Privacy policy

Last updated 6th of November, 2024

This Privacy Policy for Digital Sidekick describes how and why we might access, collect, store, use, and/or share ('process') your personal information when you use our products and services, including when you:

  • Visit our website at http://www.digitalsidekick.ai, or any website of ours that links to this Privacy Policy

  • Download and use our mobile application (Digital Sidekick), or any other application of ours that links to this Privacy Policy

  • Engage with us in other related ways, including any sales, marketing, or events

The protection of personal data is important to us. The website and our app is therefore operated in accordance with the applicable laws on data protection and data security, in particular with the provisions of the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG) and the Telemedia Act (TMG). The following explains which data we collect, how it is used by us and which rights you have against us with regard to the use of your data.

Questions? Reading this Privacy Policy will help you understand your privacy rights and choices. We are responsible for making decisions about how your personal information is processed. If you do not agree with our policies and practices, please do not use our services. If you still have any questions or concerns, please contact us via hello@digitalsidekick.ai 

1. Information collection

We collect personal information that you voluntarily provide to us when you register on the services, express an interest in obtaining information about us or our products and services, when you participate in activities on the services, or otherwise when you contact us.

The personal information that we collect depends on the context of your interactions with us and the services, the choices you make, and the products and features you use. The personal information we collect may include the following:

  • name

  • email address

  • username

  • password

  • name of company / team 

  • contact or authentication data

  • comments, reactions, reviews and other open input based on your input in the app or website. 

Sensitive Information. We do not process sensitive information.

Application Data. If you use our application(s), we also may collect the following information if you choose to provide us with access or permission:

  • Mobile Device Access. We may request access or permission to certain features from your mobile device, including your mobile device's camera, microphone, storage, and other features. If you wish to change our access or permissions, you may do so in your device's settings.

  • Mobile Device Data. We automatically collect device information (such as your mobile device ID, model, and manufacturer), operating system, version information and system configuration information, device and application identification numbers, browser type and version, hardware model Internet service provider and/or mobile carrier, and Internet Protocol (IP) address (or proxy server). If you are using our application(s), we may also collect information about the phone network associated with your mobile device, your mobile device’s operating system or platform, the type of mobile device you use, your mobile device’s unique device ID, and information about the features of our application(s) you accessed.

  • Push Notifications. We may request to send you push notifications regarding your account or certain features of the application(s). If you wish to opt out from receiving these types of communications, you may turn them off in your device's settings.

This information is primarily needed to maintain the security and operation of our application(s), for troubleshooting, and for our internal analytics and reporting purposes.

All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.

Do we collect any information from third parties? We do not collect any information from third parties.

2. Information processing

We process your information to provide, improve, and administer our services, fulfill our contractual obligations, to protect your rights, communicate with you, for security and fraud prevention, and to comply with law.

The General Data Protection Regulation (GDPR) requires us to explain the valid legal bases we rely on in order to process your personal information. We process your personal information for a variety of reasons, depending on how you interact with our services, including:

  • Consent. We may process your information if you have given us permission (i.e. consent) to use your personal information for a specific purpose. You can withdraw your consent at any time. 

  • To facilitate account creation and authentication and otherwise manage user accounts. We may process your information so you can create and log in to your account, as well as keep your account in working order.

  • To request feedback. We may process your information when necessary to request feedback and to contact you about your use of our services.

  • To deliver and protect our services. We may process your information as part of our efforts to keep our services safe and secure, including fraud monitoring and prevention. And to understand how our users use our products and services so we can improve our services to engage and retain users.

  • To identify usage trends. We may process information about how you use our services to better understand how they are being used so we can improve them.

  • Legal Obligations. We may process your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, exercise or defend our legal rights, or disclose your information as evidence in litigation in which we are involved.

  • Vital Interests. We may process your information where we believe it is necessary to protect your vital interests or the vital interests of a third party, such as situations involving potential life & health threats and safety of any person or for big emergencies. Note: vital interests” is rarely the legal basis for most commercial applications.

In legal terms, we are generally the 'data controller' under European data protection laws of the personal information described in this Privacy Policy since we determine the means and/or purposes of the data processing we perform. This Privacy Policy does not apply to the personal information we process as a 'data processor' on behalf of our customers. In those situations, the customer that we provide services to and with whom we have entered into a data processing agreement is the 'data controller' responsible for your personal information, and we merely process your information on their behalf in accordance with your instructions. If you want to know more about our customers' privacy practices, you should read their privacy policies and direct any questions you have to them.

3. Share personal information


We may share information in specific situations described in this section and/or with the following third parties.

Vendors, Consultants, and Other Third-Party Service Providers. We may share your data with third-party vendors, service providers, contractors, or agents ('third parties') who perform services for us or on our behalf and require access to such information to do that work. We have contracts in place with our third parties, which are designed to help safeguard your personal information. This means that they cannot do anything with your personal information unless we have instructed them to do it. They will also not share your personal information with any organization apart from us. They also commit to protect the data they hold on our behalf and to retain it for the period we instruct.

