GDPR

I. Introductory provisions

  1. This Privacy Policy applies to the use of the Adventurer Solutions mobile application license, available on the App Store and Google Play Store, and to the browsing of the website www.adventurer.space (hereinafter “Application”), which is maintained by Adventurer Solutions s.r.o., with headquarters at Mikovcova 548/5, Vinohrady, 120 00 Praha 2, ID: 10675078, company entered in the Commercial Register maintained by the Ministry of Justice in Prague, Department C, File 346380 (hereinafter “Operator”), contact email: support@adventurer.space.

  2. The user of the application is a natural person, who, with the intention of using the Application, enters into a contract with the Operator in accordance with the Terms and Conditions as well as these conditions (“User”).

  3. The Application is a mobile service serving primarily for navigation of the user to the destination of a trip or goal of a chosen activity and providing assistance with related activities, such as planning, route orientation, and notifying the user of possible danger, current weather conditions, or necessary equipment.

  4. This Privacy Policy can be continuously changed or amended by us. We will always inform you in time via email 30 days before the changes take effect. If you disagree with the changes, you have the right to terminate the service contract without any repercussions.

  5. This Policy describes how we process user personal data whilst acting in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council, a general regulation on the processing of personal data, also known as GDPR (which we shall henceforth refer to using the acronym “GDPR”).

 

II. Adventurer Solutions is a controller of personal data

  1. From the moment you express your consent in the application, we will begin processing your personal data. We are therefore a controller of personal data. Using the application may also lead to personal data collection. We always process personal data gained exclusively from you.

  2. We process this personal data in the context of Art. 4 para. 1 of the GDPR:

    • your electronic mail address (email)

    • the username you enter

    • the state you inhabit

    • the IP addresses of the devices used to log into the application

    • billing information in case of paying for a subscription

    • potential identification of your Facebook or Google profile

  3. We use the personal data stated above to fulfill the contract in accordance with Art. 6 para. 1 point (b) of the GDPR, which means providing services by making the application accessible, informing of planned technical maintenance of hardware and software, answering your inquiries through customer support, and informing of changes in the application and regarding its usage.

  4. For the reason of protecting our servers from attacks and user accounts from abuse by third parties in the context of Art. 6 para. 1 point (f) of the GDPR

  5. For the reason of informing you, in our own interest, of the application’s new features, what improvements and updates we are planning, and what related products we are developing, so that you can always have an accurate and up-to-date overview of the application’s state.

  6. Email communication with customer support is always kept for a period of 12 months, so that we may use it to offer higher quality services and immediately and efficiently provide help in the event of repeated issues with the application.

  7. We process personal data for the duration of the contract, meaning for the duration of your user account’s existence, but no longer than 10 years from the end of contract. After the end of the contract, if a dispute occurs regarding the relation between the company and user related to the application’s Terms of Service or this Privacy Policy in regard to awarding damages.

  8. When providing our services, we use the following processors, who act in accordance with the European data protection standards. You agree that we may relay your personal data to them for purposes stated above. These processors are Booking.com International B.V., with headquarters at 1017CE Amsterdam, Herengracht 597, Kingdom of the Netherlands, Registration Number: 57988218; Booking.com (Czech Republic) s.r.o., with headquarters at Na příkopě 854/14, Nové Město, 110 00 Praha 1, ID: 24816841; Airbnb Ireland UC, private unlimited company, with headquarters at 8 Hanover Quay Dublin 2, D02 DP23, Ireland.

 

III. Data processing based on your consent

  1. Your data, specified above, can also be further processed by us in the event that you voluntarily give us your informed consent in the context of Art. 6 para. 1 point (a) of the GDPR. Using the application is never tied to providing your consent. Although, it is appropriate to at least give consent to the processing of data directly related to navigating the application.

  2. Consent in the application most often comes in the form of a checkbox.

  3. Consent can be given to us for different purposes, always separately.

  4. We may process personal data based on consent for the duration of service provision, meaning for the duration of your user account’s existence. The time period for data processing can be shortened if you withdraw consent.
     

IV. Withdrawal of consent

  1. Consent to the processing of personal data, in accordance with the previous paragraph, can be withdrawn at any time from within your user account (profile section) or by sending a request to the email address support@adventurer.space

  2. If you do not wish to receive emails, you may cancel your subscription at any time in the footer of any email. This is unfortunately not possible with emails necessary for the application to function. This type can still be unsubscribed from; again, from your user profile.

