City search

Spotinformationen
App privacy policy

With the following privacy policy, we would like to inform you about what types of your personal data (hereinafter also referred to as ‘data’) we process, for what purposes and to what extent. The privacy policy applies to all processing of personal data carried out by us, both in the context of the provision of our services and in particular within our Fotogoals app (hereinafter referred to as the ‘app’). We would like to point out that an internet connection is required to use the Fotogoals app. Data transmission via the Internet may be subject to security vulnerabilities, which is why complete protection of data against access by third parties is not possible. The terms used are not gender-specific. (Users of the app are hereinafter referred to as ‘users’)

Status: 15/07/2025

Table of contents

  • Responsible person
  1. General storage period of personal data
  2. Legal basis
  3. Security measures
  4. App access rights
  5. Registration and use of personal data in the context of app use
  6. User rights
  7. Disclosure of personal data to third parties
  8. Web hosting and provision of our online services
  9. Change and update

Responsible person

Fotogoals – Lukas Zobel

Weedstr. 5

97346 Iphofen, Germany

Authorized representative: Lukas Zobel

E-mail: kontakt@fotogoals.com

Imprint: fotogoals.com/imprint

1. General storage period of personal data

Unless otherwise stated in this privacy policy or explicitly stated, the personal data collected by this APP will be stored until a user requests us to delete it, revokes their consent to storage or the purpose for data storage no longer applies. If there is a legal obligation to store the data or another legally recognised reason for storing the data (e.g. legitimate interest), the personal data in question will not be deleted until the respective reason for storage no longer applies.

2. Legal basis

  • The processing of personal data is only permitted if there is an effective legal basis for the processing of this data. Insofar as we process your data, this is regularly done on the basis of your consent in accordance with Art. 6 (1) lit. of the GDPR. Below you will find an overview of the legal bases of the GDPR on the basis of which we process personal data. Please note that in addition to the provisions of the GDPR, national data protection regulations may apply in your or our country of residence or domicile. Should more specific legal bases also apply in individual cases, we will inform you of these in the privacy policy.

    • Consent (Art. 6 para. 1 sentence 1 lit. a. GDPR) – The data subject has given their consent to the processing of their personal data for one or more specific purposes.
    • Performance of a contract and pre-contractual inquiries (Art. 6 para. 1 sentence 1 lit. b. GDPR) – Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.

    (e.g. for in-app purchases or when using other paid app functions)

    • Legal obligation (Art. 6 para. 1 sentence 1 lit. c. GDPR) – Processing is necessary for compliance with a legal obligation to which the controller is subject.
    • Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR) – Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. (e.g. as part of advertising campaigns)

    National data protection regulations in Germany: In addition to the data protection regulations of the General Data Protection Regulation, national data protection regulations apply in Germany. These include, in particular, the Act on Protection against Misuse of Personal Data in Data Processing (Federal Data Protection Act – BDSG). In particular, the BDSG contains special regulations on the right to information, the right to erasure, the right to object, the processing of special categories of personal data, processing for other purposes and transmission as well as automated decision-making in individual cases, including profiling.

3. Security measures

  • We take appropriate technical and organizational measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons, in order to ensure a level of protection appropriate to the risk.

    The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the access, input, disclosure, safeguarding of availability and its separation. Furthermore, we have established procedures that ensure the exercise of data subject rights, the deletion of data and responses to data threats. Furthermore, we already take the protection of personal data into account during the development and selection of hardware, software and processes in accordance with the principle of data protection, through technology design and data protection-friendly default settings.

    Encryption

    This APP uses encryption for security purposes and to protect the transmission of sensitive content, e.g. enquiries that you send to us as the APP operator. This encryption prevents the data you transmit from being read by unauthorised third parties.

4. App access rights

  • In order to provide our services via the APP, we require the access rights listed below, which allow us to access certain functions of the user’s device.

    • Location data (only while using the APP and only if permitted! )
    • Unique device identifier
    • Authentication data (only when creating a user account via. Apple or Google Account. See: Point 5.)
    • Internal memory (downloading media content)

    Access to the device functions is necessary to ensure the functionality of the APP. The legal basis for this data processing is our legitimate interest within the meaning of Art. 6 (1) lit. f GDPR, your consent within the meaning of Art. 6 (1) lit. of the GDPR or – if a contract has been concluded – the fulfilment of our contractual obligations (Art. 6 (1) b GDPR).

