Privacy and Cookie Policy

1 General Information

doloTrack is an independent app project run by Philipp Helletzgruber, Philipp Ruthensteiner and Lukas Ransmayr (Schottengasse 7, 1010 Wien). As a team we strongly believe in the protection of your data and therefore DO NOT use ANY social logins or links to services such as Facebook or Instagram nor share your data with ANY advertising party. If you want to use doloTrack anonymously we recommend creating an anonymous email address before. We never ask your for your full name, user name or phone number. In this "Cookie and Privacy Policy" we provide you with information about all our activities that are related to storing and processing your data.

2 Data Controller

The people named in paragraph 1 are the controllers of your data. You can reach out to our data protection officer through email support@dolotrack.at.

3 Data we collect and process

3.1 Mandatory Account Information

In order to provide standard app services (eg. resetting passwords) we collect your

  • email address

doloTrack is built around individual migraine forecasting. This requires storing your

  • gender
  • birthday

3.2 Health Information

doloTrack's core feature is the frictionless tracking of migraine phases and attacks. Each phase consits our of individual tracking points that store

  • date/time of migraine tracking
  • severity of migraine attack
  • related symptoms
  • current therapies
  • name of medication
  • amount of medication
  • relief factor

3.3 Location Data

doloTrack combines migraine tracking points with environmental data such as temperature or weather conditions. In order to do this doloTrack uses your IP address to determine your approximate location. Please note that we DO NOT store location details such as latitude or longitude. We do only store

  • city of migraine tracking

3.4 Weather Data

As mentioned before doloTrack hits the openweather API in order to get the current and forecasted weather for a specific user location. Our weather data consists of

  • temperature
  • wind speed
  • wind direction
  • rh
  • visibility
  • uv
  • pressure
  • weather description
  • clouds

4 Services in use

doloTrack uses a combination of well known highly secure cloud services that fully comply with EU GDRP laws. Namely all third party services that are used at doloTrack fall under the
EU-U.S. Privacy Shield Framework.

4.1 Salesforce (Heroku)

Heroku manages the deployment of the backend doloTrack app. It is responsible for setting up the database and the required servers.

https://www.privacyshield.gov/participant?id=a2zt0000000KzLyAAK

https://help.salesforce.com/servlet/servlet.FileDownload?file=0150M0000041B37QAE

4.2 AWS (Amazon Web Services)

Salesforce (mentioned in paragraph 4.1) uses AWS services for database storage. All data mentioned in paragraph 3 is stored on AWS cloud servers.

https://www.privacyshield.gov/participant?id=a2zt0000000TOWQAA4

https://d1.awsstatic.com/legal/aws-gdpr/AWS_GDPR_DPA.pdf

5 Cookie Policy

5.1 What Are Cookies

As is common practice with almost all professional websites this site uses cookies, which are tiny files that are downloaded to your computer, to improve your experience. This page describes what information they gather, how we use it and why we sometimes need to store these cookies. We will also share how you can prevent these cookies from being stored however this may downgrade or 'break' certain elements of the sites functionality.

For more general information on cookies see the Wikipedia article on HTTP Cookies.

5.2 How We Use Cookies

We use cookies for a variety of reasons detailed below. Unfortunately in most cases there are no industry standard options for disabling cookies without completely disabling the functionality and features they add to this site. It is recommended that you leave on all cookies if you are not sure whether you need them or not in case they are used to provide a service that you use.

5.3 Disabling Cookies

You can prevent the setting of cookies by adjusting the settings on your browser (see your browser Help for how to do this). Be aware that disabling cookies will affect the functionality of this and many other websites that you visit. Disabling cookies will usually result in also disabling certain functionality and features of the this site. Therefore it is recommended that you do not disable cookies.

5.4 The Cookies We Set

  • Account related cookies

    If you create an account with us then we will use cookies for the management of the signup process and general administration. These cookies will usually be deleted when you log out however in some cases they may remain afterwards to remember your site preferences when logged out.

  • Login related cookies

    We use cookies when you are logged in so that we can remember this fact. This prevents you from having to log in every single time you visit a new page. These cookies are typically removed or cleared when you log out to ensure that you can only access restricted features and areas when logged in.

  • Forms related cookies

    When you submit data to through a form such as those found on contact pages or comment forms cookies may be set to remember your user details for future correspondence.

  • Site preferences cookies

    In order to provide you with a great experience on this site we provide the functionality to set your preferences for how this site runs when you use it. In order to remember your preferences we need to set cookies so that this information can be called whenever you interact with a page is affected by your preferences.

