Sign In

Privacy Policy

Last updated: 01.10.2024

Introduction

TimeCapsule Services e.U. (“we,” “us,” “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you use our services, including collecting media files from wedding guests and processing them for the wedding couple and authorized guests.

1. Data Controller

TimeCapsule Services e.U.
A l b e r l o c h s t r a ß e 2 9 , 6 9 1 1 L o c h a u , V o r a r l b e r g , A u s t r i a
Data Protection Officer: Stefan Mueller
Email: [email protected]

2. Scope of the Policy

This Privacy Policy applies to all personal data processed by TimeCapsule Services e.U., in accordance with the General Data Protection Regulation (GDPR) and other applicable laws. By using our services, you agree to the collection and use of information in accordance with this policy.

3. Data We Collect

We may collect and process the following types of personal data:

  • Contact Information: Name, email address, telephone number, and postal address.
  • Personal Details: Relationship to the wedding couple and any additional personal information you provide.
  • User-Generated Content: Photos, videos, voice messages, and other media files uploaded to our platform.
  • Usage Data: Information about how you interact with our services, including IP addresses, browser type, and pages visited.
  • Communication Data: Records of correspondence between you and us.

4. Legal Basis for Processing

Our processing of your personal data is based on the following legal grounds under the GDPR:

  • Consent (Article 6(1)(a)): You have given clear consent for us to process your personal data for specific purposes.
  • Contract Performance (Article 6(1)(b)): Processing is necessary for the performance of a contract to which you are a party.
  • Legal Obligation (Article 6(1)(c)): Processing is necessary for compliance with a legal obligation.
  • Legitimate Interests (Article 6(1)(f)): Processing is necessary for our legitimate interests, provided these do not override your rights.

5. Purpose of Data Processing

We process your personal data exclusively for the following purposes:

  • Service Delivery: To provide, maintain, and improve our services.
  • User Authentication: To verify your identity and manage user accounts.
  • Communication: To contact you regarding service updates, respond to inquiries, and provide customer support.
  • Content Sharing: To allow the wedding couple and authorized guests to access and download media files.
  • Product Development: To process media files for future products, such as photo books, exclusively for authorized individuals.
  • Compliance: To comply with legal obligations and protect our rights.
  • Security: To detect and prevent fraud, unauthorized activities, and ensure the integrity of our services.

6. Data Sharing and Disclosure

We do not sell or rent your personal data to third parties. We may share your data under the following circumstances:

  • With Your Consent: When you have given explicit consent for us to share your information.
  • Service Providers: With trusted third-party providers who perform services on our behalf under strict confidentiality agreements.
  • Legal Requirements: When disclosure is necessary to comply with legal obligations, court orders, or governmental requests.
  • Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred.

7. International Data Transfers

While we primarily process data within the European Economic Area (EEA), some of our service providers may be located outside the EEA. In such cases, we ensure that:

  • Adequate Safeguards: Appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.
  • Compliance: Transfers comply with the GDPR and other applicable data protection laws.

8. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy or as required by law. Criteria for determining retention periods include:

  • Legal Obligations: Compliance with statutory retention periods.
  • Contractual Obligations: Duration of your contract with us.
  • Consent Withdrawal: Until you withdraw your consent, if processing is based on consent.

9. Data Security

We implement robust security measures to protect your personal data:

  • Encryption: Data is encrypted in transit and at rest using industry-standard protocols.
  • Access Controls: Restricted access to personal data to authorized personnel only.
  • Security Audits: Regular assessments, testing, and updates of our security practices.
  • Incident Response: Procedures to promptly address data breaches or security incidents.

10. Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by the GDPR.

11. Your Rights

Under the GDPR, you have the following rights concerning your personal data:

  • Access: Obtain confirmation whether your data is being processed and access your personal data.
  • Rectification: Correct inaccurate or incomplete personal data.
  • Erasure (Right to be Forgotten): Request deletion of your personal data under certain conditions.
  • Restriction: Limit the processing of your personal data under specific circumstances.
  • Data Portability: Receive your personal data in a structured, commonly used format and transfer it to another controller.
  • Objection: Object to processing based on legitimate interests or direct marketing.
  • Withdraw Consent: Withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

To exercise these rights, please contact us using the details provided in the “Contact Us” section.

12. Children’s Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children without parental consent. If you believe we have collected such data, please contact us immediately.

13. User Responsibilities and Invitations

13.1. Invitations by Users

  • User Responsibility: Users who invite others to our platform must ensure they have obtained explicit consent from the invitees before providing their personal data.
  • Indemnification: Users agree to indemnify and hold us harmless from any claims arising from unauthorized invitations or misuse of personal data.

13.2. Data Responsibility for Invitations

  • Inviting User’s Obligation: The inviting user is solely responsible for ensuring they have the legal right and consent to share the invitee’s personal data.
  • Our Commitment: We process invitation data solely based on the user’s instructions and implement stringent security measures to protect this data.

13.3. Communication Between Users

  • Facilitation Role: We act as an intermediary to facilitate communication between users.
  • Content Responsibility: Users are responsible for the content they share; we are not liable for any user-generated content.

14. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your user experience and analyze website usage. For more details, please refer to our [Cookie Policy].

15. Third-Party Services

We may employ third-party companies for:

  • Analytics: Understanding how our services are used.
  • Payment Processing: Handling transactions securely.
  • Email Services: Sending communications.

These third parties have access to your personal data only to perform tasks on our behalf and are obligated not to disclose or use it for any other purpose.

16. Limitation of Liability

To the fullest extent permitted by law:

  • No Liability for Indirect Damages: We are not liable for any indirect, incidental, or consequential damages arising from your use of our services.
  • No Warranty: Our services are provided “as is” without warranties of any kind.

17. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time. Changes will be effective immediately upon posting. If we make significant changes, we will notify you via email or through our services.

18. Contact Us

For any questions, concerns, or to exercise your rights regarding your personal data, please contact us:

  • Email: [[email protected]]
  • Phone: [+43 (0)123 456789]
  • Mailing Address:TimeCapsule Services e.U.
    Alberlochstraße 29
    6911 Lochau
    Vorarlberg, Austria

19. Supervisory Authority

If you believe your data has been processed unlawfully, you have the right to lodge a complaint with the competent data protection authority:

Österreichische Datenschutzbehörde (Austrian Data Protection Authority)
Barichgasse 40-42
1030 Vienna, Austria
Phone: +43 1 52 152-0
Email: [email protected]

20. Non-Indexing by Search Engines

This Privacy Policy is intended for our users and is not intended to be indexed by search engines. We have implemented technical measures to prevent indexing; however, we cannot guarantee that search engines will not index this page.

21. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects concerning you.

22. Data Minimization and Purpose Limitation

We collect only the personal data necessary for the purposes stated in this policy and do not process it further in a manner incompatible with those purposes.

23. Data Protection Officer

We have appointed a Data Protection Officer to oversee compliance with this Privacy Policy. You may contact the Data Protection Officer at [Email Address].

24. Governing Law

This Privacy Policy is governed by the laws of Austria, without regard to its conflict of law principles.

25. Severability

If any provision of this Privacy Policy is found to be unenforceable or invalid under any applicable law, such unenforceability or invalidity shall not render this Privacy Policy unenforceable or invalid as a whole.

This Privacy Policy was last updated on 01.10.2024 It is designed to provide comprehensive protection for our business while respecting the rights and privacy of our users in relation to the Hochzeitkapsel project.