Our business is based on selling quality software. Therefore, we have no interest in selling your data or using it for sleazy purposes. We believe that the less we know about you, the better, which is why we aim to limit the information we collect to the minimum necessary. Our intention for collecting and using your data is solely to provide you with the services you enrol for and improving these services.
We will never share your data with third parties, as long as it is not required by law or for the services we offer.
what personally identifiable information or personal information we collect from you through the software application “Leap Habit Tracker” and how we use such information, and
what choices you have regarding the use of, and your ability to review and correct, the information.
As such, we act as a Controller for the purpose of the General Data Protection Regulation (GDPR) and other data protection laws applicable in member states of the European Union.
Information We Collect and How We Use It
We solely collect information that is necessary to provide you with our services and to improve our product.
Contact and Support
Email and personal information: If you contact us via email, we will have to process your email and additional personal information, should you provide us any. We will not share your email address or use them for marketing purposes unless you have given us your explicit consent.
Leap Habit Tracker App
Subscriber information: To manage and verify your subscription, we have to process your digital purchase receipts from Apple. This includes only information about the type and time of purchase, along with a unique pseudonomyzed random user identifier, which we use to match your subscription across devices in our system.
We do not receive any contact or payment information, nor do we have access to your Apple ID. In addition, we collect data about redeemed trials and promotional codes.
We may also use this pseudonomyzed data for statistical reasons and fraud protection.
Legal basis Art. 6(1)(b) GDPR.
Usage Data (Optional): To improve our services we may collect pseudonomyzed data about your devices and how you use the app. Examples are number and types of devices you use, the operating systems installed on those devices, the version of the app and language settings.
In addition, we may also collect data about how you interact with the app, such as how many habits you add, how often you add logs and which sections of the app you spend the most time in. We use this data to learn about user behavior to continually improve the app. We will never sell it to third parties. Your content, such as the names of habits and their actual completions, is never transmitted to us.
If you do not want us to collect this data, you can disable the tracking in the application’s “Settings” in the “Privacy” section (disable “Allow Pseudonomyzed Tracking”).
Legal basis Art. 6(1)(f) GDPR.
Diagnostic Data (Optional): To improve the quality of our services and to identify and solve specific problems, we occasionally solicit reports such as diagnostic reports from our customers. This is optional and requires your explicit consent.
Legal basis Art. 6(1)(a+f) GDPR.
Where We Store Your Data
Personal Content: Your personal content that you create within the app, e.g. your created habits and associated logs, is stored locally on your device. It is not saved on our servers nor do we have access to this data.
Purchased Content: Digital purchase receipts for are generated by Apple and processed locally on your device (except those concerning subscriptions). These are required to verify any purchases you may have made.
Subscriber Information and Purchase Statistics: Your digital purchase receipts, as well as redeemed trial and promotional codes, are also stored on RevenueCat’s servers. RevenueCat enables us to validate subscriptions and create purchase statistics. This data may be temporarily transferred to other devices or services for analytics purposes.
Usage and Diagnostics Data (Optional): Usage and diagnostics data are stored on Amazon Web Services’ servers in Germany using pseudonomyzed user and device identifiers . This data cannot be resolved to your name or other personal information. This data may be temporarily transferred to other devices or services for analytics purposes. Any pseudonomyzed user and event data is automatically deleted after 12 months. Aggregated statistics may be stored perpetually.
Customer Support Emails: Customer support emails are stored on Google’s servers, as we currently use the Google product GMAIL for customer support. This data may be temporarily transferred to other devices or services for analytics purposes.
How Long We Store Data For and How We Protect It
We store data as long as German law requires it and is necessary for the fulfilment of our services, or initiation of the contract, or as long as we claim legitimate interest. After that period, corresponding data is routinely deleted or anonymized. Statistical and diagnostic data is generally stored perpetually, but is also pseudonimysed to the extent possible. We are legally required to store your email for ten years.
All data is stored using standard industry practices and current encryption technologies.
Depending on your usage of our services, especially the use of the app or means of communication with us (e.g. for purposes like support), your personal data might be processed by the following services:
RevenueCat provides a service that processes purchases from the Apple App Store and enables us to manage your current subscription status, validate that you have an active subscription and analyze your purchase history for this app.
Personal Data: Purchase history and times the app was used
Country of Data Processing: USA
Apple provides the Apple App Store, through which the application is distributed and as such processes digital purchase receipts. In addition, should you enable sync services within the app, some or all of your content created in the app will be uploaded to Apple’s servers to enable syncing services and make your data available on all your devices.
Personal Data: Digital purchase receipts, use of promotional trials, content from the app for purposes of syncing it between devices
Country of Data Processing: Europe or USA
We use Google’s GMAIL service for customer support. Should you contact us via email, Google may process personally identifiable information of you, such as name or email address.
Personal Data: Name, email addresses and email content
Country of Data Processing: Europe or USA
Governmental and Taxation Entities and Other Third Parties
We may be required to provide personal data to governmental entities if it is required by law (e.g. tax regulations). We also clarify that contractual obligations may result in provision of personal data (e.g. information on a contractual partner).
Those under the age of 16, or below other age limits that require consent of a legal custodian for use of our services depending on local law, may not use the services without the consent or authorization of their parent or legal custodian.
Your Privacy Rights as the Data Subject under GDPR
Right of Access: You can request for us to provide you with information on how we collect, use and store your personal information, and to provide you with a copy of your personal information, should we have any. We do not have access to personal content created in the app.
Right of Rectification: You can request that we correct information about you that is inaccurate.
Right to Delete (Right to be Forgotten): You can request that we delete information collected about you, given the following circumstances: that we are not required by law to preserve it, that it is not necessary for contract fulfilment, and that we can still identify your records.
Right to Object: You can object the processing of your information in certain cases, given that the processing is not required by law or necessary for contract fulfilment.
Right to Data Portability: Upon request, we will provide you all data under our control in a machine readable format (e.g. JSON). Should the data requested not be within our control, we will provide you with instructions to obtain your data.
If you have any further questions, please reach out to us via E-Mail. We will reply as soon as possible.
We may use the contact information you provide us, if any, to communicate with you about our product, diagnostic data, error reports, or provide you with support, should you request any.
Should the confidentiality of customer data be breached, we recognize it as our responsibility to our customers and the public to disclose the nature of any risk and provide a transparent account of the events without undue delay. Should the nature of the breach require it, we must inform the applicable supervisory authorities as is required by law and regulation.
Responsible Body For Data Privacy
The responsible body for the processing of personal data (“the Controller”) within the meaning of the law. Art 4 (7) GDPR:
Benedict Bartsch Merowingerstrasse 43 52070 Aachen Germany