For more information and questions: email@example.com
Definitions and partners
Challengize is developed by Egetto AB (556920-3945) and is below called ”Challengize”. A digital health initiative is called a ”Challenge”. A participant in a Challenge is called a “User”. The company counterpart purchasing Challengize is called the “Client”. The Challengize web application is called the “Website”. The Challengize mobile application is called the “app”. Challengize public website go.challengize.com is called “homepage”
Challengize with address Egetto AB, c/o Roman, Edsbäcksvägen 46, 19135 Sollentuna, Sweden (visiting address) is responsible for the personal data and handling of it.
At Challengize we care about your personal integrity and strive to always protect your personal data in the best way possible. At Challengize it is our goal to follow all current rules and regulations for personal data protection.
As a visitor to the website go.challengize.com
The personal data we treat is the data you have chosen to supply by f.ex. using a contact form or sending emails to us. This information will be used in order to in the best way possible answer your question.
If you enlist to the newsletter your information will be saved in order to send marketing newsletters.
If contact is made via telephone in regards to questions about Challengize and our offering, we reserve the right to save your personal information for further contact.
As a participant in Challengize
We will use the information supplied to us, collected on the website or via the app through cookies in order to administer and complete our offering to you as a participant. In order to offer a smooth experience using Challengize, we store a cookie if the user accepts the cookie accept pop-up and/or clicks the “keep me logged in” button on Challengize.com including sub-pages.
The personal data that Challengize will collect and handle about a User is (name, email, gender, length, weight and age), the User’s answers to the Challengize health survey at three different occasions (beginning, middle and end of each Challenge) along with data about completed activities registered directly on the Website, using the Challengize-App or via a third-party app such as Runkeeper, Strava, etc. (type of activity, time, distance, start time, finish time, altitude, cadence and calorie consumption).
The data collected about the users activities are used to present and show the User’s current status in the Client Challenge on a user-, team-, and unit level in the dashboard along with widgets like ME, My Activities, Mini-challenges, etc.
The data collected about a user (length, weight, answers to the health survey, etc) is used to calculate the Users personal amount of Challenge Points using the algorithm developed by Challengize. Personal data about length, weight, age and gender are not visible to either the User, the User’s friends, the Client, or Challengize employees. The data collected from Users in the Challengize health survey is used to create a Health Points report to the Client after each finished Challenge. The Health data is never presented on an individual level and the data is only presented on a team level if a minimum of 6 Users in that team has answered the questions.
The data in regards to name and email are used in order to send the User information in connection with the Clients Challenge and includes welcome emails, digital health tips, automatic status emails, information about competitions, races, results of the Challenge, etc. The User can refrain from receiving these emails and notifications by unmarking automatic weekly emails under their profile page on the website and by unsubscribing to any of the other emails sent. The data is also used to present In-App Messages in the app for the user and push notifications if the user has given separate permission for push notifications.
The data will be handled and stored within the EU to a greater part but can in certain cases be handled outside the EU. This due to the fact that we co-operate with global suppliers such as MailChimp and OneSignal for webmail applications and in-app messages (see further down for more information about third-party suppliers).
Further, the information provided on the website and/or app that is presented for a User is presented for all users within the current Challenge even those outsides of the EU.
How do we protect your personal data?
I order to keep the personal data we collect secure we have taken several security measures:
The data is stored on virtual servers with a high-security level based in Stockholm, Sweden, using supplier Amazon. For more information on Amazon visit https://aws.amazon.com/shield
We have implemented security routines and both technical and organizational measures to secure and protect your personal data such as certification for secure websites. Further, there are the necessary encryptions, firewalls and antivirus programs in place to protect and prevent unauthorized access.
Access to the personal data is limited to a few employees with a unique login required.
The Website uses SSL (Secure Socket Layer) which is a protocol for a secure transition of data over the internet.
In cases when the Clients Challenge requires an external payment solution, we co-operate with highly accredited Stripe. Read more about Stripe and its security measures on https://stripe.com/
How long is my personal data stored?
The personal data is stored per default for 3 months whereafter it is either deleted in its entirety or anonymized by the User’s name and email removed.
Exceptions can med made if the Client plans a future Challenge and has requested that the Users remain in order to simplify the registration process of the upcoming Challenge.
When the contract between the Client and Challengize has expired all personal data will be removed within 3 months from the finished Challenge.
Access to, updating and correcting your personal data.
At each new Challenge, the User can update the Users personal data. If a User wants to update the information at any other time it can be easily done by contacting Challengize Customer Service via website forms or email firstname.lastname@example.org
If a User wants to revoke his/her consent this will entail that the User is permanently deleted from Challengize and all corresponding data will be deleted. This means that the User will no longer be able to access the Challengize website, app, or any other information. Revoking consent does not enable the User to a refund, full or partial, of the Challengize fee. To revoke consent a User can contact Challengize Customer Service via webforms or email to email@example.com
If the User wants to take part in his/her personal data it can be easily done by contacting Challengize Customer Service via webforms or email at firstname.lastname@example.org
External links and partners
As a User of Challengize, you can connect to a third-party app for the registration of activities. Information from Challengize may also include links to third-party websites. This policy is only for the Challengize website, app and Challengize emails. When linking to an external website you should read that site’s personal data policy. Challengize cannot be held responsible for other websites or third-party app’s handling of the Users personal data.
The following third-party suppliers are used and for what purpose.
Amazon: server hotel where Challengize data is stored. Amazon is continuously working on securing that their services are GDPR compliant and more information can be read here: https://aws.amazon.com/compliance/gdpr-center/
Mailchimp: email-based communication with the users in a welcome email, health tips, weekly summary emails, etc. are sent using Mailchimp. Read more about their GDPR policy here: https://mailchimp.com/gdpr/
OneSignal: app-based communication with the users such as push notifications, in-app messages, etc. is sent using OneSignal. Read more about their GDPR policy here: https://onesignal.com/privacy
Dropbox: information about clients and challenges such as contact person, dates, anonymized back-ups and challenge data such as time, distance, etc. is stored using Dropbox Business with password protection. Read more about their GDPR policy here: https://www.dropbox.com/security/GDPR
Hubspot CRM: information about clients and contact persons such as name, email, phone number, etc. is stored in Hubspot CRM. Read more about their GDPR policy here: https://www.hubspot.com/data-privacy/gdpr
Stripe: Stripe Payment is the payment solution that can be connected to a challenge to handle registration and payment. Read more about their GDPR policy here: https://stripe.com/en-se/guides/general-data-protection-regulation
Changes in the personal data policy
Challengize has the right to amend the personal data policy at any time if needed to remedy interference or fulfill new legal or technical requirements. All changes to the policy will be published on the Challengize Website.