FITORB – Privacy Policy for the Product “FITORB Smart Ring Pro” and the App “FITORB”

This Privacy Policy explains in a transparent and comprehensible manner how personal data are processed when users operate the wearable FITORB Smart Ring Pro in combination with the app “FITORB.” FITORB is the brand name and at the same time the name of the app. Data processing is carried out via the platform of b-ecom force GmbH.

1. Clarification

The FITORB Smart Ring Pro and the FITORB app are designed solely for wellness, fitness and training support and to provide orientation about personal movement and sleep habits. The measurements and analyses supplied do not constitute any medical diagnosis, treatment or professional medical advice and must not be used for medical purposes. If you experience complaints or uncertainty, always consult a qualified physician.

2. Basic Principles of Processing

We process personal data in accordance with the following principles:

• processing only for specified and legitimate purposes (Art. 5(1)(b) GDPR),
• data frugality and data minimization (Art. 5(1)(c) GDPR),
• integrity and confidentiality through appropriate security (Art. 5(1)(f) GDPR),
• transparent information to users (Arts. 12, 13 GDPR).

3. Start of Processing / Consent in the App

Processing of personal data from the FITORB Smart Ring Pro begins only after the user, upon first launching the app, has the opportunity to read and accept or decline this Privacy Policy.

• You may use the app without entering personal data.
• Certain functions (e.g., local tracking without cloud storage) are available using default values.
• Health and training data are collected and processed only after explicit consent pursuant to Art. 9(2)(a) GDPR and are processed exclusively in an automated way.

Consent is granted and documented via a dedicated consent screen in the app. It is voluntary and can be withdrawn at any time in the app settings with effect for the future.

4. System Role and Data Insight

• Data are processed automatically by the FITORB app.
• Employees of FITORB have no manual content access to individual measurement records.
• The user can view personal health data only while an active FITORB Smart Ring Pro is paired with the app.
• The data are nevertheless stored in the personal user cloud so that the user can retrieve them at any time once pairing is re-established.

5. Categories of Data

5.1 Registration Data

• Name
• Email address
• Date of birth
• Gender
• Height / weight
• Profile photo / nickname / country (optional)

Legal basis: Art. 6(1)(b) GDPR – performance of the user contract.

5.2 Data from FITORB Smart Ring Pro

• Activity data: steps, calories, training time
• Sleep data: duration, quality, distribution
• Vital data: heart rate, SpO2, temperature, weight, ovulation and cycle information (when using the female tracking function)
• GPS trajectory (subject to permission)

Legal basis: explicit consent Art. 6(1)(a) and Art. 9(2)(a) GDPR.

5.3 Device and System Data

• Smartphone operating system version
• Ring identifier (MAC/UUID)
• Smartphone model
• Network type
• System time

Legal basis: Art. 6(1)(f) GDPR – legitimate interest for service functionality and error analysis.

5.4 Communication and Function Data

• Feedback logs
• Call/SMS status for on-device display only (no content storage)
• Address book data for matching only (without server storage of phone numbers)

6. Purposes of Use

We use the data to:

• provide your FITORB account,
• display and calculate training and wellness results,
• enable reminders and alarms,
• maintain pairing with the Smart Ring Pro,
• perform error analyses.

7. Data Disclosure

7.1 Amazon AWS Hosting – Standard Clause

The FITORB user cloud is operated through Amazon Web Services (AWS, region eu-central-1) as processor. AWS handles personal data exclusively:

• on our behalf,
• according to documented instructions,
• with appropriate technical and organizational safeguards,

including in particular:

• secure encrypted transmission,
• storage in certified data centers,
• strict access and role management,
• security and compliance audits.

7.2 Third Parties

Transfer to other partners occurs only after your explicit release in the app. FITORB does not share data independently.

7.3 Legal Disclosure

Disclosure only where legally obliged or for harm prevention (Art. 6(1)(c)/(f) GDPR).

8. Retention Period

• Registration data for the duration of the user contract,
• health and training data until deletion by the user in the app,
• feedback logs only in accordance with statutory periods,
• matching lists deleted immediately after purpose fulfillment.

9. Profiling / Automated Analysis

• analyses are automated,
• users may request explanation,
• and human review.

10. Data Export / Portability

Data export is not possible. Users are informed prior to use.

11. Liability Limitation

Users acknowledge this agreement when consenting in the app. b-ecom force GmbH limits liability as far as legally permissible:

• responsibility only in case of intent or gross negligence,
• no liability for user training decisions,
• indirect damages excluded,
• no liability for misuse.

12. Cookies / Website

Standard clause – ePrivacy consent mechanisms apply.

13. Minors

Minimum age 16 years.

14. Changes

Notification via mail or push in FITORB.

15. Contact

Email: info@fitorb.de
Response time: 15 working days.

16. Controller

b-ecom force GmbH
Wilhelmstr. 32
51379 Leverkusen
Germany
Email: info@fitorb.de

Thank you for your trust in FITORB.