5. registration and use of personal data in the context of app use

The user is enabled to use our app without registration. Registration and an existing user account are required for the provision of certain content or services (more functions) in our app. Registration is required to create a user account.

In the course of using the app, the user’s personal data may be used and collected. This concerns the following personal data of the user:

  • E-mail address (for registration)
  • Anonymized usage data
  • Device information (e.g. operating system or screen size)

Registration

We use Supabase Authentication, a service provided by Supabase Inc, 970 Toa Payoh North, #07-04, Singapore 318992, to handle the registration and login process. Supabase Authentication is a login and authentication service provided by Supabase that enables user accounts to be created and managed securely. Supabase can integrate third-party identity services (e.g. Apple, Google) to simplify the login process. The data collected in the process is processed on Supabase’s servers.

We have concluded an order processing contract with Supabase in accordance with Art. 28 GDPR. Supabase relies on the use of standard contractual clauses for the transfer of data to third countries.

You have the option of registering or logging in in the following ways:

  • E-mail and password
  • Single sign-on (SSO) with your Apple or Google account
  • Guest access

In all cases, a user ID is generated for a user, which is used to identify the user in our app.

If you log in via a third-party provider (e.g. Apple, Google), additional basic information about your user profile (e.g. email address and profile picture, if applicable) is usually transmitted. You can restrict the transmission of information in the login process with the respective third-party providers. You can find more information from the respective providers:

The processing of this personal data is necessary to ensure the functionality of the app. The legal basis for this data processing is our legitimate interest pursuant to Art. 6 (1) lit. f GDPR to ensure the functionality and error-free operation of the app. The rights of users and their interest in the protection of their personal data are taken into account appropriately.

The processing of this personal data is also necessary for the fulfilment of the contract between the user and us within the meaning of Art. 6 (1) lit. b GDPR for the use of the app. See point ‘Legal bases’.

Mandatory and voluntary data & further information

It is mandatory to enter a user name as part of the registration process. In addition, the user can voluntarily provide further information, e.g:

  • Profile picture
  • Origin (without exact address)
  • Social media channels (Instagram, TikTok, YouTube, website)

The user has full control at all times over which of these voluntary details (profile picture and/or social media channels) are visible to other users. The visibility settings can be customised in the profile settings

6. User rights

As a data subject, you are entitled to various rights under the GDPR, which arise in particular from Art. 15 to 21 GDPR:

Right to object: You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions. If the personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
Text

Right to withdraw consent: You have the right to withdraw your consent at any time.

Right of access: You have the right to obtain confirmation as to whether or not personal data concerning you is being processed and to obtain information about this data and further information and a copy of the data in accordance with the legal requirements.

Right to rectification: In accordance with the statutory provisions, you have the right to request the completion of data concerning you or the rectification of inaccurate data concerning you.

Right to erasure and restriction of processing: In accordance with the statutory provisions, you have the right to demand that data concerning you be erased immediately or, alternatively, to demand that the processing of the data be restricted in accordance with the statutory provisions.

Right to data portability: You have the right to receive the data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format in accordance with the legal requirements or to request its transmission to another controller.

Complaint to the supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the provisions of the GDPR.

7. disclosure of personal data to third parties

We will only disclose personal user data to third parties (including processors, i.e. third parties who process data for us on our behalf) if the transfer is necessary to fulfil our contractual obligations to the user, if we are otherwise legally entitled or obliged to disclose it or if the user has given us consent to do so. In order to provide our services, selected personal information may be shared with certain departments within our organisation. This includes employees from the accounting, legal, product management, marketing and IT departments. In certain cases, we also use external service providers who have been commissioned by us to process data for us in accordance with the instructions (see below). Where user data is transferred to third parties that are not located in an EEA (European Economic Area) country, we ensure that the recipient has an adequate level of data protection. In addition, we ensure that appropriate confidentiality provisions in the applicable contracts are complied with and that the standard contractual clauses for the transfer of personal data to processors issued by the European Commission are complied with or that we obtain your consent.

7.1 Service providers

We also share user data with companies whose services we use to provide our services and manage our business affairs. In particular, the following services are provided to us by contractors that we use: Payment services, hosting services, maintenance and support, web / app analytics, fraud monitoring and prevention, marketing services, CRM services, customer service management services, geo-query services (conversion of coordinates to real-world locations), etc.

