Privacy Policy

Data Protection Declaration

General

At RYDE GmbH we take the protection of your data very seriously. This data protection declaration sets out how we treat your data and your rights in accordance with Art. 13 GDPR. We will do our best to fully inform you of your rights, both as to their basis and how they may be exercised. However, we would like to point out that data protection law, which is characterized by national and European obligations, is complex. Therefore, in the context of this data protection declaration, please take a look at the respective sets of rules, i.e. GDPR and BDSG, which are also the basis of this declaration and contain particularised rules for specific use cases. For your information, we have placed appropriate links at the end of this declaration.

‘Personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

You provide us with this data in various (mostly) electronic forms, either as part of a technical query (e.g. when using our PLP system) or in connection with direct communication with our employees, Customers Services.

In this context, the so-called “data protection consent” is obtained from you for the use of the personal (and technical) data provided by you. Obtaining this data and the consent declared by you to it therefore naturally takes place in different forms, e.g. via the technical process of the express declaration of consent within the framework of a so-called “opt-in”; but also via written or textual declaration within the framework of the signing of contractual documents, in particular when concluding customer contracts and other contracts of all kinds, if necessary partly with the supplementary inclusion of the General Terms and Conditions of RYDE GmbH. Here you will be informed about your rights with reference to this data protection declaration. Only then will your personal data be processed.

‘Processing’ means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction; (Article 4 Nr. 2 GDPR).

You are welcome to contact us personally at any time if you have any questions about this declaration or data protection at RYDE. We will be happy to provide you with additional information. Please use the following e-mail address or the postal address below:

oliver.priess(at)kodakone.com
RYDE GmbH
Datenschutzbeauftragter Oliver Priess
Waldemarstraße 37a
10999 Berlin
Germany

Overview of the data collection on our website

Person or institution in charge

RYDE GmbH is responsible for the collection and processing of your data. Its contact details are:

RYDE GmbH
Waldemarstraße 37a
10999 Berlin
Germany

How do we collect your data?

We collect your data when you provide us with it, e.g. through communications in connection with the conclusion of contracts, the examination of the legality of image use at RYDE and in the context of the use of other RYDE services. Other data is also automatically collected by our IT systems, including from you. These are mainly technical data, such as IP addresses, the operating system and the time of access.

What do we use them for?

We use your contact information for processes such as our correspondence and, if we actively work together, for the design and optimization of the workflow with you. We use the technical data for the error-free provision of the website. Furthermore, some data is used for the analysis of your user behaviour. In some cases, third party services (e.g. for tracking and analysis) are used.

What rights do you have in this regard?

You have the legal rights according to the GDPR / BDSG, these are the following rights: We refer in particular to Art. 12 – 23 GDPR.

Withdrawal of consent Art. 7 para. 3 GDPR

The right to withdraw your once given consent at any time against us. The consequence of this is that we may no longer continue the data processing based on this consent in the future.

Information Art. 15 GDPR

The right to request information about your personal data processed by us. In particular, you may request information about the purposes of the processing, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right of rectification, deletion, limitation of processing or opposition, the existence of a right of appeal, the origin of your data if it has not been collected from us, as well as the existence of an automated decision making process including profiling and, if applicable, meaningful information on its details.

For details, see Art. 15 GDPR: The right to information about your personal data processed by us.

Rectification Art 16 GDPR

The right to immediately request the correction of incorrect or incomplete personal data stored by us.

Erasure Art. 17 GDPR

The right to demand the deletion of your personal data stored by us, unless processing is necessary to exercise the right to freedom of expression and information, to fulfill a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.

Restriction of processing Art. 18 GDPR

The right to demand the restriction of the processing of your personal data insofar as the correctness of the data is disputed by you, the processing is unlawful, but you refuse its deletion and we no longer need the data, we need it to assert, exercise or defend legal claims or you have objected to the processing pursuant to Art. 21 GDPR.

Data portability Art. 20 GDPR

The right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request transmission to another responsible person.

Right to Object Art. 21 GDPR

If your personal data is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right, pursuant to Art. 21 GDPR, to object to the processing of your personal data if there are reasons for doing so which arise from your particular situation or if the objection is directed against direct advertising. In the latter case, you have a general right of objection, which we implement without specifying a particular situation (Art. 21 Para. 2 GDPR). In this case it would be forbidden for us to use your data for direct advertising.

To exercise this right, simply send an e-mail to oliver.priess(at)kodakone.com.

Complaint to the supervisory authority Art. 77 GDPR

The right to complain to a supervisory authority. You can lodge a complaint with the Federal Commissioner for Data Protection and Freedom of Information, the Berlin State Commissioner for Data Protection and Freedom of Information or the local consumer centre.

The Berlin Commissioner for Data Protection and Freedom of Information is:

Mrs. Maja Smoltczyk Friedrichstrasse 219 10969 Berlin Visitor entrance: Puttkamer Strasse 16 – 18 (5th floor) Phone: +49 (0)30/138 89-0 Fax: +49 (0)30/215 50 50 E-mail: mailbox(at)datenschutz-berlin.de Homepage: www.datenschutz-berlin.de

How do we protect your data during transmission on the website?

