This privacy policy applies to the BlueSpots offering (website www.bluespots.app and the mobile apps for iOS and Android). Only the German version is legally binding. Translations are provided for information only.
Controller and privacy contact
Controller: Westermann Tech Solutions (see imprint). For privacy inquiries and to exercise your rights as a data subject: privacy@bluespots.app Other contact options: see imprint.
Data processing when using the platform
Registration: We process email address, Firebase UID and chosen display name for contract performance (Art. 6(1)(b) GDPR). Community content: Photos, coordinates and reviews you create are stored. When your account is deleted, this content is anonymised unless it directly identifies a person (e.g. portrait photos) (Art. 6(1)(f) GDPR). App analytics: Only with your explicit consent (Art. 6(1)(a) GDPR) do we collect session usage and search terms for 90 days for product improvement. You can withdraw consent at any time in the app settings. B2B processing: For business customers we retain tax data and invoices for 10 years. We use an internal technical service for invoice numbering (“WTS Numbers”). Reports of illegal content (Art. 16 DSA): Reports are processed for review and documentation purposes, including the reporter profile where applicable.
Third-country transfers and service providers
We use infrastructure from providers in the United States (Railway, Google Firebase, Cloudflare). Safeguards include the EU–US Data Privacy Framework and Standard Contractual Clauses. AI assistance (Rappl.it): We use Rappl.it to support moderation. Texts are processed without direct personal identifiers.
Your rights
You have the right of access, rectification, erasure (“right to be forgotten”) and data portability. Use the export function in your profile or contact us at privacy@bluespots.app.