App privacy policy and information for data subjects in accordance with Articles 13 and 14 of the EU General Data Protection Regulation
General information
Information about the responsible body:
Company ritterwerk GmbH
Legal representative: Moritz Schüller
Address: Industriestraße 13
82194 Gröbenzell
Contact details data protection officer: email@iitr.de
General data processing information
Personal data is only collected if you provide it to us voluntarily. No other personal data is collected. Any processing of your personal data beyond the scope of the legal permissions will only take place with your express consent.
Legal basis:
ritterwerk GmbH only processes your data if there is a legal basis for doing so, and in particular if you are resident in the European Economic Area.
This includes:
1. The fulfilment of a contract, for example for the use of the app (Art. 6(1)(b) GDPR).
2. Compliance with legal obligations (Art. 6 (1) (c) GDPR).
3. Our legitimate interests, e.g. the further development of our app (Art. 6 (1) (f) GDPR).
Purpose of processing: Analysis and further development: We analyse user behaviour in order to improve existing functions and develop new ones.
Data controller:
ritterwerk GmbH
Industriestraße 13
82194 Gröbenzell
Server location:
Germany (AWS)
Netherlands (Azure)
Functionality:
Ensuring user-friendly operation, including authentication and activation of app functions.
Maintenance and support: Minimising disruptions and improving app performance.
Security:
Your data is protected by state-of-the-art physical, technical and organisational security measures. We only store personal data for as long as is necessary for the respective purpose or as required by law.
Data concerned:
When you access our app, you transmit data to our web server via your internet browser (due to technical necessity). The following data is recorded during an active connection for communication between your internet browser and our app server:
- Contact information (your email address)
- Date and time of the request
- Device information: Device name, device ID, online status, activation time, firmware version, etc.
- Network configuration information: Wi-Fi details and location permissions, which are only used to set up the device network and are not uploaded to the cloud.
- Device usage logs: Sensor data and configuration commands sent by the app to the device.
- Access status (file transferred, file not found, etc.)
- Web browser and operating system used
- Full IP address of the requesting computer
- Amount of data transferred
- Location data (rough location information that does not contain precise coordinates, but only provides an approximate location to optimise certain functions)
- Usage data (interactions with the app, such as clicks, scrolling behaviour or app launches, to optimise the user experience.
- Diagnostic data (technical information, including crash reports, energy consumption and performance metrics to improve the user experience
Categories of recipients:
Public authorities in the event of overriding legal provisions
External service providers or other contractors, including for data processing and hosting.
Third country transfers: In the context of contract execution, processors outside the European Union may also be used, including email providers.
If your data is transferred to recipients in countries outside the European Economic Area, where a lower level of data protection may apply, ritterwerk GmbH will ensure that appropriate safeguards are in place:
1. Binding data protection standards
Data will only be passed on to companies that undertake to comply with the binding data protection regulations of ritterwerk GmbH.
2. EU standard contractual clauses and internal regulations
Data is only transferred to recipients who have either (i) concluded EU standard contractual clauses or (ii) apply binding internal data protection guidelines that guarantee a high level of data protection.
Duration of data storage:
For reasons of technical security, in particular to defend against attempts to attack our server, we store this data for a short period of time. It is not possible for us to draw conclusions about individual persons based on this data. After 30 days at the latest, the data is anonymised by shortening the IP address at domain level so that it is no longer possible to establish a connection to individual users. The data is also processed in anonymised form for statistical purposes; it is not compared with other data sets or passed on to third parties, even in excerpts.
The device usage logs are stored for 7 days and then automatically deleted.
The duration of data storage is based on the statutory retention obligations and is usually 10 years.
Frequency of collection:
Usually in real time or event-driven (e.g. when switching a smart plug on or off)
Access and export:
Users can view or export data via the app interface or request a data export via the privacy settings.
Information on data subject rights and contacts
You can assert your rights to information, correction or deletion, or to restriction of processing, or your right to object to processing, as well as your right to data portability at any time. You can contact us by email or letter. You also have the right to lodge a complaint with the data protection supervisory authority.
Contacting the data protection team
Do you have any questions or would you like to exercise your rights? Our data protection team can be reached at: datenschutz@ritterwerk.de
Our team will do everything in its power to process your requests quickly and conscientiously.
____________________________________________________________________
This privacy policy reflects our commitment to not only providing you with accurate and reliable products, but also to treating your personal data with care and respect.
We reserve the right to update this privacy policy from time to time.
Last update: 19.06.2026