Privacy Policy

The Your Sammy website and Sammy App is operated by We App Göteborg AB, Drottninggatan 38, 41107 Gothenburg, Sweden. (referred to as “we”, “us” or “our” in this Privacy Policy).

This Privacy Policy describes how Sammy (the “Site and App” or “we”) collects, uses, and discloses your Personal Information when you visit or make a purchase from the Site.

Contact

If you want to exercise your data subject rights or if you have any other questions concerning this Privacy Policy, please submit/email your request to: hello@weapp.se

We App Göteborg AB, Drottninggatan 38, 41107 Gothenburg, Sweden.

We respect your privacy and are dedicated to safeguarding your personal information. This Privacy Policy outlines how we collect and manage your personal data and establishes the framework for processing any personal data we collect from you or that you provide to us. Your use of our website or mobile application (collectively referred to as our “Platform”) is subject to this Privacy Policy. The policy also applies whenever you communicate with us, whether in person, by letter, phone, email, or any other method. Please read the following carefully to understand our practices and how we handle your personal data.

This policy is updated periodically. The most recent version, updated on 12th February 2025, is available on this page of the Platform. All subsequent updates will also be published here. This policy has been revised to reflect the changes introduced by the Data Protection Act 2018 (“DPA”) and the General Data Protection Regulation (“GDPR”).

Collecting Personal Information

Website

When you visit the Site, we collect certain information about your device, and your interaction with the Site. We may also collect additional information if you contact us for customer support. See the list below for more information about what Information we collect and why.

Device information

Purpose of collection: to load the Site accurately for you, and to perform analytics on Site usage to optimize our Site.
Source of collection: Collected automatically when you access our Site using cookies, log files, web beacons, tags, or pixels.
Other Information collected: version of web browser, IP address, time zone, cookie information, what sites or products you view, search terms, and how you interact with the Site.

When you interact with our website, we collect data to enhance your user experience and improve our services. All data collected is anonymized, ensuring that it cannot be used to identify you personally. We may track how you interact with the site, including but not limited to, pages visited, links clicked, and time spent on the site. This information is used solely for analytical purposes to understand user behavior and improve our website's functionality and content.

Sammy App

‍When using our service "Sammy App," we may request certain information from you. However, this information will be anonymized, meaning it will not be personally identifiable, and we will not be able to identify you. The information collected anonymously may include, but is not limited to, the following:

Usage patterns and interactions within the app (e.g., features accessed, session duration).
Device information such as operating system, device type, and app version.
Aggregated data related to app performance, such as error logs and crash reports.

This data is collected automatically through in-app tracking mechanisms, ensuring that no personally identifiable information (PII) is linked to the user.

The anonymised data we collect is used for the following purposes:

To monitor and improve app performance and user experience.
To identify and resolve technical issues and bugs.
To develop new features and optimize existing ones based on aggregated user interactions.
To generate statistical insights for internal decision-making and reporting.

At no point is this data linked to an individual user or shared in a way that could reveal the identity of a user.

Our backend infrastructure is designed to securely store and process app-related data. Key aspects include:

Data storage: The backend stores anonymised logs, aggregated usage metrics, and other non-PII data.
Security: Data transmission and storage are encrypted using industry-standard protocols (e.g., HTTPS, AES-256).
Access control: Only authorized personnel have access to backend systems, governed by strict role-based permissions.

Purpose: The backend serves as the core processing engine to manage app functionality, such as syncing settings, storing app configuration, and processing anonymised analytics data.

We use the following analytics and monitoring tools to optimize app performance, track usage patterns, and ensure a high-quality user experience:

1. Sentry

Sentry is used for real-time error monitoring and crash reporting. It helps us identify, diagnose, and resolve technical issues within the app, ensuring stability and reliability for our users.

• Data Collected: Anonymised crash reports, stack traces, and logs related to errors.

2. Firebase

Firebase provides a suite of tools for app analytics, user engagement tracking, and backend services. It allows us to understand user behavior and app performance at an aggregated level.

• Data Collected: Usage data, session durations, and events related to app interactions (e.g., feature usage or in-app purchases).

3. Google Analytics

Google Analytics is used to gain insights into user demographics, behavior, and overall app traffic. It helps us make informed decisions to improve the app experience.

• Data Collected: Anonymised metrics such as device type, region, app engagement, and feature interactions.

4. GrowthBook

GrowthBook is used for A/B testing and feature flagging, enabling us to roll out new features in a controlled and iterative way. It helps us understand how different versions of the app impact user behavior and satisfaction.
• Data Collected: Anonymised test results and user interaction data, which are aggregated for statistical analysis.

The analytics tools we use are configured to handle data in compliance with applicable privacy regulations, such as GDPR and CCPA. Key policies for these tools include:

• Anonymisation of Data: All data collected is anonymised and cannot be linked to an individual user. No personally identifiable information (PII) is processed or stored.

