alea App Privacy Policy

alea PRIVACY POLICY

Last updated on 30 March 2026

This Privacy Policy applies to the alea app and the associated services.

This AssistMe GmbH („we“, „us“ or „our“) Privacy Policy describes how and why we collect, store, use and/or share („process“) your data when you use our services („Services“), e.g. when you:

  • or any other application of ours that references this Privacy Policy, or otherwise engage with us (including sales, marketing or events).

Do you have any questions or concerns?

Reading this Privacy Policy will help you understand your rights and choices regarding privacy. If you do not agree with our policies and practices, please do not use our services. If you still have questions or concerns, please contact us at datenschutz@assistme.io.

SUMMARY OF KEY POINTS

In this summary you will find the most important points of our privacy policy. However, you can find out more details on each of these topics by clicking on the link that follows each key point or by using our table of contents below to find the section you are looking for.

What personal data do we process?

The alea app is part of a digital assistance system for care facilities and is used to display and process care-related information.

As part of the use of the alea system, personal data of care recipients is processed, including health data. This includes in particular

 

  • Master data (e.g. name, gender, date of birth)

  • Facility-related data (e.g. care facility, living area, room number)

  • Care and health data, in particular

  • Status of the incontinence material (fill level) incl. time stamp

  • Times of the actual change of incontinence material

  • Body position and movement data

  • Fall events (if activated)

  • Leaving defined areas (if activated)


This data is recorded by sensor systems, transmitted to the alea cloud via secure connections and displayed in the alea app and in the alea cockpit to support care processes.

The purpose of the processing is to support carers in the care of care recipients, in particular to

 

  • Optimization of care processes

  • Reduce unnecessary checks

  • Improve the quality of care and response times

Only authorised care staff, the management of the respective care facility and AssistMe’s customer support or customer advisor have access to this data.

The processing is carried out on behalf of the respective care facility as the controller in accordance with Art. 28 GDPR. We have concluded a valid order data processing contract with each care facility for this purpose.

Do we receive any information from third parties?

We do not receive any information from third parties.

How do we process your information?

We process your data to provide, improve and manage our services, to communicate with you, to prevent security and fraud and to comply with legal requirements. With your consent, we may also process your data for other purposes. In addition, we will only process your data if we have a valid legal reason to do so.

Learn more about how we process your data:

How do we protect your data?

We have organizational and technical processes and procedures in place to protect your personal data. However, no electronic transmission over the internet or information storage technology can be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security measures and unlawfully collect, access, steal or alter your data. Find out more about how we keep your data secure.

What rights do you have?

Depending on where you are geographically located, you have certain rights under applicable data protection law in relation to your personal data. Find out more about your data protection rights.

How can you exercise your rights?

The easiest way to exercise your rights is to make a request for access to your data or to contact us. We will review each request in accordance with applicable data protection laws and act accordingly. Want to know more about what we do with the data we collect?

Read the full privacy notice:

  1. WHAT INFORMATION DO WE COLLECT?

  2. HOW DO WE PROCESS YOUR DATA?

  3. WHAT LEGAL BASIS DO WE RELY ON TO PROCESS YOUR PERSONAL DATA?

  4. WHEN AND TO WHOM DO WE DISCLOSE YOUR PERSONAL DATA?

  5. HOW LONG DO WE STORE YOUR DATA?

  6. HOW DO WE KEEP YOUR DATA SECURE?

  7. DO WE COLLECT INFORMATION FROM MINORS?

  8. WHAT RIGHTS DO YOU HAVE IN RELATION TO DATA PROTECTION?

  9. CONTROLS FOR DO-NOT-TRACK FEATURES


10. DO CALIFORNIA RESIDENTS HAVE SPECIAL PRIVACY RIGHTS?
11. WILL WE MAKE UPDATES TO THIS NOTICE?
12. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?
13. HOW CAN YOU REVIEW, UPDATE OR DELETE THE INFORMATION WE HAVE COLLECTED?

  1. WHAT INFORMATION DO WE COLLECT?

In short, we collect personal information that you provide to us.

We collect personal information that you voluntarily provide to us when you express an interest in information about us or our products and services, when you participate in activities on the Services, or when you otherwise contact us.

Personal data provided by you. The personal data we collect depends on the context of your interactions with us and the Services, your choices and the products and features you use. The personal data we collect may include, in particular, the following

  • Usernames

  • passwords

  • Care facility

We also process personal data when you use the alea app, in particular health and care data , as described in the previous section „What personal data do we process“.

