Gölz GmbH BattPak App Privacy Policy

Last Updated: 03 Sept. 2025
Effective Date: 03 Sept. 2025

This Privacy Policy applies to all users within the European Union (EU) and the European Economic Area (EEA). In the event of discrepancies between translations, the English version shall prevail.

At Gölz GmbH and its affiliated companies, we respect your privacy and handle your information with the utmost care.
This Privacy Policy explains how we collect, use, and disclose your information through our websites, mobile applications, products, customer service, and other services (collectively referred to as “Product,” “Products,” or “Services”), as well as through other third-party services or products that link to this Privacy Policy.

By agreeing to this Privacy Policy when setting up your account or by using our Products or other third-party services or products that link to this Privacy Policy, you consent to the processing of your information in accordance with this Privacy Policy.

This policy describes:
What information we collect, how we collect your information, how we will use your information, how we store your information, marketing, sharing and transfer, your rights, cookies, security of your information, children’s information, supplemental notice for California residents, supplemental notice for Nevada residents, third-party websites/applications privacy policies, changes to our Privacy Policy, how to contact us.

1. What information do we collect?

We may collect various information, including:

Account Information. Your Gölz GmbH account and related account details, including contact phone number, email address, passwords, third-party social media account and avatar.

Device Information. Data that could identify your device, such as Wi-Fi list information, MAC address, CPU information, memory information, SD card information, and operating system version.

Contact Information. We may need your contact details such as your name, email address, shipping address, and phone number when you place an order or contact us for customer service.

Photo and Video. We may need you to upload your personal photos and videos when handling certain issues and changing personal information.

Location Information. We may need your location information to activate your Gölz GmbH hardware products, establish Bluetooth connections, set time zones, and obtain your latitude, longitude, and altitude information for data analysis to provide better marketing promotion services.

Other information you provide to us. Details such as the time, subject, and content of your communications with Gölz GmbH.

You are not required to provide the personal data we request. However, if you choose not to do so, in many cases we will be unable to provide you with our Products or Services or respond to potential inquiries.

Controller under the General Data Protection Regulation (GDPR)
Controller for the processing of personal data is:
Gölz GmbH
Dommersbach 51, 53940 Hellenthal, Germany
Email: privacy@goelz.de, Tel. +49 (0) 2482 120

2. How do we collect your information?

You directly provide Gölz GmbH with most of the data we collect. There are four ways we collect your information with your consent:

A. Direct collection from you
We may collect the following personal information that you provide directly to us, including your name, contact phone number, email address, shipping address, passwords, social media account, location of your devices, your location information, your photos and videos.

B. Automatic collection
We may automatically collect your device information within the necessary scope, including device location information, Wi-Fi list information, MAC address, CPU information, memory information, SD card information, and operating system version.

C. From third-party sources
We collect and use information from Facebook, Google, WeChat and other accounts you use to sign into the Services (“Third-Party Accounts”), such as: your name, username, avatar, social media account and other details you may have in your third-party account profile. We do not have access to your third-party account passwords.

D. Device permissions
In the process of collecting and using the above personal information, we will mainly request mobile device permissions. When you enable a permission, you authorise us to collect and use relevant personal information to provide you with corresponding services. You can obtain your device permission list by contacting us as described under “Contact” below.
You may also choose to change the scope of consent at any time or withdraw your authorisation. After withdrawing authorisation, we will no longer collect personal information related to those permissions and we will be unable to continue providing the corresponding services to you.
Your decision to withdraw consent or authorisation does not affect our prior collection and use of personal data based on your authorisation. If we wish to use the information for other purposes not specified in this Policy, we will obtain your prior consent.

3. How will we use your information?

Gölz GmbH uses personal data to operate our Services, process your transactions, communicate with you, ensure security and fraud prevention, and comply with legal obligations. We may also use personal data for other purposes with your consent.

Gölz GmbH uses your personal data only when we have a valid legal basis:

To perform our contractual obligations to you: Much of our processing of personal data is to fulfil our contractual obligations to our users or to take steps at users’ request before entering into a contract with them. For example, we process personal data on this basis to enable you to sign up for our Services.
Consent: Where legally required and in some other cases, we process personal data based on your implied or explicit consent.
Legitimate interests: In many cases, we process personal data on the grounds that it furthers our legitimate interests in commercial activities in a manner that is not overridden by the interests or fundamental rights and freedoms of the individuals concerned. These include: operating our business and Services; the security of our websites, products, software, or applications; marketing; receiving payments; fraud prevention; and knowing the customer to whom we provide services.
Legal compliance: We must use and disclose personal data in certain ways to comply with our legal obligations (such as our obligation to share data with tax authorities).

