To obtain your explicit consent, we have to provide you with comprehensive information. Of course that it not always easy on a small screen. That’s why the content for the necessary processing, as described below, is also found in more detail in section 2 of our privacy notice and can be viewed there again later at any time. We will also send you the privacy notice by email so you can keep a copy. If changes occur, we will inform you privacy notice and request that you provide us with a new consent.
2.1.1 For security reasons, mySugr can only be used in connection with a user account. We therefore require the following user data:
All other information is optional and self-explanatory in the input masks. These optional entries include:
Personal Master Data such as name and contact data.
Medical Master Data such as diabetes type and
medication.
Commercial and Usage Data such as the status of mySugr
Pro and activity events for customization.
Medical Data such as type and duration of activities or
blood glucose tests. You will find other examples for the individual
categories in section 2 of the
privacy notice.
2.1.2 If you wish, you can operate the user account under an assumed name (pseudonym), i.e. you do not have to state your real name. You can also enter any email address that you set up especially for us – however it must work so that we can send you important warnings.
2.1.3 In addition to the entries you provide voluntarily, there is also the option of independently activating or deactivating the recording of certain data in the settings of our apps and other software of your device (e.g. operating system, other apps, app stores etc.). If you have questions, please contact support@mysugr.com.
2.2 Necessary purposes2.2.1 All necessary purposes of our processing are associated with our service provision; you will find other examples on the individual categories in section 2.2.1 of the privacy notice:
Ordering, delivery, support, and billing to handle your
order.
Installation of our apps.
Registration leads to the creation of your mySugr ID
using the email address and password.
Provision of our services requires your data depending
on the function and each function describes the purpose for which the
data is needed.
Communication from mySugr with you for support,
troubleshooting, or important security advice. Support communication is
also essential as it provides assistance in connection with your use of
our products. You control which information you provide through the
communication.
Therapy devices (e.g. blood
glucose meters) can be functionally connected if you pair them.
Health apps and other linked services are
synchronized if you use the function
2.2.2 The use of our apps and extensions requires you to actively and voluntarily enter data. You will find additional selection options in the settings of our apps. To resolve errors in the app we require, for example, crash reports that we can use for support purposes to determine the circumstances of the problem. In addition, the key data of your device and your usage behavior are recorded as our contractual fulfillment, above all, means customizing our products i.e. processing individual user information, for example, depending on your location (also relevant for the search function), diabetes type or type of therapy (both are, for instance, relevant for configuring the user interface). An automated analysis of user behavior is performed exclusively for the purpose of customizing your use when fulfilling the contract and has no legal effect for you.
3.1.1. We primarily select cooperation partners who are based in or whose servers are located in the European Union (EU) or European Economic Area (EEA). Data transmission within the EU and EEA is unobjectionable because the GDPR applies in all member states.
3.1.2. In exceptional circumstances we appoint third-party suppliers who are located in or who have servers outside the EU. However, even in these cases your personal data is subject to a high protection level in line with GDPR – either through an EU adequacy decision, which considers data protection in certain third-party countries to be appropriate (e.g. Switzerland, Israel, and New Zealand), or through certain standard contractual clauses approved by the EU, which the contractual relationships with our contracted data processors are based on, or through comparable legal instruments permitted under the GDPR. In all cases, all contracted processors are subject to the obligations in this privacy notice.
3.1.3. In addition, we ensure that our partners have additional security standards in place, such as individual security measures and data protection provisions or certifications under the GDPR
3.1.4. You can view the individual categories of recipients of your user data in section 5 of the privacy notice.
4.1.1. You have the right to revoke your consent at any time in full or in part. In order to do so, please send an email to support@mysugr.com. The lawfulness of the processing before revocation remains unaffected.
4.1.2. Please note that revocation of your consent to the necessary processing makes it impossible to use our products because we can no longer process your user data. We therefore interpret this revocation as termination.
4.1.3. Your rights under section 8 of the privacy notice remain unaffected.