The alea app also uses analysis and stability services (Google Firebase Analytics and Firebase Crashlytics) to analyse the use of the app and to identify and resolve technical problems. Only technical and usage-related data is processed (e.g. device information, user IDs , app usage data and error reports).

Application data. If you use our application(s), we may also collect additional data, in particular if you grant us corresponding authorisations:

 

  • Push notifications. We may ask you to send push notifications about your account or certain features of the Application(s). If you do not wish to receive these types of notifications, you can disable them in your device settings.

This information is primarily required to maintain the security and operation of our application(s), to troubleshoot errors and for internal analyses and reports.

All personal data that you provide to us must be truthful, complete and accurate. You are also obliged to inform us of any changes to this data.

 

  1. HOW DO WE PROCESS YOUR INFORMATION?

In short, we process your data to provide, improve and manage our services, to communicate with you, to prevent security and fraud and to comply with legal requirements. With your consent, we may also process your data for other purposes.

Depending on how you interact with our services, we process your personal data for various reasons, including

To safeguard or protect the vital interests of an individual. We may process your data if this is necessary to safeguard or protect the vital interests of an individual, e.g. to prevent harm.

 

  1. WHAT LEGAL BASES DO WE RELY ON WHEN PROCESSING YOUR INFORMATION?

In short, we only process your personal information when we believe it is necessary and we have a valid legal reason (i.e. a legal basis) to do so under applicable law, such as with your consent, to comply with laws, to provide you with services, to enter into or fulfil our contractual obligations, to protect your rights or to fulfil our legitimate business interests.

The General Data Protection Regulation (GDPR) and the UK GDPR require us to explain the applicable legal bases we rely on to process your personal data. Therefore, we may rely on the following legal bases to process your personal data:

Consent. We may process your data if you have given us permission (i.e. your consent) to use your personal data for a specific purpose. You can withdraw your consent at any time. Learn more about withdrawing your consent.

Legal obligations. We may process your data where we believe it is necessary for compliance with our legal obligations, for example, to co-operate with a law enforcement agency or regulator, to exercise or defend our legal rights, or to disclose your data as evidence in a legal dispute to which we are party.
Vital interests. We may process your data where we believe it is necessary to protect your vital interests or the vital interests of a third party, for example in situations involving a potential threat to the safety of an individual.

 

  1. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL DATA?

In short, we may share information in certain situations described in this section and/or with certain third parties.

We may need to share your personal data in the following situations:

 

  • Business Transfers. We may share or transfer your information in connection with or during negotiations of a merger, sale of company assets, financing or acquisition of all or a portion of our business by another company.

 

  1. HOW LONG DO WE KEEP YOUR DATA?

In short, we will retain your information for as long as necessary to fulfil the purposes outlined in this Privacy Policy, unless required by law.

We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy, unless a longer retention period is required or permitted by law (e.g. for tax, accounting or other legal reasons).

If we have no further legitimate business need to process your personal data, we will either delete or anonymise that data or, if this is not possible (e.g. because your personal data has been stored in backup archives), we will securely store your personal data and isolate it from any further processing until deletion is possible.

 

  1. HOW DO WE PROTECT YOUR DATA?

In short, we aim to protect your personal data through a system of organisational and technical security measures.

We have taken appropriate and reasonable technical and organisational security measures to ensure the security of the personal data we process. However, despite our security measures and efforts to protect your data, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure. Therefore, we cannot promise or guarantee that hackers, cybercriminals or other unauthorised third parties will not be able to defeat our security measures and unlawfully collect, access, steal or alter your information.

Although we will do our best to protect your personal data, the transmission of personal data to and from our Services is at your own risk. You should only access the Services within a secure environment.

 

  1. DO WE COLLECT INFORMATION FROM MINORS?

In Short: We do not knowingly collect information from or market to children under the age of 18.

We do not knowingly solicit or market to children under the age of 18. By using the Services, you represent that you are at least 18 years of age or that you are the parent or guardian of such a minor and consent to such minor’s use of the Services. If we learn that personal information has been collected from users under the age of 18, we will deactivate the account and take reasonable steps to promptly delete that information from our records. If you become aware of any information we have collected from children under the age of 18, please contact us at kanzlei@von-thuengen.de.

