Privacy Policy Wingfield App and Wingfield Box.

"Personal data" means any information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

"Processing" means any operation or set of operations which is performed upon personal data, whether or not by automatic means, such as collection, recording, organization, filing, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction

"Restriction of processing" means the marking of stored personal data with the aim of limiting their future processing.

"Profiling" means any type of automated processing of personal data that consists of using such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects relating to that natural person's job performance, economic situation, health, personal preferences, interests, reliability, behavior, location or change of location.

"Pseudonymization" means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures which ensure that the personal data cannot be attributed to an identified or identifiable natural person.

"File system" means any structured collection of personal data accessible according to specified criteria, whether such collection is maintained on a centralized, decentralized, or functional or geographic basis.

"Controller" means a natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its designation may be provided for by Union or Member State law.

"Processor" means a natural or legal person, public authority, agency or other body that processes personal data on behalf of the Controller.

"Recipient" means a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. However, public authorities that may receive personal data in the context of a specific investigative task under Union or Member State law shall not be considered as recipients; the processing of such data by the aforementioned authorities shall be carried out in accordance with the applicable data protection rules in accordance with the purposes of the processing.

"Third party" means a natural or legal person, public authority, agency or other body, other than the data subject, the controller, the processor and the persons authorized to process the personal data under the direct responsibility of the controller or the processor.

A "Consent" of the data subject means any freely given specific, informed and unambiguous indication of his or her wishes in the form of a statement or other unambiguous affirmative act by which the data subject signifies his or her agreement to the processing of personal data relating to him or her.

You can find our app for Android in the Google Playstore and for iOS in the Apple App Store. When you download the Wingfield app, information is transferred to the App Store on the basis of the agreement concluded with the provider, i.e. in particular the user name, e-mail address and customer number of your account, time of download, payment information and the individual device identification number.

When using the Wingfield App, we collect the following data in so-called log files, which are technically necessary for us to offer you the functions of our mobile app and to ensure the stability and security of the app:

This data is not merged with other data sources. The server log files are stored for a maximum of 14 days and then automatically deleted. The legal basis for the processing of the log files is Art. 6 para. 1 p. 1 letter f) DSGVO (processing is for the protection of the legitimate interests of the controller). We have a legitimate interest in ensuring the functioning, stability and security of our app by storing log files.

If you want to use the Wingfield App as a tennis player or coach, you need to create a user account. As part of the registration process, we collect the following personal data from you:

We process this data in order to distinguish you from other users and to enable you to use our app and the associated products. On a voluntary basis, you can add the following information to your player profile:

If you subscribe to the paid premium subscription Wingfield Pro, we do not receive any personal data from you other than the information about the service you used to subscribe. We process this information in order to provide you with the premium features of the Wingfield app. The legal basis for this is also Art. 6 para. 1 p.1 letter b) DSGVO (processing for the performance of a contract).

On the Wingfield Smart Courts you can start so-called On-Demand-Matches. An on-demand match is an official match whose result is recognized by the German Tennis Federation ("DTB") and has a corresponding influence on your ranking points. In order to play on-demand matches, you must first verify your data. We will ask you for your DTB ID as part of the verification process. We then transfer the following data to nu Datenautomaten GmbH, Rathausstraße 2, 6900 Bregenz, Austria (hereinafter referred to as "Nu"):

If you have completed an on-demand match, we will transfer the following data to NU:

Nu operates the official ranking database of the DTB and the state tennis associations on behalf of the DTB. The aforementioned data is therefore needed to identify you as a ranked player and to include the match result in your ranking score. Nu will not use the data for any other purpose. The legal basis for the collection and disclosure of the data to Nu is Art. 6 para. 1 p. 1 letter b) DSGVO (processing for the performance of a contract).

As a player you have the possibility to link your account with the account of your coach. In this case, your coach will receive the following information about you via the Wingfield app:

The Wingfield App uses the service "Google Analytics for Firebase" an analytics service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). This application uses mobile device identifiers (including Android Advertising ID and Advertising Identifier for iOS, respectively) and cookie-like technologies to run the Google Analytics for Firebase service. Analyzing how our app is used helps us understand which parts of our app are used and how. This enables us to constantly improve our app and its functions and adapt them to changing user behavior.

The information generated by the service about your use of our app is usually transmitted to a Google server in the USA and stored there. However, we use Google Analytics for Firebase with the IP anonymization extension so that your IP address is truncated by Google within member states of the European Union or other states party to the Agreement on the European Economic Area before it is sent to servers in the USA.

However, in exceptional cases, the full IP address may be transmitted to a Google server in the USA and only shortened there. We will also ask for your express consent in this regard. No data collected by cookies will be transferred to the USA without your express consent. You can also opt out of certain Firebase features at any time using the appropriate device settings on mobile devices, such as the advertising settings for mobile devices.