These service providers are contractually obliged by us to process user data in accordance with the strict guidelines of the GDPR and may not use user data for other purposes. The data is processed in accordance with Art. 28 (1) GDPR.

In addition, users will find detailed information below on how personal user data is collected, for what purposes and using which service providers:

Possible processed data types: Usage data (e.g. interest in content, access times), meta/communication data (e.g. device information, IP addresses), inventory data (e.g. names, addresses), contact data (e.g. email, telephone numbers), content data (e.g. entries in online forms).

Affected persons: User (app user).

Purposes of processing: Provision of our online offer and user-friendliness, provision of contractual services and customer service, marketing, profiles with user-related information (creation of user profiles).

Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR), consent (Art. 6 para. 1 p. 1 lit. a. GDPR), contract fulfillment and pre-contractual inquiries (Art. 6 para. 1 p. 1 lit. b. GDPR).

Services used and service providers:

  • Google Maps: We integrate the maps of the ‘Google Maps’ service of the provider Google via an API. The processed data may include, in particular, IP addresses and location data of users, which, however, are not collected without their consent (usually in the context of the settings of their mobile devices); service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://cloud.google.com/maps-platform; Privacy Policy: Google Maps DS; Opt-Out: Opt-out plugin: Further information, Settings for the display of adverts: Further information
  • Google Places API Web Service (address completion): We use the Google Places API web service and Google’s automatic address completion. In order for us to receive this information from Google, the IP address and the content entered by the user is transmitted to Google. A connection to Google’s servers is established for this purpose. As a result, Google becomes aware that our service has been accessed via the user’s IP address. Google is used in the interest of simplifying the completion of input fields when entering addresses in our app. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Further information on Google Places Api Web Services can be found in Google’s privacy policy: Google Places PP
  • Google API: Static Maps: We use the Google API (Static Maps) to enable users to submit their own photo spots to the app. This involves loading map content from Google to visually display the position of the photo spots. The processed data includes, in particular, IP addresses and location data of users, which are only collected with their consent (e.g. through the settings of their mobile devices).
    Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
    Legal basis: Legitimate interest (Art. 6 para. 1 lit. f GDPR) and fulfilment of contract (Art. 6 para. 1 lit. b GDPR).
    Further information can be found in Google’s privacy policy.
  • Google API: Geocoding: We use the Google API (geocoding) to convert addresses into geocoordinates and vice versa. This enables users to search specifically for photo spots in certain locations. Data such as IP addresses and location information can also be transmitted to Google here.
    Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
    Legal basis: Legitimate interest (Art. 6 para. 1 lit. f GDPR) and fulfilment of contract (Art. 6 para. 1 lit. b GDPR).
    Further information can be found in Google’s privacy policy.
  • OpenWeather: We use tools to provide up-to-date weather forecasts for the photo spots we publish. For this purpose, current weather data is loaded from the provider openweathermap.org (Openweather Ltd, 4 Queens Road, Wimbledon, London, SW19 8YB, United Kingdom). The IP address may be transmitted to the provider’s server. The weather forecast is displayed in the interest of an appealing and informative presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: Openweather Ltd; Website: https://openweathermap.org/; Privacy Policy: Openweather PP
  • Sunrise-Sunset: We use tools to provide current forecasts for different times (Sunrise | Sunset | Golden Hour | Blue Hour) at the photo spots we publish. For this purpose, current data is loaded from the provider sunrise-sunset.org (Sunrise-Sunset ©). If necessary, the IP address is transmitted to the provider’s server. The times are displayed in the interest of an appealing and informative presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: Openweather Ltd; Website: https://sunrise-sunset.org/; Privacy Policy:Sunsrise Sunset PP
  • Revive software and services: We use software and server technology to display advertisements in various places in our app in line with our business activities. In addition to paid advertisements, cooperations or sponsorships, these can also be so-called ‘affiliate’ links or banners. All advertisements or ‘affiliate’ links/banners are therefore clearly marked with the designation “Ad” and are thus clearly recognizable as such for a user. The services of the provider Revive Software and Services BV are used to display the advertisements. In some cases, the IP address is transmitted to the provider’s server in order to be able to display advertisements to the user based on their location, for example. Advertisements can also be displayed on the basis of device information (e.g. operating system or screen size). The display and use of this technology is in the interest of our business relationships with our partners and an appealing and informative presentation within our online offering. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: Revive Software and Services BV; Website: https://revive-sas.com ; Privacy Policy: Revive PP
