Privacy Policy ALPENLUFT Connect App

The protection of personal data is important to us and is required by law. This Privacy Policy informs you about how we process personal data in connection with the use of the ALPENLUFT CONNECT App.

1. Legal Basis

We process your personal data exclusively on the basis of the EU General Data Protection Regulation (GDPR), the Austrian Data Protection Act (DSG) and, where applicable, the Telecommunications Act (TKG), each in its currently valid version.

2. Controller

The controller within the meaning of the GDPR for the processing of personal data in connection with the ALPENLUFT CONNECT App is:

MAJUMU GmbH
Hauptgasse 23/5
7083 Purbach, Austria
Email: datenschutz@alpenluft.org

If you have any questions about data processing or wish to exercise your rights, you can contact us at any time.

3. Purpose of the ALPENLUFT CONNECT App

The ALPENLUFT CONNECT App serves as a companion app for our ALPENLUFT SMART smoke detectors (wirelessly interconnected) and the corresponding WiFi Hub. Through the app, you can:

  • set up the WiFi Hub and connect it to your WiFi network,
  • pair ALPENLUFT SMART smoke detectors with the Hub,
  • view the status of the detectors, such as battery level, connection status and alarm status,
  • trigger test alarms and view logs,
  • receive push notifications for events, such as alarms or faults.

The app is designed as a tool for monitoring and managing your smoke detectors. In the event of a fire, however, the app does not replace your own emergency measures under any circumstances: you must always leave the building immediately and alert the fire brigade.

4. Which Data Is Processed?

4.1 Data You Actively Provide

Depending on how you use the app, we may process in particular:

  • optional contact details if you contact our support, such as name, email address, telephone number and the content of your request,
  • names assigned by you to devices or rooms, such as “Living Room” or “Bedroom”,
  • settings in the app, such as language and notification settings.

4.2 Data from the Use of the App and Devices

When using the app and the connected ALPENLUFT SMART smoke detectors, technical data required for the operation of the systems is processed, in particular:

  • device information of the smartphone, such as operating system version and device type,
  • connection data relating to the local network, such as the IP address within your home network and the SSID of the WiFi network used, where technically required,
  • data from the smoke detectors and the Hub, such as serial numbers or internal IDs, battery status, online/offline status, alarm and fault messages, and timestamps,
  • log data relating to actions within the app, such as triggering a test alarm or adding or removing a device.

4.3 Push Notifications

For push notifications, we use device-specific identifiers, such as push tokens from Apple or Google. These identifiers are provided by the operating system of your smartphone and are required in order to send notifications to your device, such as alarm or fault messages.

You can disable push notifications at any time in the settings of your operating system or within the app. In this case, no further notifications will be delivered to your device.

4.4 Logs and Error Reports

To ensure the stability and security of the app and systems, error logs may be created. These may contain technical information, such as crash information or technical configuration data. Processing is carried out exclusively for diagnostic and support purposes.

5. Is Location Data Processed?

The ALPENLUFT CONNECT App is not designed to determine your precise location, such as GPS data. If the operating system technically requires location permissions as part of WiFi scanning or Bluetooth use, we do not independently evaluate this data for tracking or marketing purposes.

6. No Use of the App for Advertising or Tracking

We do not use advertising tracking tools within the ALPENLUFT CONNECT App, do not carry out user-based profiling and do not display personalized advertising. Data from the app is used exclusively to provide the app functions, ensure security and analyze errors.

7. Purpose Limitation, Legal Bases and Storage Period

7.1 Purpose Limitation

We process personal data exclusively for the following purposes:

  • operation and functionality of the ALPENLUFT CONNECT App and the connected devices,
  • provision of status information and alarm notifications,
  • security, error analysis and improvement of the app,
  • handling support requests,
  • fulfilment of legal obligations.

7.2 Legal Bases pursuant to Art. 6 GDPR

  • Art. 6(1)(b) GDPR – Performance of a contract: Processing is necessary to provide the app functions, for example for communication with the WiFi Hub and the smoke detectors.
  • Art. 6(1)(f) GDPR – Legitimate interest: We have a legitimate interest in the secure, stable and efficient provision of our systems, error analysis and the prevention of misuse.
  • Art. 6(1)(a) GDPR – Consent: Where you voluntarily provide us with additional data, such as when contacting support, or activate certain functions, such as push notifications, processing is carried out on the basis of your consent. You may withdraw this consent at any time with effect for the future.

7.3 Storage Period

  • Data required for the ongoing operation of the app is generally stored only for as long as you use the app and the connected devices.
  • Log and error data is retained only for as long as necessary to analyze and resolve a problem.
  • Support requests and related contact details are retained in accordance with statutory retention periods or for as long as necessary for documentation and processing.

8. Data Transfer to Third Parties and Third Countries

In principle, data from the ALPENLUFT CONNECT App is processed within the European Union or the European Economic Area. Data is transferred to third parties only where this is necessary to fulfil the relevant purpose or where we are legally obliged to do so.

Where we use technical service providers, such as hosting or cloud providers, this is done on the basis of data processing agreements pursuant to Art. 28 GDPR. These service providers may process the data exclusively in accordance with our instructions and for our purposes.

If, in individual cases, data is transferred to a third country outside the EU/EEA, we ensure that an adequate level of data protection exists, for example through an adequacy decision by the European Commission or through the conclusion of standard contractual clauses.

9. No Transfer to Insurance Companies, Fire Brigades or Authorities

Alarm and status data collected via the app is not automatically transmitted to fire brigades, emergency services, insurance companies or other third parties. The decision to alert emergency services and take appropriate measures in an emergency lies solely with you.

10. Consent and Withdrawal

Where we process your data on the basis of consent, you have the right to withdraw this consent at any time with effect for the future. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

You can also control certain types of processing through settings in the app or in your operating system, such as disabling push notifications.

11. Transparency Statement pursuant to the EU Data Act

Pursuant to the EU Data Act, we provide a transparency statement. This contains information on the data generated by the device, user access to data, and the use of the ALPENLUFT Connect App.

Download Data Act Transparency Statement

12. Data Security

We implement appropriate technical and organizational security measures to protect your personal data against loss, destruction, unauthorized access or unauthorized modification. These include, among other things, encryption, access restrictions and regular security reviews.

13. Your Rights as a Data Subject

Under the GDPR, you have in particular the following rights:

  • right of access to the personal data processed by us pursuant to Art. 15 GDPR,
  • right to rectification of inaccurate or incomplete data pursuant to Art. 16 GDPR,
  • right to erasure, also known as the “right to be forgotten”, pursuant to Art. 17 GDPR,
  • right to restriction of processing pursuant to Art. 18 GDPR,
  • right to data portability pursuant to Art. 20 GDPR,
  • right to object to processing pursuant to Art. 21 GDPR,
  • right to withdraw consent given pursuant to Art. 7(3) GDPR.

If you believe that the processing of your data violates data protection law or that your data protection rights have otherwise been infringed, you may lodge a complaint with the competent supervisory authority. In Austria, this is the Austrian Data Protection Authority (Barichgasse 40–42, 1030 Vienna; Email: dsb@dsb.gv.at).

To exercise your rights, you can contact us at any time:

MAJUMU GmbH
Maurice Müller
Hauptgasse 23/5
7083 Purbach, Austria
Email: datenschutz@alpenluft.org

14. Changes to This Privacy Policy

We reserve the right to amend this Privacy Policy where necessary, in particular in the event of changes to the app functions, the technologies used or legal requirements. The current version published in the app and on our website shall apply.

```