies also allow us to learn how well our websites perform and how our visitors navigate. Currently, we use Google Analytics for such purposes. You can learn more here: https://support.google.com/analytics/answer/6004245

You are free to decline cookies by applying the appropriate browser settings. Please note that if you choose to block cookies, doing so may impair or prevent certain elements of our Service from functioning.

How long will we process your data?

We will retain your personal data as long as it is needed to fulfil the purposes specified above (for example, to provide you with our Services, unless a longer retention period is required or permitted by law (such as tax, accounting or other legal requirements). When we have no ongoing legitimate business need to process your personal data, we will either delete or anonymize it in accordance with our deletion policy.

How do we protect your data?

We take appropriate technical and organizational measures to protect your personal data against any forms of unlawful processing.

Your privacy rights

You may ask us to:

• provide information to you about the personal data that we or our processors process about you,
• correct inaccuracies or amend your personal data,
• delete your personal data.

You can request this by send an email to hello@obsrv.app. We will respond to your request within thirty calendar days. Please note that, we may ask you to verify your identity before complying with the request.

You also have the right to complain to a data protection authority or claim damages before the court if necessary. For more information, please contact our supervisory authority, the Hungarian Data Protection Authority ( Nemzeti Adatvédelmi és Információbiztonság Hatóság in Hungarian):

Mail address: 1530 Budapest, Pf. 5

Telephone: +36-1-391-1400

Fax: +36-1-391-1410

Email: ugyfelszolgalat@naih.hu

Website: http://www.naih.hu

A list of contact details for the EU data protection authorities is available here.

Changes

Due to the ongoing changes in the law and the changing nature of technology, data practices are changing from time to time, and we may need to amend this notice. We will post the changes to this page and encourage you to review this notice to stay informed.

Third party controllers

Our webpage or Services may contain links to and from the websites or services of third parties. This notice does not apply to these third parties, or to the privacy practices of any other third-party products, services or businesses.

Any further questions?

If you have any further questions in relation to the processing of your data, please contact hello@obsrv.app.