Privacy and Personal Data Protection Policy
Policy objective: we aim to collect the minimum data necessary for the proper functioning and improvement of our tool. This data is accessible at any time on request via our contact form.
Application of the policy: The policy applies to all data collected by this website.
Identification of the Data Controller
Contact: [email protected]
Types of Data Collected
Data collected:
- Personal Identification Data: Email addresses, first and last name (Google login).
- Authentication Data: Google ID, domain (for enterprise accounts).
- Service Data: List of equipment managed via the app.
- Technical Data: Session cookies (limited use).
Data source:
- Website registration forms
- GearTracker web application interactions
- Google login integrations (OAuth)
Legal Basis and Purpose of Data Processing
Legal basis: consent.
Purpose: inform users, manage user equipment.
Consent
Consent procedure: Consent is obtained when entering data into our forms and registering for our service. Withdrawal of consent: you can withdraw your consent at any time by contacting us (see chapter 2), in this case, your data and access to the service will be deleted.
Data Retention Period
- Registered: we keep your data for the duration of registration for the service.
- Non-registered: we keep your data for 3 years
Google account data privacy policy
If you use your Google account to log in, we have the following policy: GearTracker.net utilizes specific Google user data to enhance your experience and provide essential app functionalities. We collect your email address to facilitate app notifications and to enable direct communication with our support team. Your Google ID, a unique identifier, allows us to accurately identify your account within our system, ensuring personalized service and data security. We also collect your first and family name to display your identity within the app, fostering a personalized user experience. For enterprise accounts, we collect your domain name to accurately represent and name your organization within the app, streamlining team management and collaboration. We are committed to transparency and ensure that this data is used solely for the purposes described, allowing you to fully understand the value and implications of sharing this information with GearTracker.net.
Rights of Data Subjects
Rights of the individual: you have the rights to access and erase your data Procedure for exercising rights: contact us (see chapter 2).
Data Transfer
International transfers: data is hosted in Europe.
Data Security
We implement appropriate technical and organizational security measures, including but not limited to:
- Restricted data access based on roles (least privilege principle)
- Passwords encrypted using industry-standard algorithms
- Regular security audits and vulnerability assessments
- Monitoring and logging access to sensitive data
- Secure session management
Data Management and Classification Policy
| Classification | Description | Examples |
|---|---|---|
| Public | Data intended for public access. | Marketing website content. |
| Internal | Data shared within our organization. | Internal project documents. |
| Confidential | Sensitive user data requiring protection. | Email addresses, equipment list, Google account identifiers. |
| Restricted | Highly sensitive internal or customer data. | Password hashes, authentication tokens. |
All confidential and restricted data is protected according to strict security measures.
Use of Cookies and Similar Technologies
Cookies: We may use session cookies.
Modification of the Data Protection Policy
Updates: the policy may be updated in which case users will be informed by email if they are registered. The update will also be posted on this page.
Contact
Contact details for data protection questions: see chapter 2 to contact us about this.