The third parties we may share personal information with are as follows:

  • Cloud Computing services

Google Cloud Platform

  • Data Backup and Security

Google Drive Backup

  • Functionality and Infrastructure Optimisation

Cloud Storage for Firebase, Cloud Firestore, Firebase Hosting , Cloud Functions for Firebase , AppCheck and Mailjet

  • User Account Registration and Authentication

Firebase Authentication

  • Web and Mobile Analytics

Google Analytics and Google Analytics for Firebase

  • Website Hosting

Firebase Hosting

  • Website Performance Monitoring

Firebase Crash Reporting and Firebase Performance Monitoring

  • Website Testing

Firebase Remote Config, Google Play Console and TestFlight

  • OneSignal


4. Use of cookies

(1) In addition to the data mentioned above, a cookie is stored on your computer by our Cookie Consent Banner when you use our website. Cookies are small text files that are stored on your hard disk, assigned to the browser you are using, and through which certain information flows to the site that sets the cookie (here by us). Cookies cannot execute programs or transfer viruses to your computer. They are used to make the Internet offer more user-friendly and effective.

(2) You can accept or reject the acceptance of cookies and third-party cookies via the cookie consent banner. Excluded are the operationally necessary cookies, which in the case of our website includes the cookie for the Consent Banner. If you choose to remove cookies or reject cookies, this could affect certain features or services of our services. 

(3) All cookie and third-party cookie information can be accessed via the banner. 

For further information, please check our website for our cookie policy http://www.digitalsidekick.ai

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ('DNT') feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage, no uniform technology standard for recognising and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this Privacy Policy.


5. Use of Google Analytics

We use Google Analytics on our website and app. This is a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google).

The Google Analytics service is used to analyze how our website is used. The legal basis is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the analysis, optimization, and economic operation of our site and app.

Usage and user-related information, such as IP address, place, time, or frequency of your visits to our website will be transmitted to a Google server in the United States and stored there. However, we use Google Analytics with the so-called anonymization function, whereby Google truncates the IP address within the EU or the EEA before it is transmitted to the US. The data collected in this way is in turn used by Google to provide us with an evaluation of visits to our website and what visitors do once there. This data can also be used to provide other services related to the use of our website and of the internet in general.

Google states that it will not connect your IP address to other data. In addition, Google provides further information regarding its data protection practices at

https://www.google.com/intl/de/policies/privacy/partners, including options you can exercise to prevent such use of your data.

To opt out of being tracked by Google Analytics across the services, visit https://tools.google.com/dlpage/gaoptout. For more information on the privacy practices of Google, please visit the Google Privacy & Terms page.

6. Use of social media plug-ins

We currently do not use any social media plug-ins.

7. Data storage

We keep your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy unless otherwise required by law.

We will only keep your personal information for as long as it is necessary for the purposes set out in this Privacy Policy, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). No purpose in this Policy will require us keeping your personal information for longer than the period in which users have an account with us.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.


8. Data safety

We aim to protect your personal information through a system of organizational and technical security measures.

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information, transmission of personal information to and from our services is at your own risk. You should only access the services within a secure environment.


9. Children’s Privacy

We do not knowingly collect data from or market to children under 18 years of age.

By using the services, you represent that you are at least 18. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us at hello@digitalsidekick.ai 


10. User rights

You have the right to request access to the personal information we collect from you, details about how we have processed it, correct inaccuracies, or delete your personal information. You may also have the right to withdraw your consent to our processing of your personal information. We will consider and act upon any request in accordance with applicable data laws. The rights may be limited in some circumstances by applicable law. To request to review, update, or delete your personal information, please contact us via hello@digitalsidekick.ai and / or use change personal information and delete account in our app.

Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. However, we may retain some information in our files to prevent fraud, troubleshoot problems, assist with any investigations, enforce our legal terms and/or comply with applicable legal requirements.

However, please note that this will not affect the lawfulness of the processing before its withdrawal nor, will it affect the processing of your personal information conducted in reliance on lawful processing grounds other than consent.

11. Changes to policy

We will update this Policy as necessary to stay compliant with relevant laws and when our services are updated. The updated version will be indicated by an updated 'Revised' date at the top of this Privacy Policy. 

If we make material changes to this Privacy Policy, we may notify you either by prominently posting a Policy of such changes or by directly sending you a notification. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information.

12. Contact information

1. Name and contact details of the responsible controller

These instructions apply to data processing by:

Being Frank BV

Veilingstraat 125

3521 BE Utrecht

The Netherlands

This declaration does not include the linked websites of third parties.


(2) You can reach us using the following contact details hello@digitalsidekick.ai and 

Being Frank BV

Veilingstraat 125

3521 BE Utrecht

The Netherlands