Privacy policy
This is a courtesy translation. In case of doubt, the German version of this privacy policy prevails.
This privacy policy informs the users of 030.berlin about the nature, scope and purpose of the collection and use of personal data by the operator. We take data protection very seriously and treat personal data confidentially and in accordance with the legal provisions. Definitions of the terms used (e.g. “personal data” or “processing”) can be found in Art. 4 GDPR.
Controller
Martin Kulawik
Chodowieckistr. 40
10405 Berlin | DE
E-mail: daten@martinkulawik.de
The most important points first
030.berlin is deliberately built to minimise data:
- 030.berlin is public: The channels are open to the public: everything you say can be heard by everyone currently on the channel. 030.berlin itself does not record conversations, but cannot technically prevent listeners from recording. Treat your contributions like public statements and use your pseudonym (shown as “call sign” in the app) instead of your real name.
- No accounts, no profiles: You only choose a call sign (a pseudonym). It belongs to no account. Your browser remembers it locally (localStorage) so it can be suggested again on your next visit; on our server it appears only in the abuse-protection log (see below) and is deleted there after seven days.
- Location data is not stored: Your coordinates are transmitted to the server once, checked there against the Berlin city boundary, assigned to the matching district for automatic channel selection, and immediately discarded. No storage, no logging, no sharing. Only which channel you entered is stored (see abuse protection), not where you were.
- No recording: The voice radio is not recorded. Reports via the “Report channel” button also contain only the channel, the timestamp and the IP of the reporting person, no audio.
Access data (server log files)
On the basis of our legitimate interest (Art. 6(1)(f) GDPR) we collect data about accesses to the website and store it as “server log files” on the server. The following data is logged: the page visited, the time of access, the amount of data transferred in bytes, the referrer URL (i.e. the previously visited page), the browser used, the operating system used, and the IP address of the accessing device.
Storage takes place for security reasons, e.g. in order to be able to investigate cases of misuse. The log files are deleted automatically, at the latest 15 days after the access. If data has to be retained for evidentiary reasons, it is exempt from deletion until the incident has been finally resolved.
Location check (“Berlin gate”)
030.berlin is limited to Berlin. Two checks take place for this:
- IP check: When you enter a channel, your IP address is checked server-side at country level (GeoLite2 database, locally on our server, no request to third parties). The legal basis is our legitimate interest in limiting the service (Art. 6(1)(f) GDPR).
- Browser location: After your explicit consent in the browser (Art. 6(1)(a) GDPR) your coordinates are transmitted once, checked against the Berlin state boundary, assigned in the same step to the matching district (so that the app can automatically tune to your district channel) and immediately discarded; they are neither stored nor logged. You can withdraw your consent at any time via your browser settings; without it, channel use is not possible.
Note: The positioning itself is carried out by your browser or operating system. Depending on the device, your browser provider may use its own location services for this (e.g. Google for Chrome, Apple for Safari) and transmit data about Wi-Fi networks in your vicinity to these providers. We have no influence over this; the privacy notices of your browser provider are decisive.
Voice transmission (WebRTC)
The voice radio runs over the operator’s own Jitsi server in Germany; no third-party providers or external conferencing services are involved. The audio transmission is transport-encrypted and is not recorded. To establish the connection, the server processes your IP address for technical reasons (Art. 6(1)(f) GDPR).
Abuse protection (reports and blocks)
Reports via “Report channel” store the channel, the timestamp and the IP address of the reporting person. In the event of misuse, IP addresses can be temporarily blocked; blocks expire automatically and are deleted afterwards (Art. 6(1)(f) GDPR).
So that reports can be assigned to a connection, it is logged when entering a channel which call sign entered which channel with which IP address and when. This log serves exclusively for abuse protection (Art. 6(1)(f) GDPR), is automatically deleted after seven days and contains neither audio nor location data.
Cookies and local storage
030.berlin does not set any tracking or advertising cookies. Only the following are used: a technically necessary session cookie (Laravel), which your browser sends to our server with every request and which expires at the end of the session; a cookie for your language choice (funk_lang), set only when you switch languages; and localStorage in your browser for the call-sign suggestion and settings (e.g. roger beep). The localStorage data does not leave your browser. The reach measurement (see below) works entirely without cookies.
Reach measurement (Matomo)
For anonymous reach measurement we use the self-hosted analytics software Matomo on our own server (stats.mkmx.de). No data is transmitted to third parties. Matomo runs on our side without cookies and without cross-device recognition; the IP address is shortened (anonymised) before storage. Recorded are the page visited, the referral source, the browser type, the operating system and anonymous usage events (e.g. that a channel was switched). Call signs, location data or audio content are not transmitted to Matomo. The legal basis is our legitimate interest in low-data statistics on the use of the service (Art. 6(1)(f) GDPR).
Rights of the user
You have the right, upon request and free of charge, to obtain information about the personal data that has been stored about you. You also have the right to rectification of incorrect data, to restriction of processing or erasure of your personal data and, where applicable, to data portability. If you believe that your data has been processed unlawfully, you can lodge a complaint with the competent supervisory authority (for Berlin: the Berlin Commissioner for Data Protection and Freedom of Information).
Erasure of data
You have the right to have your data erased unless a statutory retention obligation prevents this. Independently of any request, we delete stored data automatically as soon as it is no longer required for the stated purpose: the abuse-protection log is deleted after seven days, server log files at the latest after 15 days, expired blocks are removed automatically, and reports are deleted once the respective incident has been resolved.
Right to object
You can object to the processing of your personal data at any time. If you wish to have the data stored about you rectified, blocked, erased or to obtain information about it, or if you have questions about the collection, processing or use, please contact: daten@martinkulawik.de
Based on a template from datenschutz.org