Our website can only be accessed via HTTPS, and uses TLS/SSL encryption to protect your data from unauthorized access during transmission to

Data processing by third-party providers (e.g. analysis tools)

We use the Google Analytics tool for data processing (further information below). If you have any questions regarding data protection at our social media sites, we kindly refer you to the respective data protection declarations, unless specific questions regarding data processing by RYDE are concerned.

Data protection officer

Our data protection officer is:

Ass. iur. Oliver Priess
Waldemarstraße 37a
10999 Berlin
Germany

He can be contacted at +49 (0)30 80208150 or by e-mail at oliver.priess(at)kodakone.com.

Data collection on our website

Cookies

We use the Google Analytics Cookies _ga and _gid. These enable Google to distinguish between individual users. Further information can be found below under D. II. and at https://developers.google.com/analytics/devguides/collection/analyticsjs/cookies-user-id.

Server Log Files

When you visit our website, we collect the following information: IP address, access time, and item. We use this data for statistical purposes and to maintain the functionality of our website. They enable us to track who accessed which content on our site and when.

Newsletter subscription

We collect the data that you provide to us when registering for the newsletter. These are first and last name and your email address. You can find out more under D.I. Newsletter.

Media inquiries

Under Media Enquiries press employees can provide contact information for us to get in touch with you. This data is transmitted to us in encrypted form and we use it to contact you. The use of your data to establish contact with you is based on the consent of the recipient in accordance with Art. 6 Para. 1 lit. a, Art. 7 GDPR in conjunction with § 7 Para. 2 No. 3 UWG or on legal permission in accordance with § 7 Para. 3 UWG.

Further data collection, newsletter, plugins and tools, especially for social media use

Newsletter

General: With the following information we inform you about the contents of our newsletter as well as the registration, dispatch and statistical evaluation procedures and your rights of objection. By subscribing to our newsletter, you agree to the receipt and procedures described.

  • The dispatch of the newsletter and the performance measurement associated with it is based on the consent of the recipients pursuant to Art. 6 para. 1 lit. a, Art. 7 GDPR in conjunction with § 7 para. 2 no. 3 UWG or on legal permission pursuant to § 7 para. 3 UWG.
  • The registration procedure is recorded on the basis of our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR. We are interested in using a user-friendly and secure newsletter system that serves our business interests, meets users’ expectations, and allows us to provide evidence of consent.
  • Content of the newsletter: We send newsletters, e-mails and other electronic notifications containing advertising information (hereinafter “newsletter”) only with the consent of the recipient or a legal permission. Insofar as the contents of the newsletter are specifically described within the framework of registration, they are decisive for the consent of the user. In addition, our newsletters contain information about our services and us.
  • Double-Opt-In and logging: The registration to our newsletter takes place in a so-called Double-Opt-In procedure. This means that you will receive an e-mail after registration asking you to confirm your registration. This confirmation is necessary so that no one can register with external e-mail addresses. The registrations for the newsletter are logged in order to be able to prove the registration process according to the legal requirements. This includes storing the login and confirmation times as well as the IP address. Likewise the changes of your data stored with the dispatch service provider are logged.
  • Registration data: To subscribe to the newsletter, it is sufficient to enter your e-mail address. Optionally we ask you to enter a name in the newsletter in order to address you personally.
  • Cancellation/revocation: You can cancel the receipt of our newsletter at any time, i.e. revoke your consent. You will find a link to cancel the newsletter at the end of each newsletter. We may store the unsubscribed email addresses for up to three years based on our legitimate interests before deleting them to provide evidence of prior consent. The processing of these data is limited to the purpose of a possible defence against claims. An individual deletion request is possible at any time.
  • Success measurement: The newsletters contain a so-called “web-beacon”, i.e. a file the size of a pixel, which is retrieved from our server when the newsletter is opened, or from the server of a dispatch service provider if we use one. Within the scope of this retrieval, technical information such as information about the browser and your system, as well as your IP address and time of retrieval are first collected. This information is used for the technical improvement of the services on the basis of technical data or target groups and their reading behaviour on the basis of their retrieval points (which can be determined with the help of the IP address) or access times. Statistical surveys also include determining whether newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our aim nor, if used, that of the shipping service provider to monitor individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

Google Analytics

On the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer in the sense of Art. 6 Para. 1 lit. f. of the German Civil Code), we act in accordance with the following principles DSG-VO) of a contract processing agreement pursuant to Art. 28 para. 3 sentence 1 GDPR Google Analytics, a web analysis service of Google LLC (“Google”). Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transferred to a Google server in the USA and stored there.

Google is certified under the Privacy Shield Agreement and thereby offers a guarantee of compliance with European privacy laws (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

Google will use this information on our behalf to evaluate the use of our online services by users, to compile reports on the activities within this online service and to provide us with other services associated with the use of this online service and the Internet. Pseudonymous user profiles of the users can be created from the processed data. We only use Google Analytics with IP anonymization enabled. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. The IP address transmitted by the user’s browser is not merged with other Google data. Users may refuse the use of cookies by selecting the appropriate settings on their browser, however please note that if any damage occurs by the use of information presented there, only the author of the respective pages might be liable, not the one who has linked to these pages. Users may refuse the use of cookies by selecting the appropriate settings on his or her browser, however please note that if the opportunity for the input of personal or business data (email, name, addresses) is given, only the author of the respective pages might be liable, not the one who has linked to these pages.