  • Amazon affiliate program: In terms of our business activities, we are participants in the Amazon EU partner program, which was designed to provide a medium for websites by means of which advertising costs can be earned through the placement of advertisements and links to Amazon.de (so-called affiliate system). Amazon uses cookies to track the origin of orders. Among other things, Amazon can recognize that you have clicked on the partner link on this website and subsequently purchased a product from Amazon. We receive a commission for correspondingly qualified purchases. Amazon and the Amazon logo are trademarks of Amazon.com, Inc. or one of its affiliates. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: Amazon Europe Core S.à.r.l., Amazon EU S.à.r.l., Amazon Services Europe S.à.r.l. and Amazon Media EU S.à.r.l., ; Website: https://partnernet.amazon.de/ ; Privacy Policy: Amazon PP
  • Awin affiliate program: In terms of our business activities, we are participants in the AWIN AG (Landsberger Allee 104 BC, 10249 Berlin, Germany) affiliate program, which was designed to provide a medium for websites by means of which advertising costs can be earned through the placement of advertisements and links to AWIN (so-called affiliate system). AWIN uses cookies in order to be able to trace the origin of the conclusion of the contract. Among other things, AWIN can recognize that you have clicked on the partner link on this website and subsequently concluded a contract with or via AWIN. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: AWIN AG; Website: https://www.awin.com/de ; Privacy Policy: Awin PP
  • DJI Affiliate Program: We are a participant in the affiliate program of SZ DJI Technology Co, Ltd (14th Floor, West Wing, Skyworth Semiconductor Design Building, No. 18 Gaoxin South 4th Ave, Nanshan District, Shenzhen, China.), which was designed to provide a medium for websites through which advertising costs can be earned by placing advertisements and links to DJI (so-called affiliate system). DJI uses cookies in order to be able to trace the origin of the conclusion of the contract. Among other things, DJI can recognize that you have clicked on the partner link on this website and subsequently concluded a contract with or via DJI. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: SZ DJI Technology Co, Ltd; Website: https://u.dji.com/ ; Privacy Policy: DJI PP
  • Belboon affiliate program: In terms of our business activities, we are participants in the affiliate program of belboon GmbH (Weinmeisterstr. 12-14, 10178 Berlin, Germany), which was designed to provide a medium for websites by means of which advertising costs can be earned through the placement of advertisements and links to BELBOON (so-called affiliate system). BELBOON uses cookies in order to be able to trace the origin of the conclusion of the contract. Among other things, BELBOON can recognize that you have clicked on the partner link on this website and subsequently concluded a contract with or via BELBOON. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: belboon GmbH; Website: https://belboon.com/ ; Privacy Policy: Belboon PP
  • Webgains affiliate program: For the purposes of our business activities, we are participants in the affiliate program of Webgains GmbH (Frankenstraße 150C, 90461 Nuremberg, Germany), which was designed to provide a medium for websites by means of which advertising costs can be earned through the placement of advertisements and links to WEBGAINS (so-called affiliate system). WEBGAINS uses cookies in order to be able to trace the origin of the conclusion of the contract. Among other things, WEBGAINS can recognize that you have clicked on the partner link on this website and subsequently concluded a contract with or via WEBGAINS. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: Webgains GmbH; Website: https://www.webgains.com/public/de/ ; Privacy Policy: Webgains PP
  • Tradedoubler affiliate programme: For the purposes of our business activities, we are participants in the affiliate programme of Tradedoubler GmbH (Mainzer Straße 13, 80804 Munich, Germany), which was designed to provide a medium for websites by means of which advertising costs can be earned through the placement of advertisements and links to TRADEDOUBLER (so-called affiliate system). TRADEDOUBLER uses cookies in order to be able to trace the origin of the conclusion of the contract. Among other things, TRADEDOUBLER can recognise that you have clicked on the partner link on this website and subsequently concluded a contract with or via TRADEDOUBLER. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. Service provider: Tradedoubler GmbH; Website: https://www.tradedoubler.com/de/ ; Privacy Policy: Tradedoubler DS
  • Mail service provider – Brevo (e-mail dispatch):

    We use the Brevo service exclusively to send information e-mails with general information or notes on the app (e.g. changes to data protection provisions/terms of use, changes to the user account) to registered users. This involves processing email addresses and any other necessary information. You can find more information on the use of the data under point 8. >Services used and service providers.