Wir weisen in diesem Zusammenhang darauf hin, dass die USA vom Europäischen Gerichtshof (EuGH) als unsicherer Drittstaat eingestuft wurde, für den es keinen Angemessenheitsbeschluss, keine geeigneten Garantien und keine wirksamen Rechtsbehelfe zur Durchsetzung Deiner Rechte gibt. Es kann insbesondere nicht ausgeschlossen werden, dass staatliche (Überwachungs-)Behörden auch ohne Rechtsbehelfsmöglichkeiten auf Deine personenbezogenen Daten zugreifen und diese weiterverarbeiten. Rechtsgrundlagen für die Verarbeitung sind Art. 6 Abs. 1 S. 1 Buchst. a) DSGVO und Art. 49 Abs. 1 S. 1 Buchst. a) DSGVO.In this context, we would like to point out that the USA has been classified by the European Court of Justice (ECJ) as an unsafe third country for which there is no adequacy decision, no suitable guarantees and no effective legal remedies for the enforcement of your rights. In particular, it cannot be ruled out that state (surveillance) authorities may access and further process your personal data even without legal remedies. The legal basis for the processing is Art. 6 para. 1 sentence 1 letter a) DSGVO and Art. 49 para. 1 sentence 1 letter a) DSGVO.

You can find more information on data protection in connection with Google Analytics here: https://support.google.com/analytics/answer/6004245?hl =en#zippy=

Our app uses the "Google Sign-In" service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). This service enables our users to use the convenient single sign-on procedure. Users can log in to the Wingfield App using their Google login information without having to register. When you use Google login, we receive the following information from Google:

In this case, Google receives information about how you use our app. This information may also be transferred to servers in the USA.

In this context, we would like to point out that the USA has been classified by the European Court of Justice (ECJ) as an unsafe third country for which there is no adequacy decision, no suitable guarantees and no effective legal remedies for the enforcement of your rights. In particular, it cannot be ruled out that state (surveillance) authorities may access and further process your personal data even without legal remedies. Legal bases for the processing are Art. 6 para. 1 sentence 1 letter a) DSGVO and Art. 49 para. 1 sentence 1 letter a) DSGVO. You can remove the link to the Wingfield app at any time in Google's settings. Please note that in this case you will have to register again in the Wingfield App. For more information on data protection at Google, please visit: https://policies.google.com/privacy

Our app also uses the "Facebook Connect" service of Inc, 1601 S California Ave, Palo Alto, California 94304, USA ("Facebook"). This service enables our users to use the convenient single sign-on procedure. Users can log in to the Wingfield App with their Facebook login data without having to register.

When you use the Facebook login, we receive the following information from Facebook:

In this case, Facebook receives information about how you use our app. This information may also be transferred to servers in the U.S.A. In this context, we would like to point out that the U.S.A. has been classified by the European Court of Justice (ECJ) as an unsafe third country for which there is no adequacy decision, no appropriate guarantees and no effective legal remedies to enforce your rights. In particular, it cannot be ruled out that governmental (surveillance) authorities may access and further process your personal data even without legal remedies. The legal basis for the processing is Article 6 (1) sentence 1 (a) of the GDPR and Article 49 (1) sentence 1 (a) of the GDPR. You can revoke this consent at any time by removing the link to the Wingfield App inside your facebook settings. In order to do this navigate to Menu > Settings > Apps & Website. Please note that in this case you will have to register again in the Wingfield app. For more information on data protection at Facebook, please visit: https://www.facebook.com/about/privacy

Our App continues to use the single sign-on service provided by Apple Inc, Infinite Loop, Cupertino, CA 95014, USA ("Apple"). Users can log in to the Wingfield App using their Apple login details without having to register.

When you use the Apple login, we receive the following information from Apple:

In this case, Apple receives information about how you use our app. This information may also be transferred to servers in the USA. In this context, we would like to point out that the USA has been classified by the European Court of Justice (ECJ) as an insecure third country for which there is no adequacy decision, no appropriate guarantees and no effective legal remedies to enforce your rights. In particular, it cannot be ruled out that governmental (surveillance) authorities may access and further process your personal data even without legal remedies. The legal basis for the processing is Article 6 (1) sentence 1 a) DSGVO and Article 49 (1) sentence 1 a) DSGVO. You can remove the link to the Wingfield app at any time in Apple's settings. Please note that in this case you will have to register again in the Wingfield App. For more information on data protection at Apple, please visit: https://www.apple.com/legal/privacy/de-ww/

Information that you provide during registration and other (voluntary) information that you provide us in your account, we will store as long as you maintain your account with us. You can delete your account at any time. Simply send us an e-mail to app@my-wingfield.com. Your personal data will then be deleted within the statutory period.

If you have collected session data (here especially video) together with other playing partners registered at Wingfield, please inform us explicitly by e-mail after deleting your account, stating your Wingfield email address, that all videos associated with this account should be deleted and thus your play partners will no longer have access to the video data. Otherwise the video data will remain accessible for your playing partners.

