Privacy Policy

1. Information about the controller

We will inform you about the collection of personal data when using this website below.

The controller within the meaning of Art. 4(7) of General Data Protection Regulation (“GDPR”) and other national data protection laws of the EU Member States as well as other data protection regulations is:

WeGlide UG (haftungsbeschränkt)
Erenburgerstraße 19
67549 Worms
Phone: +49 06236 6946162
E-mail: info@weglide.org
Website: www.weglide.org

We are not legally obliged to appoint a data protection officer.

2. General Information about our data processing

We only collect and use personal data of our users insofar as this is necessary to provide a functional website as well as our contents and services. As a rule, collection and use of our users' personal data is only undertaken with the respective user's consent. An exception applies in those cases where prior consent cannot be obtained for real reasons and the processing of the data is permitted by law.

In cases where we have obtained consent on the part of the user (also referred to as the “data subject”) to process personal data, Art. 6(1)(a) GDPR serves as the legal basis for processing this personal data. In the processing of personal data required for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b DSGVO serves as the legal basis. This also applies to processing operations that are necessary in connection with pre-contractual activities.

In cases where it is necessary to process personal data to comply with a legal obligation to which we are subject, Art. 6(1)(c) GDPR serves as the legal basis for such processing.

Article 6(1)(d) GDPR serves as the legal basis in cases where processing personal data is necessary in order to protect the vital interests of the data subject or those of another natural person.

If processing is necessary to protect a legitimate interest of ours or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh these interests, Art. 6(1)(f) GDPR serves as the legal basis for such processing.

Personal data of the data subject will be erased or blocked as soon as the purpose for which the data is stored ceases to apply. Furthermore, data may be retained for longer periods if this has been provided for by European or national legislative bodies in EU regulations, laws or other rules to which the controller subject. Data will also be blocked or erased if a retention period prescribed by the laws referred to above has lapsed, unless there is a need for further retention of the data for the conclusion or performance of a contract.

When you contact us by e-mail, the data you provide will be stored by us to respond to your question. We erase data collected in this context after retention is no longer necessary, i.e. the purpose for which it was retained no longer applies, or limit processing if statutory retention obligations apply.

If we wish to use commissioned service providers for specific functions of our offerings, or use your data for marketing purposes, we will inform you in detail about the respective processes below. We will also indicate the defined criteria for the applicable retention period.

3. Your rights as a data subject

You have the following rights with regard to personal data concerning you:

  • Right of access, Art. 15 GDPR
  • Right to rectification and/or completion or erasure, Art. 16 GDPR
  • Right to restriction of processing, Art. 18 GDPR
  • Right to erasure (Right to be forgotten), Art. 17 GDPR
  • Right to notification, Art. 14 GDPR
  • Right to data portability, Art. 20 GDPR
  • Right to object to processing, Art. 21 GDPR
  • Right to withdraw consent, Art. 7 GDPR

You also have the right to lodge a complaint with a data protection supervisory authority concerning our processing of your personal data.

If you have any questions, comments or requests regarding our collection, processing and use of your personal data, please contact us as well using the contact details provided above.

4. Collection of personal data when you visit our website

In general, it is possible to use our website without providing any personal data. When using our website for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data that is technically necessary for us to display our website to you and to guarantee stability and security (legal basis: Art. 6(1)(f) GDPR):

  • IP address
  • Date and time of the request
  • Contents of the request (specific page)
  • Access status/HTTP status code
  • The amount of data transferred in each case
  • The referring website (type of browser)
  • Operating system of the user
  • Language and browser software version

This data is also stored in log files on our system. This does not apply to the IP addresses of the user or other data that would permit association of data with the user. This data is not stored together with other personal data of the user (legal basis: Art. 6(1)(f) GDPR).

Data is stored in log files to ensure the functionality of the website. The data is also used to optimize the web page and to ensure the security of our information technology systems. No evaluation of the data for marketing purposes is undertaken in this context.