Third Party Cookies

In some special cases we also use cookies provided by trusted third parties. The following section details which third party cookies you might encounter through this site.

  • This site uses Google Analytics which is one of the most widespread and trusted analytics solution on the web for helping us to understand how you use the site and ways that we can improve your experience. These cookies may track things such as how long you spend on the site and the pages that you visit so we can continue to produce engaging content.

    For more information on Google Analytics cookies, see the official Google Analytics page.

5.5 More Information

Hopefully that has clarified things for you and as was previously mentioned if there is something that you aren't sure whether you need or not it's usually safer to leave cookies enabled in case it does interact with one of the features you use on our site.

However if you are still looking for more information then you can contact us through email: support@dolotrack.at

6 Purpose of data processing

6.1 General App Features = Providing Service

  • To authenticate your access to an accoun.t
  • To track your migraine phases and related data.

6.2 Customer Support

To investigate, respond to your requests, and resolve complaints and service issues, e.g. to contact you about a question you submitted to our customer service team.

6.3 Business Needs

Performance. We process Data to monitor, analyse and improve the use of our Products, as well as protect the security or integrity of the Products, and their performance and functionality. For example, we analyze user behaviour and perform research about the way you use our Products.

Research and Development. We process Data, including public feedback, to conduct research for the further development of our Products, in order to provide you and others with a better, more intuitive and personalized experience, and drive user growth and engagement in our Products.

6.4 Compliance and Enforcement

Compliance. We process your Data to comply with our obligations and in compliance with all applicable laws and regulations.

Enforcement. We process your Data, if we think it’s necessary for security purposes or to investigate possible fraud or other violations of our Terms & Conditions or this Privacy Policy and/or attempts to harm our members or visitors.

7 Sharing of your data

We share Data with third parties

  • if this is necessary, for the Purposes (6),
  • due to a request from a national authority,
  • due to a court ruling,
  • if required by law,
  • if necessary to investigate and defend ourselves against any third-party claims or allegations,
  • to exercise or protect the rights and safety of doloTrack or
  • if you have (explicitly) consented beforehand

We will notify you about legal demands for your data when we think it is appropriate - unless prohibited by law/court order, or in case of an emergency. We may dispute such demands when we believe that the requests are overbroad, vague or lack proper authority.

8 How long do we store your data?

We store your data for as long as you are a registered doloTrack user. You can delete your account and all related records at anytime at www.dolotrack.com/removeaccount

9 What rights do you have?

Revocation of Consent. You can revoke your consent – in those cases where consent for processing is necessary – for future data processing at any time. However, this does not affect the lawfulness of Data processing based on the consent before the revocation. In certain cases, we may continue to process your information after you have withdrawn consent, if we have another legal basis to do so or if your withdrawal of consent was limited to certain processing activities.

Right of Access. You have the right to obtain (i) confirmation as to whether or not your Data is being processed by us and, if so, (ii) more specific information on the Data. The more specific information concerns, among other things, processing purposes, categories of Data, potential recipients, or the duration of storage.

Right to Rectification. You have the right to obtain the rectification of inaccurate Data concerning you from us. In case the Data processed by us is not correct, we will rectify these without undue delay and inform you of this rectification. Please note that (i) you can rectify much of your information in the settings and (ii) it is not technically possible for us to rectify all kinds of data in our Product.

Right to Erasure. You have the right to delete Data we store about you. Should you decide to do so, please go to your account settings on the Website and delete your account there. If you are unable to do this, please contact us via the Email Address. As a safety measure, we will send you an email in order for you to confirm this deletion. We will delete your Data after this confirmation. Please note that your phone may still have Data stored on it after deletion of your account.

Right to Object. You have the right to object at any time to the processing of Data for which our legitimate interests are the legal basis, including profiling based on those provisions. You also have the right to object to processing of Data for direct marketing purposes.

Right to File a Complaint. You have the right to file a complaint with your local supervisory authority, if you think that the processing of Data infringes applicable law.

10 Lawfulness of Data Processing

Data protection laws regulate that we are only allowed to collect and process your Data, if we have lawful bases for processing. The lawfulness of processing of Data stems from:

  • your (explicit) consent in cases where you have given (explicit) consent to the processing;
  • the necessity for the performance of your user contract, e.g. where Data is needed for a satisfactory use of the Product; or
  • legitimate interests pursued by doloTrack

Our legitimate interests include protecting you, doloTrack, or others from security threats or fraud, complying with all applicable laws, managing and improving our business (e.g. customer service, reporting) including possible corporate transactions (e.g. M&A).