 

  1. WHAT ARE YOUR DATA PROTECTION RIGHTS?

In short, in some regions, such as Germany, you have rights that give you greater access to and control over your personal data. You can review, change or cancel your account at any time.

In some regions (e.g. the European Economic Area (EEA)), you have certain rights under applicable data protection laws. These include the right to (i) request access to and obtain a copy of your personal data, (ii) request rectification or erasure, (iii) restrict the processing of your personal data and (iv) request data portability where applicable. Under certain circumstances, you also have the right to object to the processing of your personal data. You can make such a request by contacting us using the contact details provided in the section ‚HOW CAN YOU CONTACT US REGARDING THIS NOTICE?

We will consider and act upon any request in accordance with applicable data protection laws. If you are located in the EEA or the UK and believe that we are unlawfully processing your personal data, you also have the right to complain to the data protection authority in your Member State or the UK Data Protection Authority.

If you are located in Switzerland, you can contact the Federal Data Protection and Information Commissioner.

Withdrawal of your consent: Where we are relying on your consent to process your personal data, which may be express and/or implied consent depending on applicable law, you have the right to withdraw your consent at any time. You may withdraw your consent at any time by contacting us using the contact details provided in the section „HOW CAN YOU CONTACT US ABOUT THIS NOTICE?“ below.

Please note, however, that this will not affect the lawfulness of processing prior to withdrawal, nor, where permitted by applicable law, the processing of your personal data carried out on the basis of lawful processing grounds other than consent.

If you have any questions or comments about your data protection rights, you can email us at datenschutz@assistme.io.

 

  1. CONTROLS FOR THE DO-NOT-TRACK FUNCTION

Most web browsers and some mobile operating systems and applications include a „do-not-track“ feature or setting that you can enable to signal that you do not want data about your online browsing activities to be monitored and collected. At this time, a uniform technology standard for recognising and implementing DNT signals has not yet been established. Therefore, we do not currently respond to DNT browser signals or other mechanisms that automatically communicate that you do not wish to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will notify you of this practice in a revised version of this Privacy Notice.

 

  1. DO CALIFORNIA RESIDENTS HAVE SPECIAL PRIVACY RIGHTS?

In Short: Yes, if you are a California resident, you have certain rights regarding access to your personal information.

California Civil Code Section 1798.83, also known as the „Shine The Light“ law, permits our users who are California residents to request and obtain from us once a year, free of charge, information about the categories of personal information (if any) that we have disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with whom we have shared personal information in the immediately preceding calendar year, at . If you are a California resident and would like to make such a request, please submit it to us in writing using the contact information provided below.

If you are under 18 years of age, a California resident, and have a registered account on the Services, you have the right to request removal of unwanted information that you publicly post on the Services. To request removal of such information, please contact us using the contact information below and provide the email address associated with your account and a statement that you are a California resident. We will ensure that the data is not publicly displayed on the Services. Please note, however, that the data may not be completely or comprehensively removed from all of our systems (e.g. backups, etc.).

 

  1. WILL WE UPDATE THIS NOTICE?

In short, yes, we will update this notice as necessary to comply with relevant laws.

We may update this Privacy Notice from time to time. The updated version will be identified by an updated „Revised“ date, and the updated version will take effect as soon as it is accessible. If we make material changes to this Privacy Notice, we may notify you of these changes either by prominently posting a notice or by sending you a notification directly. We encourage you to periodically review this Privacy Notice to stay informed about how we are protecting your information.

 

  1. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have any questions or comments about this notice, you can contact our Data Protection Officer (DPO), Gabriele von Thüngen-Reichenbach, by email at kanzlei@von-thuengen.de, by telephone on +49 9561 35 47 811, or by post at the following address

AssistMe GmbH
Gabriele von Thüngen-Reichenbach
Hinterer Glockenberg 12
Coburg, Bavaria 96450
Coburg, Germany

If you have any further questions or comments, you can also contact us by post at the following company address:

AssistMe GmbH
Joachimsthaler Str. 20
Berlin, Berlin 10719
Berlin, Germany
Phone: +49 163 1595031


  1. HOW CAN YOU REVIEW, UPDATE OR DELETE THE DATA WE COLLECT?

Depending on the laws applicable in your country, you may have the right to request access to, amend or delete the personal data we have collected about you. To request to review, update or delete your personal data, please complete a data access request and send it to us.