    Service provider: Sendinblue GmbH (BREVO), Köpenicker Straße 126, 10179 Berlin, Germany

    Legal basis:
    Legitimate interest (Art. 6 para. 1 lit. f GDPR) and legal obligation (Art. 6 para. 1 lit. c GDPR).

    Further information can be found in Brevo’s privacy policy.

  • Uploadcare (photo uploads): We use Uploadcare to enable users to upload profile pictures and photos to photo spots. Uploadcare checks the uploaded files for viruses, malware and unwanted content (e.g. criminal or sexual content) to ensure the security of the app and prevent spam. In addition, the photos are optimised for optimal display in the app.
    Service provider: Uploadcare Inc, 228 Park Ave S, PMB 72447, New York, NY 10003-1502, USA.
    Legal basis: Legitimate interest (Art. 6 para. 1 lit. f GDPR).
    Further information can be found in Uploadcare’s privacy policy.
Services for error analysis
  • Sentry (error analysis)
    We use Sentry, an error analysis tool, to recognise and rectify crashes and technical problems in the app. The aim is to ensure a better user experience. Only the data necessary for error analysis is processed, such as technical information (device type, operating system, app version) and all error logs necessary for the operation of the app. The data is processed in Europe.
    Service provider: Sentry, Functional Software, Inc, 132 Hawthorne Street, San Francisco, CA 94107, USA.
    Legal basis: Legitimate interest (Art. 6 para. 1 lit. f GDPR).
    Further information can be found in Sentry’s privacy policy.

7.2 Government agencies, authorities and courts, legal representatives

Insofar as we are legally obliged to do so or this is permitted under data protection law, we transmit personal data to authorities such as the police or the public prosecutor’s office (Art. 6 para. 1 lit. c GDPR). This data is disclosed on the basis of our legitimate interest in combating misuse, prosecuting criminal offences (e.g. credit card fraud) and securing, asserting and enforcing claims, provided that the rights and interests of users in the protection of their personal data do not prevail. 6 (1) lit. f GDPR.

7.3 Note on data transfer to third countries

Some of the above-mentioned service providers process data outside the European Union (e.g. in the USA). We ensure that all service providers are either based in the EU or offer suitable guarantees in accordance with Art. 44 et seq. GDPR, such as the conclusion of standard contractual clauses. Further information on the respective service providers can be found in the relevant sections of this privacy policy.

8. web hosting and provision of our online offer

In order to provide our online offering securely and efficiently, we use the services of one or more web hosting providers from whose servers (or servers managed by them) the online offering can be accessed. For these purposes, we may use infrastructure and platform services, computing capacity, storage space and database services as well as security services and technical maintenance services.

The data processed as part of the provision of the hosting service may include all information relating to the users of our online service that is generated during use and communication. This regularly includes the IP address, which is necessary in order to be able to deliver the content of online offers to browsers, and all entries made within our online offer or from websites.

E-mail dispatch and hosting: The web hosting services we use also include the dispatch, receipt and storage of e-mails. For these purposes, the addresses of the recipients and senders as well as other information relating to the sending of e-mails (e.g. the providers involved) and the content of the respective e-mails are processed. The aforementioned data may also be processed for the purpose of recognising SPAM. Please note that e-mails on the Internet are generally not sent in encrypted form. As a rule, emails are encrypted in transit, but not on the servers from which they are sent and received (unless an end-to-end encryption method is used). We can therefore accept no responsibility for the transmission path of e-mails between the sender and receipt on our server.

Collection of access data and log files: We ourselves (or our web hosting provider) collect data on every access to the server (so-called server log files). The server log files may include the address and name of the web pages and files accessed, date and time of access, data volumes transferred, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting provider.

The server log files can be used for security purposes, e.g. to avoid overloading the servers (especially in the case of abusive attacks, so-called DDoS attacks) and to ensure the utilization of the servers and their stability.

Content delivery network: We use a content delivery network (CDN). A CDN is a service with the help of which the content of an online offer, in particular large media files such as graphics or program scripts, can be delivered faster and more securely with the help of regionally distributed servers connected via the Internet.

