PRIVACY POLICY

Controller responsible for data processing:

Veggymap
Patric J. Laßnig
Pater Stefan Straße 8, 6330 Kufstein, Austria

Email: support@veggymap.com

Phone: +43 681 81160320

Email: datenschutz@veggymap.com

3.1 Registration and User Account
When registering, we collect: Name, email address, country/region, language, profile picture (optional), bio (optional), Instagram handle (optional).

3.2 Plant Documentation
We store (including cloud storage via Firebase): Photos taken of plants, GPS coordinates of the recording, timestamp, plant identification (if analyzed), notes and descriptions.

3.3 Technical Data
Device ID, app version, operating system, IP address (temporary), usage statistics.

4.1 Provision of App Functions (Art. 6 Para. 1 lit. b GDPR)

• Plant identification and documentation
• Community features
• User account management

4.2 Improving App Performance (Art. 6 Para. 1 lit. f GDPR)

• Analysis of usage statistics
• Optimization of app functions
• Troubleshooting

4.3 Communication with Users (Art. 6 Para. 1 lit. b GDPR)

• Support inquiries
• App updates
• Important notifications

4.4 Legitimate Interest (Art. 6 Para. 1 lit. f GDPR)

• Ensuring app functionality
• Protection against misuse
• Improving user experience

5.1 Service Providers

• Firebase/Google (hosting, authentication, cloud storage of photos)
• Google Cloud Vision API (image recognition for plants)
• Google Maps (maps and location display)
• OpenAI (for AI analyses and plant descriptions)
• PlantID (for plant identification)

5.2 In-App Purchases (Premium, Subscriptions)

• Payments are processed via the App Store (Google Play / Apple App Store).
• Payment data (credit card etc.) is processed exclusively by the respective store, not by Veggymap.
• Only the purchase confirmation and product ID are transmitted to the app to unlock premium functions.

5.3 No Disclosure to Third Parties

• No commercial disclosure
• No sale of data
• No disclosure to marketing companies

6.1 USA (Google Firebase, Google Cloud Vision, Google Maps, OpenAI)

• Adequacy decision: No
• Legal basis: Art. 46 GDPR (Standard Contractual Clauses)
• Protective measures: Encrypted transmission

6.2 Other Third Countries

• PlantID: EU-based
• No further transmission

7.1 User Data: Until the account is deleted; at least 3 years after the last activity.

7.2 Photos and Documentation: Until manual deletion by the user; automatic deletion after 5 years of inactivity.

7.3 Technical Data: 12 months after collection; anonymized statistics: unlimited.

7.4 Offline Data: Stored locally on the device; deletion upon app uninstallation.

8.1 Right to Information (Art. 15 GDPR): What data is processed and for what purpose.

8.2 Right to Rectification (Art. 16 GDPR): Correction of incorrect or incomplete data.

8.3 Right to Erasure (Art. 17 GDPR): "Right to be forgotten".

8.4 Right to Restriction of Processing (Art. 18 GDPR) and 8.5 Right to Data Portability (Art. 20 GDPR).

8.6 Right to Object (Art. 21 GDPR): Objection to processing based on Art. 6 Para. 1 lit. f or direct marketing.

Consents can be withdrawn at any time with effect for the future. Contact: datenschutz@veggymap.com

Competent authority: Austrian Data Protection Authority. Online complaint: https://dsb.gv.at/

Registration requires name and email. App use requires GPS and camera. Use of the app is not possible without provision.

No automated decisions or profiling according to Art. 22 GDPR. All decisions are made manually.

Encrypted data transmission (SSL/TLS), secure server infrastructure, regular security updates.

No cookies, no cross-site tracking, no advertising tracking. Local storage only for app functions.

The app is aimed at users aged 12 and over. Persons under 16 should only use the app with the consent of their legal guardians.

Changes will be announced in the app. The current version is always available in the app.

support@veggymap.com

+43 681 81160320

Pater Stefan Straße 8, 6330 Kufstein, Austria