  3. We always view subscription cancelling as withdrawal of consent in the context of Art. 7 para. 3 of the GDPR or as an objection in the context of para. 21 of the GDPR in the case of emails used to inform you of related services and products.

  4. Consent given in accordance with the paragraphs above also applies to the processors authorized by the company.

  5. Please be aware that withdrawal of consent does not affect the lawfulness of processing for purposes of fulfilling the contract.

 

V. Data processing contract

  1. The user always enters into a gratuitous contract regarding the processing of personal data the content of which is determined by the following provisions, in accordance with Art. 28 para. 3 of the GDPR.

  2. Users provide the application with this personal data: your electronic mail address (email), the username you enter, the state you inhabit, the IP addresses of devices used to log into the application, billing information in case of paying for a subscription, potential Facebook or Google profile identification.

  3. The company is obligated to process personal data exclusively for the purpose of saving and securing the transmission of data to storage and on the basis of the user’s instructions.

  4. The company ensures the functionality of the application and is obligated to regularly maintain it and make it accessible to the user.

  5. Maintenance and upkeep of the application conducted by the company is of a random nature stemming from the necessity to fix errors and maintain the system.

  6. The user agrees with the usage of other processors, whose processing consists of storing data on cloud servers, and self-employed persons if necessary to ensure and secure the application’s functionality. No other processor will be involved in the processing without the user’s consent or without entering into a contract binding the sub-processor to fundamentally similar obligations with regard to personal data processing that the company is bound by.

  7. If the company decides to involve another processor in data processing, the company must inform users of this. All instructions for other processors will be in accordance with laws and regulations regarding personal data protection. The company will always see to it that an appropriate processor is chosen.

  8. The company is obligated to ensure that all other processors or persons involved in processing that have been authorized by the company always abide by the high standard of trust, primarily by entering into a non-disclosure agreement.

  9. The company must secure personal data in accordance with Art. 32 of the GDPR. The parties declare that, by the day of entering into the contract, the company has adopted technical measures ensuring the security of personal data through data transfer encryption via the HTTPS protocol.

  10. The user acknowledges that he or she has full control and responsibility over the data that he or she enters into the application. The requirement of correctness, adequacy, time constraint, and minimalization of stored data must be fulfilled by the user. If the user carries out a deletion of data, then this data is erased. The company does not keep copies of files and does not back up any user data.

  11. The parties are obligated to provide mutual cooperation in the event of a suspicion of data subject personal data abuse. The parties are to exert maximum effort and take such measures to avoid the risk personal data abuse.

  12. After the end of this contract, meaning the termination of the user account, all entered data will be erased in 7 days. The user may always export and save the stored data to his or her own storage device to prevent irreversible loss of entered data. Neither the company nor the authorized processors are responsible for any damages caused by loss of data entered into the application once 7 days have passed since the termination of the user account.

  13. Privacy Policy Provisions form a part of this contract and follow below.

 

VI. Further provisions regarding the Privacy Policy

  1. We do not process any personal data belonging to the special categories of personal data, the so-called sensitive data, pursuant to Art. 9 of the GDPR.

  2. Processors authorized by us to process data must fulfill a high standard of protection and are to always handle the data within the bounds of this policy.

  3. We may use the Application to collect and use technical data and related information, which includes technical information about the user’s device, the system and application software and peripheral devices, which is regularly collected with the intention of simplifying provision of software updates, product support, and other services related to the application. We may use this information, as long as it is in a form that does not personally identify the user, to improve our products or to provide services or technology, only for the necessary amount of time.

  4. We erase personal data after termination of service provision or cessation of reasons to process data.

  5. We shall always exert maximum effort to ensure that personal data isn’t processed by other parties, however, we aren’t responsible, in regard to the user or other data subjects, for damages caused by unauthorized processing of personal data by third parties.

  6. All data from the web application is stored on the servers of the company Adventurer Solutions s.r.o. No data transmitted by cloud applications leaves the territory of the European Union. Data entered by the user is not duplicated, monitored, or altered.