  • Processed data types: Content data (e.g. entries in online forms), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: User (app user)
  • Purposes of processing: Provision of our online offer and user-friendliness, Content Delivery Network (CDN).
  • Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. GDPR).

Services used and service providers:

  • IONOS: Services in the field of the provision of information technology infrastructure and related services (e.g. storage space and/or computing capacities); Service provider: IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany; Website: https://www.ionos.de/; Privacy Policy: https://www.ionos.de/terms-gtc/datenschutzerklaerung/.
  • Supabase: Services in the field of the provision of information technology infrastructure and related services (e.g. storage space and/or computing capacity); Service provider: Supabase, Inc, 970 Toa Payoh North #07-04, Singapore 318992; Website:https://supabase.com/ ; Privacy Policy: https://supabase.com/privacy
  • Frostberry: Services in the field of the provision of information technology infrastructure and related services (e.g. storage space and/or computing capacities); Service provider: Frostberry UG, Frankenweg 37, 97318 Kitzingen, Germany: https://frostberry.de/; Privacy Policy: On request via Frostberry UG
  • Cloudflare: Services in the field of the provision of information technology infrastructure and related services (e.g. storage space and/or computing capacities); Service provider: Cloudflare Germany GmbH, Rosental 7, c/o Mindspace, 80331 Munich, Germany; Website: https://www.cloudflare.com/de-de/; Privacy Policy: https://www.cloudflare.com/de-de/privacypolicy/.
  • Sentry: Services in the field of error analysis and provision of information technology infrastructure and related services (e.g. detection and correction of app crashes); Service provider: Functional Software, Inc, 132 Hawthorne Street, San Francisco, CA 94107, USA; Website: https://sentry.io/ ; Privacy Policy: https://sentry.io/privacy/
  • Uploadcare: Services in the field of providing infrastructure for the upload and processing of images (e.g. virus checking, optimisation and provision of images); Service provider: Uploadcare Inc, 2711 Centerville Rd #400, Wilmington, DE 19808, USA; Website: https://uploadcare.com/; Privacy Policy: https://uploadcare.com/about/privacy-policy/

  • Brevo: services in the field of sending e-mails and provision of information technology infrastructure and related services (e.g. storage space and/or computing capacity).

    Fotogoals uses the service exclusively to send general information or notices about the app (e.g. changes to the privacy policy or terms of use, changes to the user account) to registered users.

    Brevo is a processor in accordance with Art. 28 GDPR and undertakes to comply with the data protection requirements of the GDPR. Data processing is carried out on the basis of an order processing contract, which ensures that personal data is only processed in accordance with the instructions of the controller. Brevo uses its own and, if necessary, external cloud infrastructures to provide the services. The data is processed within the European Union.

    The mailing service provider may use the data (e.g. email addresses) in pseudonymous form, i.e. without direct assignment to a user, to optimise or improve its own services, e.g. to technically optimise the sending and deliverability of emails. However, Brevo does not use the data to write to users itself or to pass the data on to third parties.

    Legal basis: Legitimate interest (Art. 6 para. 1 lit. f GDPR) and order processing pursuant to Art. 28 para. 3 GDPR.
    Service provider: Sendinblue GmbH (BREVO), Köpenicker Straße 126, 10179 Berlin, Germany.
    Privacy policy: Brevo Privacy Policy.

9. Changes and updating

Fotogoals reserves the right, at its sole discretion, to modify or replace any part of this privacy policy. It is the user’s responsibility to check this statement regularly for changes. Fotogoals reserves the right to amend these terms and conditions at any time in accordance with legal requirements. Fotogoals may also offer new services and/or features through the App in the future (including the release of new tools and resources). Such new features and/or services will be subject to the terms and conditions of this Privacy Policy.

© 2025 Fotogoals. All rights reserved

Mehr erfahren

Community

Mehr erfahren
Unser Social Media
Fotos einreichen
Spots einreichen
Portfolio Freigabe
Das ist Fotogoals
Fotogoals Vision
Der Ideengeber
Ads & Kooperationen
Dein Weg zu uns
Vorteile entdecken

Rabatte - Gutscheine - Angebote

Learn more

Community

Learn more
Our Social Media
Submit Photos
Submit Spots
Photo Portfolio
This is Fotogoals
Fotogoals Vision
Idea generator
Ads & Cooperations
Contact
Discover the benefits

Discounts - Vouchers - Offers