The data will be erased as soon as it is no longer necessary to achieve the purpose for which it was collected. In the case of data collected to enable provision of the website, this will be undertaken once the respective session has ended.

Any data stored in log files will be erased within seven days at the latest. Retention for longer period is not possible. In this case, the user's IP addresses will be erased or modified, so that it is not possible to associate the IP address with the requesting client.

The collection of data for the provision of the website and the retention of data in log files is absolutely necessary for the operation of the website. Consequently, there is no option to object on the part of the user.

5. Use and application of cookies

Our website uses cookies. Cookies are small text files that are saved on the hard drive of your computer according to the web browser you use and that send certain information to the party who placed the cookie. Cookies cannot run programs or transmit viruses to your computer. Their purpose is to make our website more user-friendly and functional. The legal basis for processing personal data using cookies is Art. 6(1)(f) GDPR.

Our websites use temporary and permanent cookies. Temporary cookies are automatically deleted when you log out or close your browser. Without limitation, these include so-called “session cookies”. They store a so-called "session ID" by means of which various requests from your browser can be assigned to a common session. This allows your browser to be recognized the next time you return to our website. Session cookies are deleted when you log out or close your browser. By contrast, permanent cookies are automatically deleted after a specified period that may vary depending on the cookie. You can delete the cookies at any time using your browser's security settings.

As a rule, our website can also be viewed without cookies. You can configure your browser settings according to your wishes, e.g. reject “third-party cookies” or reject all cookies in general. Cookies that have already been saved can be deleted at any time. This can also be done automatically. Please note that some features on our website may not work if you have disabled cookies.

The following list provides more information about how to change your cookie settings in the browser you are using:

https://www.google.com/intl/en/policies/technologies/managing/
http://support.mozilla.com/en-GB/kb/Cookies#w_cookie-settings
http://windows.microsoft.com/en-GB/windows-vista/Block-or-allow-cookies/
http://www.apple.com/safari/features.html#security

If you have given consent (Art. 6(1)(a) GDPR) to the processing of your data, you may withdraw it at any time. Such a withdrawal is relevant for purposes of the lawfulness of processing your personal data after you have informed us of your decision.

You may object to processing in cases where we are processing your personal data on the basis of a weighing of interests. This is the case if the processing is not necessary, in particular in order to perform a contract to which you are a party. In such cases, we inform you accordingly in the description of the functions concerned (e.g. Art. 6(1)(f) GDPR). When asserting such an objection, we ask that you please explain the reasons why we should not process your personal data as we have previously. Should you have a legitimate objection, we will review the facts and either discontinue or modify our data processing or provide you with compelling legitimate grounds on the basis of which we intend to continue processing.

Please send the withdrawal of your consent or your objection to: info@weglide.org

7. Your public contributions & your account information & registration

Whatever you upload on WeGlide can be seen and used by everyone. WeGlide was primarily created to help you share your flights with the world, and we share your public data because you have asked us to do so. When you upload flight logs ("IGC files") or use our live tracking feature, you are creating a permanent, public record. We may use your public information, either aggregated with the public information of others or individually, to create new features or data-related products for you or to learn more about how WeGlide is used.

Unless this Policy says otherwise, you should assume that information that you actively provide to WeGlide, including personal information, is publicly visible and can be found by search engines. Like most things on the Internet, anything you share may be copied and redistributed throughout the Internet by other people. Please do not contribute any information that you are uncomfortable making permanently public, like revealing your real name or aircraft information in your flight details.

You should be aware that specific data made public by you or aggregated data that is made public by us can be used by anyone for analysis and to infer information about users.

When you upload your flight logs on WeGlide or provide us with your location history through live tracking features, that information will be public. The main reason for WeGlide is helping you share your flights with the public. If you use these features, e.g. uploading flights as IGC files or using the live tracking feature, you are sharing your location history with the public. If you do not want to share your location history, you must not use these features. You can always delete your flight logs from WeGlide but other entities might have downloaded them before.

