Privacy Policy
Last Updated on: 14th September 2024

Privacy Policy

Effective Date: 14 September 2024

GoGreen (“we,” “our,” or “us”) respects your privacy and is committed to protecting your personal data. This privacy policy will inform you about how we collect, use, and process your personal data when you use our mobile application for Android and iOS (“App”), and the corresponding website, both developed for the sustainability hub at University of Konstanz. This privacy policy also outlines your rights concerning your personal data and how the law protects you.

1. Data Collection and Use

We collect and process various categories of personal data depending on how you interact with the GoGreen app and website.

1.1 Google Sign-in Data

Upon registering with the App via Google sign-in, we collect:

  • Google Display Name: Used to personalize your user profile within the app.
  • Google Profile Image: Displayed in your user profile and shared with other users.
  • Google Email Address: Used for authentication, identification, and communication within the app.

1.2 User Preferences

We collect user language preferences to customize the app's interface. You can select between supported languages (such as English), and this preference is stored in Firebase to personalize your app experience.

1.3 Organizer and Project Data

If you choose to become an organizer and create projects related to sustainability goals, we collect the following additional data:

  • Project/Event Information: This includes the project name, description, start date, end date, and its alignment with specific UN Sustainable Development Goals (SDGs).
  • Uploaded Images: Images related to the project or event are uploaded via Flutter's Image Picker. These images are stored in Firebase Storage.

1.4 Internet Access and External Communication

The GoGreen app requires an internet connection for essential functions, such as enrolling in projects, viewing project details, and accessing sustainability content.

When a user sends an email through the app (e.g., contacting an event organizer), the app opens the device's native email application. The app does not send or process email content in the background.

2. GDPR Compliance

As the GoGreen app will be used in the European Union (EU), we are fully compliant with the General Data Protection Regulation (GDPR). If you are a resident of the European Economic Area (EEA), you have specific rights regarding your personal data, including:

  • Right of Access: You can request access to the personal data we hold about you.
  • Right to Rectification: You can request corrections to any inaccurate or incomplete data.
  • Right to Erasure (Right to Be Forgotten): You can request that we delete your personal data.
  • Right to Data Portability: You can request that your personal data be transferred in a structured, commonly used, machine-readable format.
  • Right to Restriction of Processing: You can request that we restrict our processing of your data in certain circumstances.
  • Right to Object: You have the right to object to the processing of your personal data under certain conditions.
  • Right to Withdraw Consent: You may withdraw your consent to the processing of your personal data at any time where consent was initially provided.

You can exercise these rights by contacting us at greenoffice.sustainabilityhub@uni-konstanz.de. We will respond to your request within 30 days as required by GDPR.

Data Transfers: If your data is transferred outside of the EU, we ensure appropriate safeguards, such as standard contractual clauses (SCCs), are in place to protect your personal data during cross-border transfers.

3. Data Retention

We retain your personal data (Google sign-in data, language preferences, and project data) for as long as your account is active. Once a user decides to delete their account, all associated data is permanently removed from Firebase.

Users can delete their accounts via a delete button provided within the app, which will remove all personal data, including images, from our servers.

4. Third-Party Services

The GoGreen app utilizes Firebase and its associated services for backend support, data storage, and analytics. The following services are used:

  • Firebase Authentication: Used for secure user authentication via Google sign-in.
  • Firebase Firestore: Used to store user profiles, project data, and images.
  • Google Analytics via Firebase: Used to track app performance and usage. We only collect aggregated, non-personally identifiable data for analytics purposes to enhance user experience.

5. Data Security

We prioritize the security of your data and have implemented several technical and organizational measures to protect it:

  • Encryption: All data transmitted between the app and Firebase is encrypted using industry-standard protocols (HTTPS).
  • Access Control: User data is protected by access control measures enforced through Firebase Security Rules, ensuring that only authenticated users have access to their data.
  • Data at Rest: Data stored in Firebase is encrypted and protected with security measures that comply with industry standards.

While we strive to protect your personal data, please be aware that no method of transmission over the internet is 100% secure. However, we continuously review and enhance our security practices.

6. User Rights

You have the following rights regarding your personal data:

  • View and Access: Users can view their profile and project data at any time within the app.
  • Modify: Users can modify their language preferences and project details directly from the app interface.
  • Delete: Users can permanently delete their account and all associated data through the app's settings. This action is irreversible.

We do not share personal data with third parties, except as required by Firebase for app functionality and analytics.

7. Children's Privacy

The GoGreen app is not intended for use by individuals under the age of 13. We do not knowingly collect personal data from children under this age. If it is discovered that we have inadvertently collected such data, it will be promptly deleted.

8. Cookies and Tracking Technologies

The GoGreen app does not use cookies or tracking technologies for user identification or tracking. However, aggregated analytics data collected via Firebase may involve the use of tracking technologies by Google Analytics for performance tracking.

9. Changes to This Privacy Policy

We reserve the right to modify this privacy policy at any time. Any changes to this privacy policy will be communicated through the app and will become effective immediately. Continued use of the app after such changes will signify your acceptance of the updated terms.

10. Contact Us

If you have any questions or concerns about this privacy policy, please contact us at greenoffice.sustainabilityhub@uni-konstanz.de.