Gölz GmbH uses your personal data only for the purposes described below:

A. Providing our Services
We use your information to fulfil our agreements with you and provide our Services. We process your personal information as necessary to perform a contract to which you are a party or to take steps at your request prior to entering into a contract, including but not limited to:

Managing your information and accounts, including registration;
Providing the Services to you, including access to certain areas, functionalities, and features of our Services;
Responding to customer service or technical support inquiries;
Communicating with you about your account, activity on our Services, and policy changes; and

B. Administrative purposes
We use your information for various administrative purposes, including but not limited to:

Pursuing our legitimate interests such as direct marketing, research and development (including market research), network and information security, and fraud prevention;
Detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for such activity;
Measuring interest in and engagement with our Services;
Improving, upgrading, or enhancing our Services;
Developing new products and services;
Ensuring internal quality control and safety;
Authenticating and verifying individual identities, including requests to exercise your rights under this Policy;
Debugging to identify and repair errors in our Services;
Auditing related to interactions, transactions, and other compliance activities;
Sharing information with third parties as needed to provide the Services;
Enforcing our agreements and policies;
Complying with our legal obligations.

C. Other purposes
We also use your information for other purposes you request or as permitted by applicable law.

We may use personal data for other purposes that are clearly disclosed to you at the time you provide the personal data or with your consent.
Automated decision-making. We may engage in automated decision-making, including profiling. Gölz GmbH’s processing of your personal data does not result in a decision based solely on automated processing that produces significant effects concerning you, unless such a decision is necessary to enter into or perform a contract with you, we have your consent, or we are otherwise legally authorised to engage in automated decision-making. If you have questions about our automated decision-making, you can contact us as described under “Contact” below.
Anonymised and aggregated information. We may use personal data and other information about you to create anonymised and/or aggregated information, such as anonymised demographic information, anonymised location information, information about the device from which you access our Services, or other analytics we create.

4. How do we store your information?

The information we collect from you is primarily processed in the EU and the USA but may be transferred to and stored/processed in other countries.

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including as described in this Privacy Policy or in our service-specific privacy notices, or as required by law.

We retain your personal data for the period necessary to fulfil the purposes set out in this Privacy Policy and our service-specific privacy overviews. When assessing retention periods, we first carefully examine whether it is necessary to retain the personal data collected and, if retention is required, we work to retain the personal data for the shortest possible period permitted by law.

5. Marketing

You may opt out of Gölz GmbH using your information for performance-based advertising by accessing your mobile device settings and following the most recently published instructions. If you restrict ad tracking, you will still see advertising (including ads from the Gölz GmbH network), but we will no longer be able to use the personal information described in Section 1 above to serve you more relevant ads.

In addition, the advertising identifier (together with any information collected via that identifier) previously assigned to you will also be disassociated. This means that, should you opt in again at a later time, we cannot use your past information for advertising purposes and you will (in practically every respect) be a new user in our system.

6. Sharing and transfer

A. Sharing: We will not share your personal information with companies, organisations, or individuals outside Gölz GmbH except in the following cases:

Sharing with explicit consent: After obtaining your explicit consent, we will share your personal information with other parties.
Compliance with legal obligations: We may share your personal information externally in accordance with laws and regulations or the mandatory requirements of government authorities.
Disclosure to protect us or others: We may access, preserve, and disclose externally any information stored by us that is associated with you if we believe in good faith that it is necessary or appropriate to: comply with requests from law enforcement or national security authorities and legal processes such as a court order or subpoena; protect your, our, or others’ rights, property, or safety; enforce our policies or contracts; collect amounts owed; or assist with the investigation or prosecution of suspected or actual illegal activities.
Disclosure in mergers, sales, or other asset transfers: If we are involved in a merger, acquisition, due diligence, restructuring, insolvency, receivership, purchase or sale of assets, or transition of services to another provider, your information may be sold or transferred as part of such a transaction, as permitted by law and/or contract.
Sharing with affiliates: Where permitted by law, we may share your information with our affiliates to provide you with Gölz GmbH products and services. We will share only necessary personal information and will be bound by the purposes stated in this Privacy Policy. If the affiliate intends to change the purpose of processing personal data, it will seek your authorisation again.
Sharing with authorised partners: Some of our services are provided by authorised partners solely for the purposes specified in this Policy. We may share some of your personal information with our partners to provide better customer service and a better user experience. We will share your personal information only for lawful, legitimate, necessary, specific, and explicit purposes and only share personal information necessary to provide the services. Our partners are not authorised to use the shared personal information for other purposes.
Where third parties process personal data on our behalf, this is based on data processing agreements pursuant to Article 28 GDPR. These agreements oblige our service providers to process personal data exclusively in accordance with our instructions, to implement appropriate technical and organisational measures to protect the data, and not to use the data for their own purposes.