You do not need to create an account to use WeGlide. If you do create an account, you need to give us your email address, name, gender, date of birth and optionally your gliding club. Apart from your email address and date of birth, all information will be shown publicly. Please be especially reminded that your gender will be publicly visible.

If you do not create an account, you are limited to viewing the flights of others. You are not required to create an account to view flights of other pilots on WeGlide. However, if you want to share your own information (e.g. upload flights) you will have to create an account. Your date of birth is not publicly visible, but your junior status is, which is derived from your date of birth. Your password is only used to verify that the account is yours. Your IP address is also automatically submitted to us, and we record it temporarily to help prevent abuse. No other personal information is required.

The legal basis for this is Art. 6 Para. 1 lit. a) and lit f) GDPR.

8. E-Mails & Newsletter

You will have to provide an email address at the time of registration or in later interactions with the WeGlide service. Your email address is kept confidential, except as provided in this Policy. We do not sell, rent, or use your email address to advertise third-party products or services to you. With your registration, you agree that we may contact you by email with any questions we may have concerning your flights. You can revoke this consent at any time.

We send newsletters, e-mails and other electronic notifications (hereinafter "newsletter") only with the consent of the recipient or legal permission. Our newsletters contain information about our services and us.

In order to subscribe to our newsletters, it is generally sufficient to provide your email address. However, we can ask you to provide a name for the purpose of addressing you personally in the newsletter or provide further information if this is necessary for the purposes of the newsletter.

The newsletters contain a so-called "web beacon", ie a pixel-sized file that is retrieved from our server when the newsletter is opened or, if we use a shipping service provider, from its server initially technical information, such as information about the browser and your system, as well as your IP address and the time of access, is collected.

This information is used to technically improve our newsletter on the basis of the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined with the help of the IP address) or the access times. This analysis also includes determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our endeavor nor, if used, that of the shipping service provider to observe individual users. Rather, the evaluations serve us to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users. The evaluation of the newsletter and the measurement of success take place, subject to the express consent of the user, on the basis of our legitimate interests for the purpose of using a user-friendly and secure newsletter system that serves both our business interests and the expectations of the users. A separate revocation of the performance measurement is unfortunately not possible, in this case the entire newsletter subscription must be canceled or contradicted. Processed data types:

  • Processed Data Types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), meta / communication data (e.g. device information, IP addresses), usage data (e.g. websites visited, interest in content, access times).
  • Affected Persons: communication partner.
  • Purposes of Processing: direct marketing (e.g. by email or post).
  • Legal Basis: Consent (Art. 6 Para. 1 S. 1 lit. a. GDPR), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. GDPR).
  • Opposition Option (Opt-Out): You can cancel the receipt of our newsletter at any time, i.e. Revoke your consent or object to further receipt. You will find a link to cancel the newsletter either at the end of each newsletter or you can use one of the contact options given above, preferably e-mail.
  • Used services and service providers: Mailchimp - Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA (Website; Data protection declaration).

If you register to our newsletter, the data you have requested for this purpose, i.e. your email address and - optionally - your name, will be transmitted to us. At the same time, we save the IP address of the Internet connection from which you access our website, as well as the date and time of your registration. As part of the further registration process, we will obtain your consent to the sending of the newsletter, describe the content in detail and refer to this data protection declaration. We use the data collected in this way exclusively for sending the newsletter - therefore, in particular, it is not passed on to third parties.

The legal basis for this is Art. 6 Para. 1 lit. a) GDPR.

You can revoke your consent to the sending of the newsletter at any time with effect for the future in accordance with Art. 7 Para. 3 GDPR. To do this, all you have to do is inform us of your revocation or use the unsubscribe link contained in every newsletter.