Further information on the use of data by Google, setting and objection options can be found in Google’s data protection declaration(https://policies.google.com/technologies/ads) and in the settings for the display of advertising by Google(https://adssettings.google.com/authenticated).

If you do not wish this to happen, please click this link to prevent Google Analytics from collecting data from this website in the future:

Analytics Opt-Out

An opt-out cookie is stored on your device. To opt-out click here (https://tools.google.com/dlpage/gaoptout?hl=en).

Facebook Social Plugins

On the basis of our legitimate interests (i.e. interest in the analysis, optimization and economic operation of our online offer in the sense of Art. 6 Para. 1 lit. f. of the German Civil Code), we make use of the information provided on this website. GDPR) Social Plugins (“Plugins”) of the social network facebook.com, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).

The plugins can display interaction elements or content (e.g. videos, graphics or text contributions) and are recognizable by one of the Facebook logos (white “f” on a blue tile, the terms “like”, “like” or a “thumbs up” sign) or are marked with the addition “Facebook Social Plugin”. The list and appearance of the Facebook Social Plugins can be seen here: https://developers.facebook.com/docs/plugins/.

Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law(https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active).When a user calls a function of this online service that contains such a plugin, his device establishes a direct connection with the Facebook servers. The content of the plugin is transmitted directly from Facebook to the user’s device and integrated into the online offer by the user. User profiles can be created from the processed data. We therefore have no influence on the extent of the data that Facebook collects with the help of this plugin and therefore inform the user according to our state of knowledge.

By integrating the plugins, Facebook receives the information that a user has called up the corresponding page of the online offer. If the user is logged in to Facebook, Facebook can assign the visit to his Facebook account. When users interact with the plugins, e.g. by clicking the Like button or commenting, the corresponding information is transferred directly from your device to Facebook and stored there. If a user is not a member of Facebook, it is still possible for Facebook to know and store their IP address. According to Facebook, only an anonymous IP address is stored in Germany.

The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as the related rights and setting options to protect the privacy of users can be found in Facebook’s data protection information:https://www.facebook.com/about/privacy/.

If a user is a Facebook member and does not want Facebook to collect data about him or her via this online service and link it with his or her member data stored on Facebook, he or she must log out of Facebook and delete his or her cookies before using our online service. Further settings and objections to the use of data for advertising purposes are possible within the Facebook profile settings: https://www.facebook.com/settings?tab=ads or via the US page https://www.aboutads.info/choices/ or the EU page https://www.youronlinechoices.com/.

The settings are platform-independent, i.e. they are adopted for all devices, such as desktop computers or mobile devices.

YouTube

Our site uses for the integration of videos the provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Normally, when you visit a page with embedded videos, your IP address is sent to YouTube and cookies are installed on your computer.

However, we have integrated our YouTube videos with the enhanced privacy mode (in which case YouTube will still contact Google’s Double Click service, but according to Google’s privacy policy, personal data will not be evaluated). This means that YouTube no longer stores information about visitors unless they watch the video. If you click on the video, your IP address will be transmitted to YouTube and YouTube will know that you watched the video. If you are logged in to YouTube, this information will also be associated with your account (you can prevent this by logging out of YouTube before viewing the video).

We have no knowledge of the collection and use of your data by YouTube and have no influence on it.

For more information, please see YouTube’s privacy policy at https://www.google.de/intl/de/policies/privacy/ In addition, we refer to our general presentation in this data protection declaration for the general handling and deactivation of cookies.

Instagram

Within our online offer, functions and contents of the service Instagram, offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA, can be integrated. This may include, for example, content such as images, videos or text and buttons with which users can express their sentiment on the content, the authors of the content or subscribe to our contributions.

If the users are members of the Instagram platform, Instagram can assign the call of the above contents and functions to the profiles of the users there. Please refer to Instagram’s privacy policy for a very comprehensive use of the data. We ask you to read them in detail. Instagram’s privacy policy can be found here: https://help.instagram.com/519522125107875

Twitter

Functions and contents of the Twitter service offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, can be integrated into our online offer. This may include, for example, content such as images, videos or text and buttons with which users can express their sentiment about the content, the authors of the content or subscribe to our contributions. If the users are members of the Twitter platform, Twitter can assign the call of the above-mentioned contents and functions to the profiles of the users there. Twitter is certified under the Privacy Shield Agreement and thus offers a guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active)You can find Twitter’s privacy policy at:https://twitter.com/de/privacy, or can object to the data processing by Twitter here:https://twitter.com/personalization.

Timeliness and amendment of this data protection declaration

This privacy policy was last updated on 14th Dec 2018.

The data protection declaration is regularly updated taking into account developments in data protection at national, European and international level.

We would be happy to include suggestions for optimisation and other feedback.