Our partners include:

Third-party service providers: Provide us with payment processing, parcel shipping, application development, electronic message processing, and other services. Some of your personal information may be collected directly by third-party service providers and is subject to their privacy policies.
Third-party SDK providers: To ensure the stable operation and functional implementation of the application and to enable you to use and enjoy more services and features, we will embed third-party SDKs into the application. Details can be found in the following list of third-party service providers:

Third-Party Service Provider	Purpose of Use	Types of Information	Links to Third-Party Privacy Policies
Tencent Bugly	Collection of errors occurring while using the app	Device information: Wi-Fi list information, MAC address, CPU information, memory information, SD card information, operating system version	https://privacy.qq.com/document/priview/fbd2c3f898df4c1c869925dd49d57827
Google	Sign-in via Google account authorisation	Third-party avatar, username, social media account	https://policies.google.com/privacy?hl=en
Facebook	Sign-in via Facebook account authorisation	Third-party avatar, username, social media account	https://developers.facebook.com/terms/dfc_platform_terms/#privacypolicy
WechatOpen	Sign-in via WeChat account authorisation	Third-party avatar, username, social media account	https://weixin.qq.com/cgi-bin/readtemplate?lang=de_DE&t=weixin_agreement&s=privacy (Note: link is in Chinese/English)

B. Transfer
We will not transfer your personal information to companies, organisations, or individuals unless we obtain your explicit consent, or where a merger, acquisition, or bankruptcy liquidation is involved. Where the transfer of personal data is involved, we will require the new holder of your personal data to continue to be bound by this Privacy Policy. Otherwise, we will require the company or organisation to request your authorisation and consent again.

International data transfers. We may transfer, process, and store the data we collect about you in countries other than the country in which the data was originally collected, including the USA, the EU, China, or other destinations.
Where personal data is transferred to countries outside the European Economic Area (EEA) or the United Kingdom, we ensure that an adequate level of data protection within the meaning of Articles 44 et seq. GDPR is guaranteed. This is ensured in particular by one of the following measures:

Adequacy decision of the European Commission: For certain countries—particularly the United States of America—transfers may take place on the basis of the EU–US Data Privacy Framework (DPF), provided the respective recipient is certified under this framework.
Standard Contractual Clauses (SCCs) pursuant to Article 46(2)(c) GDPR: If no adequacy decision exists, we oblige recipients of the data by concluding the Standard Contractual Clauses approved by the European Commission (including any supplementary measures in accordance with the recommendations of the European Data Protection Board, EDPB) to ensure an equivalent level of data protection.
Other appropriate safeguards: In exceptional cases, transfers may be based on your explicit consent or on the performance of a contract with you, where permitted under Article 49 GDPR.

7. Your rights

Under data protection law, you have several rights. These include, in certain circumstances, the right to:

Access your personal data. You have the right to obtain a copy of the personal data we hold about you and certain information regarding our processing of your personal data.
Rectify your personal data. You are entitled to have your personal data corrected if it is inaccurate or incomplete. You can update your personal data at any time by logging into your account and updating your details directly or by emailing us at privacy@goelz.de.
Delete your personal data. This enables you to request that Gölz GmbH delete your personal data where there is no compelling reason for us to continue processing it. Please note that we may not always be able to comply with your deletion request for specific legal reasons which will be notified to you, if applicable, at the time of your request.
Restrict processing of your personal data. You have the right to ask Gölz GmbH to suspend the processing of your personal data in certain scenarios, for example if you want us to verify the data’s accuracy or you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it. Where processing is restricted, we are entitled to retain sufficient information about you to ensure the restriction is respected in future.
Data portability. You have the right to receive a digital copy of your personal data or to request the transfer of your personal data to another company. Please note that this right applies only to automated data for which you initially provided consent or where we used the data to perform a contract with you.
Object to processing of your personal data. You have the right to object to the processing of your personal data where we rely on a legitimate interest (as explained above). You also have the right to object to our processing of your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your data which override your rights and freedoms.
Human intervention in automated decision-making and profiling. You have the right to request human intervention where we engage in automated decision-making when processing your personal data. This form of processing is permitted where it is required as part of our contract with you, provided appropriate safeguards are in place, or your explicit consent has been obtained.