  7. Neither you nor we consider the emails we are going to send you as unsolicited commercial communication in the context of Act No. 40/1995, on advertising, and Act No. 480/2004, on certain legal aspects of information

  8. If we become aware of a security risk, we will alert you without unnecessary delays.

  9. We are obligated to cooperate with the user and provide him or her with legal assistance in exacting compensation from the responsible processors in the event of damages caused by personal data leaks or any other occurrence leading to damages. The company itself, however, does not carry responsibility for the mistakes of the processors authorized by it.

  10. You confirm that the personal data provided by you is true, accurate, and that it pertains to you exclusively or that you have entered data the use of which will not cause interference with the rights of third parties. Always inform us of changes in your personal data, so that only up-to-date and complete data is processed, regardless of whether we ask you to do so or not. If we ask you to do so, then always provide us with up-to-date and true data.

  11. Personal data will be processed in electronic form via unautomated means. Anonymized personal data can also be processed via automized means. Data subjects will not be subject to an individual automated decision in the context of Art. 22 of the GDPR.

 

VII. Support in the handling of personal data

  1. If you come to the conclusion that the way we process your personal data violates the protection of your private and personal life or violates the law, particularly if your personal data is inaccurate in regard to the purpose of their processing, you may reach us at support@adventurer.space to ask for an explanation, raise an objection against the processing of data for purposes of legitimate interest via email to the address support@adventurer.space or to request information about the extent or method of processing your personal data. We will provide you with the data within an appropriate period (max. 30 days). You may also turn directly to the Office for Personal Data Protection.

 

VIII. The Cookie Files

  1. What are cookies 

The cookie files or so called “cookies” are text files, saved in an electronic device of every visitor of the mobile application, which allow an analysis of a manner of using the mobile application.
Not all cookies collect your personal data; some of them only enable correct operation of the mobile application. You can refuse using cookies in applicable Settings of your device.
When refusing cookies, it might happen that you will not be able to fully use all the functions of the mobile application.

 

2. Which cookies the mobile application uses 

The mobile application uses relational (temporary) cookies which are automatically erased after leaving the mobile application. Furthermore, it uses permanent cookies, which remain in your device until they expire or you delete it. 

The mobile application uses: 

  • first party cookies – these cookies are assigned to our domain; these are necessary cookies and performance cookies, which we use even before conclusion of the contract for the purpose of performance of the contract, on the basis of our legitimate interests or on the basis of your consent. They can be temporary or permanent;

    • session cookies – allow the use of basic functions of the mobile application, these cookies do not collect personal data, i.e. they usually do not identify you;

    • analytical cookies – serve for analysis of the way of using mobile application, the data collected by these cookies are usually anonymous; 

  • third party cookies – these cookies are assigned to the domain other than our domain; these cookies allow us with your consent to especially analyse our mobile application and display an advertisement tailored for you; they can be functional or targeted and advertising;

    • functional cookies – serve to personalization of the content via storing of logging data; geolocation etc.; it is possible to collect and process personal data via these cookies; 

    • targeted and advertising cookies – serve to displaying targeted advertisement in the mobile application; it is possible to collect and process personal data via these cookies. We can share information about how you use our mobile application with our partners in the field of social networks, advertising and analysis.
       

3. Services which operate with cookies 

The mobile application uses services provided by Google LLC (hereinafter referred to as “Google“). These services operate with data collected via cookies.
Service of Google Analytics is used to collect statistics about your use of the mobile application. Cookies obtained by this service will expire depending on your settings, at most after 2 years or until they are manually deleted by yourself.
Service of Google Ads is used to identify you within the Google advertising network and retarget your ad (retargeting and remarketing). Cookies obtained by this service will expire depending on your settings, at most after 18 months or until they are manually deleted by yourself.
If you are interested in how Google uses data collected by us and how to regulate or prohibit processing, you can find this information by clicking on the following link: How Google uses data when you use websites or apps of our partners.

 

IX. Final provision

  1. All private law relations created on the basis of or in relation to the processing of personal data are subject to the legal order of the Czech Republic regardless of from where their attainment was realized. Settling of potential disputes formed in relation to privacy protection between the user and company will be carried out by the appropriate Czech courts acting in accordance with Czech law.

  2. This Privacy Policy becomes effective on 14 February 2022.