If you maintain a Premium Account (see Section 3.4), we will store the aforementioned data at least for the term of your Premium Subscription and beyond, for as long as you maintain an account with us. If you delete your account, we will thereafter only store certain data regarding which we have legal (in particular tax law) retention obligations.

Our product offers you a detailed game analysis using smart cameras. Naturally, video images of the playing persons are recorded.

When you register, we will ask for your consent to record video of you for match analysis on the Smart Court. The recording starts only when a match is started at the Wingfield box. The recording ends as soon as the match is finished by a player or automatically after five hours at the latest. The raw video data is only manually reviewed by us to improve our product and for troubleshooting. The creation of your game statistics is fully automated. If you have completed an on-demand match (see section 3.5), we will manually review the raw video data once to ensure that the match was held according to the rules and that the result is valid. If we discover irregularities or have doubts about the compliance of the match, we will create a match report and send it together with the video raw data to the German Tennis Federation e.V., Hallerstr. 89, 20149 Hamburg ("DTB"), so that the DTB can finally decide whether the match will be evaluated. The legal basis for the data processing is Art. 6 para. 1 sentence 1 letter a) DSGVO (consent of the data subject) and Art. 6 para. 1 sentence 1 letter b) DSGVO (processing for the performance of a contract).

The cameras are oriented so that only the tennis court itself and the area immediately behind it are filmed. The area behind the court is so far away from the cameras that people who are in this area are usually not identifiable. The tennis courts where our product is used are marked accordingly with signs, so that it is your free decision whether you enter the recording area or not.

When you use the Wingfield Box in conjunction with the Wingfield App, we regularly process the following personal data: Statistics of your games (e.g. number of aces, service errors, double faults, forehand and backhand winners or faults and break points won) and account data (username and email address). We store this data for as long as you maintain an account with us. The legal basis for the data processing is Art. 6 para. 1 p. 1 letter b) DSGVO (processing for the performance of a contract).

We store the recorded videos and the analysis data generated from the analysis of this video data about your game for as long as you maintain your account with us. In addition, we only keep raw video data if you played an on-demand match in the last six months before closing your account, as we are obliged by the DTB to keep this data for six months for security reasons. You can delete your account at any time by sending us your deletion request by e-mail to app@my-wingfield.com.

If the processing of personal data is based on a granted consent, you have the right to revoke the consent at any time. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of consent until revocation.

You have the right to request confirmation from us as to whether we are processing personal data relating to you. You can request confirmation at any time using the contact details above.

If personal data is processed, you can request information about this personal data and about the following information at any time:

If personal data is transferred to a third country or to an international organization, you have the right to be informed about the appropriate safeguards pursuant to Art. 46 DSGVO in connection with the transfer. We will provide a copy of the personal data that is the subject of the processing. For any additional copies you request, we may charge a reasonable fee based on administrative costs. If you make the request electronically, the information shall be provided in a commonly used electronic format unless you specify otherwise. The right to receive a copy under subsection 3 may not interfere with the rights and freedoms of others.

You have the right to request that we correct any inaccurate personal data concerning you without undue delay. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data - also by means of a supplementary declaration.

You have the right to request that we delete personal data concerning you without undue delay and we are obliged to delete personal data without undue delay if one of the following reasons applies:

If we have made personal data public and we are obliged to erase it on one of the above grounds, we are obliged, taking into account the available technology and the costs of implementation, to take reasonable steps, including technical measures, to inform data controllers that process the personal data that a data subject has requested that they erase all links to or copies or replications of that personal data. The right to erasure ("right to be forgotten") does not exist to the extent that the processing is necessary:

You have the right to request that we restrict the processing of your personal data if one of the following conditions is met:

Where processing has been restricted in accordance with the above conditions, such personal data shall - apart from being stored - only be processed with the consent of the data subject or for the establishment, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of substantial public interest of the Union or a Member State.

You have the right to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format, and you have the right to transfer this data to another controller without hindrance from the controller to whom the personal data was provided, provided that:

When exercising the right to data portability pursuant to paragraph 1, you have the right to have the personal data transferred directly from one controller to another controller, insofar as this is technically feasible. The exercise of the right to data portability does not affect the right to erasure ("right to be forgotten"). This right does not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Pursuant to Art. 21 DSGVO, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Art. 6(1)(e) or (f) DSGVO; this also applies to profiling based on these provisions. We will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.

If personal data is processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing; this also applies to profiling insofar as it is related to such direct marketing. If you object to the processing for direct marketing purposes, the personal data will no longer be processed for these purposes.

In connection with the use of information society services, notwithstanding Directive 2002/58/EC, you may exercise your right to object by means of automated procedures using technical specifications. You have the right to object, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out for scientific or historical research purposes or for statistical purposes pursuant to Article 89(1), unless the processing is necessary for the performance of a task carried out in the public interest.

You also have the right, without prejudice to any other administrative or judicial remedy, to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.