We will try to respond to all legitimate requests within one month. Occasionally it may take longer than one month if your request is complex or you have made multiple requests. In this case, we will notify you and keep you updated. We may need to request specific information from you to help us confirm your identity and ensure your right to exercise the above rights. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

Right to lodge a complaint. If you have concerns or complaints about how we process your data, please email us directly at privacy@goelz.de. You also have the right to lodge a complaint with the data protection supervisory authority in the USA or the EU or another competent authority. However, we would appreciate the chance to deal with your concerns before you approach a data protection authority.

If you wish to exercise any of these rights, please email us at privacy@goelz.de.

8. Cookies

Cookies are small text files that are sent to or accessed from your web browser or from your computer’s hard drive. Cookies typically contain the domain name (internet location) from which the cookies originate, the “lifetime” of the cookies (i.e., when they expire), and a randomly generated unique number or similar identifier. Cookies may also contain information about the device, such as: user settings, browsing history, and activities conducted while using the Services.

Our Services use the following cookies:

Strictly necessary cookies that are required for the operation of the Services. Without these, for example, you could not use your account.
Analytics/performance cookies that enable Gölz GmbH to recognise and count the number of visitors, learn how visitors navigate the Services, and improve the Services.
Functionality cookies that Gölz GmbH uses to recognise you when you return to the Services.

To learn more about cookies and web beacons, please email us at privacy@goelz.de.

9. Security of your information

We take steps to ensure that your information is treated securely and in accordance with this Privacy Policy. Unfortunately, no system is 100% secure, and we cannot guarantee the security of any information you provide to us. We have implemented appropriate safeguards to ensure your personal information remains protected and we also require our third-party service providers and partners to implement appropriate safeguards. To the fullest extent permitted by law, we accept no liability for unauthorised disclosure.

By using our Services or providing personal data to us, you agree that we may contact you electronically regarding security, privacy, and administrative issues relating to your use of our Services. If we learn of a breach of security systems, we may attempt to notify you electronically by posting a notice on our Services, by mail, or by sending an email to you.

10. Children’s Information

Another part of our priority is protecting children while they use the internet. We encourage parents and guardians to observe, participate in, monitor, and guide their children’s online activities.

Gölz GmbH does not knowingly collect personally identifiable information from children under the age of 13 in the EU or under 14 in the USA (or under other locally applicable age limits). If you believe that your child has provided this kind of information on our website or app, we strongly encourage you to contact us immediately, and we will do our best to promptly remove such information from our records.

If we learn that a child has provided us with personal data in violation of applicable law, we will delete all personal data collected from that child unless we are legally required to retain it, and the child’s account will be terminated.

11. Supplemental Notice for California Residents

This supplemental notice for California privacy applies only to our processing of personal data that is subject to the California Consumer Privacy Act of 2018 (CCPA). The CCPA grants California residents the right to know what categories of personal data Gölz GmbH has collected about them and whether Gölz GmbH has disclosed that personal data for business purposes (for example, to a service provider) within the past 12 months.
California residents can find this information below:

Category of Personal Data Collected by Gölz GmbH	Categories of Third Parties to Whom Information Is Disclosed for Business Purposes
Identifiers. A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, or other similar identifiers.	Service providers · Advertising networks · Social networks
Internet or other electronic network activity information. Browsing history, search history, information regarding a consumer’s interaction with a website, application, or advertisement.	Service providers · Advertising networks · Government authorities
Categories of personal information listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)). A name, signature, physical characteristics or description, address, telephone number, education, employment, employment history, bank account number, or other financial information. Personal information does not include publicly available information lawfully made available from government records.	Service providers · Advertising networks · Government authorities
Geolocation data. Physical location or movements.	Service providers · Advertising networks · Government authorities

The categories of sources from which we collect personal information and our business and commercial purposes for using personal information are each described in Sections 1 to 3 above.