The registration for our newsletter takes place in a so-called double opt-in procedure. This means that after registering you will receive an email in which you will be asked to confirm your registration. This confirmation is necessary so that nobody can register with someone elses email address. The registrations for the newsletter are logged in order to be able to prove the registration process in accordance with the legal requirements. This includes storing the time of registration and confirmation as well as the IP address. Changes to your data stored by the shipping service provider are also logged.

Deletion and restriction of processing: We can save the unsubscribed email addresses for up to three years on the basis of our legitimate interests before we delete them in order to be able to prove a previously given consent. The processing of this data is limited to the purpose of a possible defense against claims. An individual request for deletion is possible at any time, provided that the previous existence of consent is confirmed at the same time. In the event of obligations to permanently observe contradictions, we reserve the right to store the e-mail address in a block list for this purpose alone. The logging of the registration process takes place on the basis of our legitimate interests for the purpose of proving that it has proceeded properly. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests in an efficient and secure mailing system.

Notes on legal bases: The newsletter is sent on the basis of the consent of the recipient or, if consent is not required, on the basis of our legitimate interests in direct marketing, if and to the extent that this is legal, e.g. in the case of advertising to existing customers, is allowed. Insofar as we commission a service provider to send e-mails, this is done on the basis of our legitimate interests. The registration process is recorded based on our legitimate interests to demonstrate that it was carried out in accordance with the law.

9. Third Party Applications

We may share your information with a third-party application for the purposes of linking your account with external service or security identification with external service, with your consent, for example when you choose to access the external services via our Service. We are not responsible for what those parties do with your information, so you should make sure you trust the application and that it has a privacy policy acceptable to you.

Currently we support the following external services:

These services can, after you grant permission to them

  • Access your personal information (including your email address and date of birth)
  • Access all your public information on WeGlide
  • Upload flights ("IGC files") on your behalf
  • Upload tasks on your behalf
  • Declare tasks on your behalf

We have established that above services comply with EU GDPR directive at minimum in areas where information to them is provided by our Service.

Before linking an external service to our Service, the user has to create an account at such service and accept their terms of use and privacy policy. The same terms and privacy policy apply when user is using the external service via our Service.

The legal basis for this is Art. 6 Para. 1 lit. a) GDPR.

It is possible to open flights from WeGlide in SeeYou Cloud. SeeYou Cloud accesses permanent, publicly available flight logs ("IGC files"). No further information is transmitted. You can deactivate this option at any time in the settings. The option will be deactivated for all of your flights. The deactivation does not affect any flight logs ("IGC files") that have already been opened in SeeYou Cloud.

10. Data security

All information that you transmit to us will be stored on servers within the European Union, unless otherwise stated in this Privacy Policy. Unfortunately, the transmission of information via the Internet is not completely secure. For this reason, we cannot guarantee the security of data transmitted to our website via the Internet.

However, we secure our website and other systems against loss, destruction, access, alteration or dissemination of your data by unauthorized persons via appropriate technical and organizational measures.

11. No sharing of your personal data

We do not share your personal data with third parties unless you have consented to having your data shared or we are entitled or obliged to share data on the basis of statutory provisions and/or official or court orders. In particular, this may involve providing information for the purposes of criminal prosecution, emergency response or enforcing intellectual property rights.

12. Data protection and third-party websites

The website may contain hyperlinks to and from websites operated by third parties. If you follow a hyperlink to one of these websites, please note that we cannot assume any responsibility or guarantee for third-party content or data protection conditions. Please be sure to read the applicable privacy policy before submitting personal data to any third-party website.

13. Changes to our Privacy Policy

We reserve the right to amend our Privacy Policy at any time with future effect. The current version is available on the website. Please visit the website regularly and review the applicable data protection policies.

The text of this Privacy Policy is available under the Creative Commons Attribution-ShareAlike License and was adapted from the Wikipedia Privacy Policy and the SkyLines Privacy Policy.