“Sale” of personal data under the CCPA
For CCPA purposes, Gölz GmbH does not sell personal data, nor do we have actual knowledge of any “sale” of personal data of minors under 16 years of age.

Additional privacy rights for California residents

Non-discrimination. California residents have the right not to be discriminated against for exercising their rights under the CCPA.
Authorised agent. Only you, or someone legally authorised to act on your behalf, may submit a verifiable consumer request related to your personal information. You may also submit such a request on behalf of your minor child. To designate an authorised agent, contact us as described under “Contact” below and send a written authorisation signed by you and your designated agent.
Verification. To protect your privacy, we will take steps to verify your identity before fulfilling your request. When you submit a request, we will ask you to provide sufficient information to allow us to reasonably verify that you are the person about whom we collected personal information, or an authorised representative. This may include asking for additional proof of identity and questions about your account and use of our Services.

If you are a California resident and wish to exercise any of your rights under the CCPA, please contact us as described under “Contact” below. We will handle such requests in accordance with applicable laws.

California Shine the Light. The California “Shine the Light” law permits California residents once per year to request a list of third parties, if any, to whom we have disclosed their personal information for those parties’ direct-marketing purposes in the preceding calendar year, as well as the categories of personal data disclosed to those parties.

Right of minors to remove posted content. Where legally required, California residents under 18 years of age may request the removal of their posted content or information from publicly viewable areas of the Services by contacting us directly as described under “Contact” below or by logging into their account and removing such content or information using our self-service tools.

12. Supplemental Notice for Nevada Residents

If you are a Nevada resident, you have the right to opt out of the sale of certain personal information to third parties who intend to license or sell that personal information.
Please note that we currently do not sell your personal information as defined under the Nevada Revised Statutes Chapter 603A.
If you have questions or wish to request that we do not sell your information in the future, please contact us as described under “Contact” below with the subject line “Nevada Do Not Sell Request.”

13. Supplemental Notice Regarding Other U.S. State Privacy Laws

In addition to the regulations set forth for California (CCPA) and Nevada, we also observe the privacy laws of other U.S. states such as Colorado, Virginia, Texas, Connecticut, and Utah. These states have enacted their own privacy laws providing additional rights for consumers and requirements for businesses.

Residents of these states—particularly Colorado, Virginia, Texas, Connecticut, and Utah—may have rights under their respective privacy laws (e.g., the Colorado Privacy Act, Virginia Consumer Data Protection Act, Texas Data Privacy and Security Act, Connecticut Data Privacy Act, and Utah Consumer Privacy Act) to object to the processing, sale, or sharing of their personal data.

You may exercise your “Do Not Sell or Share My Personal Information” right, as well as restrict the use of sensitive data, at any time by contacting us at privacy@goelz.de with the subject line “US State Privacy Opt-Out Request.”
If you have any questions about your privacy rights in your state or wish to exercise any of these rights, please contact us at privacy@goelz.de.

14. Privacy Policies of Third-Party Websites/Applications

Our Services may contain links to other websites or applications, and other websites or applications may link to our Services.
These third-party services are not controlled by us. We encourage our users to read the privacy policies of every website and application they interact with.
We do not endorse, review, or approve, and are not responsible for, the privacy practices or content of such other websites or applications.
Providing personal data to third-party websites or applications is at your own risk.

15. Changes to Our Privacy Policy

We may revise this Privacy Policy from time to time at our sole discretion.
If there are material changes to this Privacy Policy, we will notify you as required by applicable law. You understand and agree that you will be deemed to have accepted the updated Privacy Policy if you continue to use our Services after the effective date of the new Privacy Policy.

If you find this agreement or the Privacy Policy unacceptable at any time, you must immediately stop accessing the app and the websites.
Unless Gölz GmbH obtains your express consent, any revised Privacy Policy will apply only to information collected by Gölz GmbH after the effective date of the revised Privacy Policy and not to information collected under an earlier version.

16. How to Contact Us

We welcome feedback and are happy to answer any questions you may have about your data.

You can contact us electronically at privacy@goelz.de

Alternatively, you may contact us at:
Gölz GmbH
Dommersbach 51
53940 Hellenthal
Germany