• Purpose Limitation: Data is collected strictly for improving app functionality, identifying technical issues, and enhancing the overall user experience.

• Restricted Access: Access to the collected data is limited to authorized personnel and used solely for the purposes outlined in this privacy policy.

• Retention Policy: Data is retained only for as long as necessary to fulfill its intended purpose and is securely deleted thereafter.

The tools we use have their own privacy policies that explain how they process and protect data. You can review their respective privacy policies for more information:

1. Sentry: Sentry Privacy Policy

2. Firebase: Firebase Privacy Policy

3. Google Analytics: Google Analytics Privacy Policy

4. GrowthBook: GrowthBook Privacy Policy

We recommend that users review these policies to understand the data practices of these providers.

Behavioural Advertising

As described above, we use your anonymised personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For example:

We use Google Analytics to help us understand how our customers use the Site. You can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
We share information about your use of the Site, and your interaction with our ads on other websites with our advertising partners. We collect and share some of this information directly with our advertising partners, and in some cases through the use of cookies or other similar technologies (which you may consent to, depending on your location)

For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at https://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.

You can opt out of targeted advertising by:

FACEBOOK - https://www.facebook.com/settings/?tab=ads
GOOGLE - https://www.google.com/settings/ads/anonymous
BING - https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads]

Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: https://optout.aboutads.info/.

Lawful basis

Pursuant to the General Data Protection Regulation (“GDPR”), if you are a resident of the European Economic Area (“EEA”), we process your anonymised personal information under the following lawful bases:

Your consent;
The performance of the contract between you and the Site;
Compliance with our legal obligations;
To protect your vital interests;
To perform a task carried out in the public interest;
For our legitimate interests, which do not override your fundamental rights and freedoms.

Legal basis for the processing

We may carry out the processing of your personal data on the following legal basis, when applicable according to the local legislation:

You have given your consent to the processing of your data for one or more specific purposes.
The processing is necessary for the performance of a contract to which you are a party or to take steps at your request prior to entering a contract.
The processing is necessary for compliance with a legal obligation to which we are subject to.
The processing is necessary to protect your vital interests of you or of another natural person.
The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.
The processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of you which require protection of personal data, in particular if you are a child.
Other applicable legal basis for data processing, especially provisions set out by member state law.

The provision of your personal data is required by a statutory or contractual obligation, or necessary to enter into a contract with us or to receive our services/products as requested by you, or simply voluntary for you.

Not providing your personal data may result in disadvantages for you, e.g., you may not be able to receive certain products and services. However, unless otherwise specified, not providing your personal data will not result in legal consequences for you.

Payments
‍We may provide paid products and/or services within the Service. In that case, we may use third-party services for payment processing (e.g. payment processors).

We will not store or collect Your personal and payment card details. That information is provided directly to Our third-party payment processors whose use of Your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

‍Apple Store In-App Payments
‍Their Privacy Policy can be viewed at https://www.apple.com/legal/privacy/en-ww/
‍Google Play In-App Payments
‍Their Privacy Policy can viewed at https://www.google.com/policies/privacy/

What rights do you have and how can you assert your rights?

If you have declared your consent regarding certain collecting, processing, and use of your personal data, you can revoke this consent at any time with future effect. Further, you can object to the use of your personal data for the purposes of marketing without incurring any costs other than the transmission costs in accordance with the basic tariffs.

Pursuant to the applicable data protection law you have the right (i) to request access to your personal data, (ii) to request rectification of your personal data, (iii) to request erasure of your personal data, (iv) to request restriction of processing of your personal data, (v) to request data portability, (vi) to object to the processing of your personal Data (including objection to profiling), and (vii) to object to automated decision making (including profiling).

To exercise your rights please contact us as stated under Sec. 1 (Contact us) above.

Unenrollment and Account Removal Policy:

To discontinue your participation in the app and initiate the complete removal of your account, please follow the procedure outlined below:

In the profile section of the app, select “Delete account”.
Delete the app from your device.

This action will effectively erase all associated account data. If you have any questions or require further assistance, feel free to reach us at the contact below.

In case of complaints, you also have the right to lodge a complaint with the competent data protection supervisory authority.

Changes to this Privacy Policy

We may update this Privacy Policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal, or regulatory reasons.

We recommend that you periodically review this Privacy Policy for any updates. The changes to this Privacy Policy will become effective once they are posted on this page.

Cookies and other tracking technologies

This website or app uses cookies. For further information please visit our Cookie Policy

How long do we keep your Personal Data?

Your personal data will be retained as long as necessary to provide you with the services and products requested. Once our relationship has come to an end, we will either delete your personal data or anonymize your personal data, unless statutory retention requirements apply (such as for taxation purposes). Also, we may be required by applicable law to retain certain of your personal data for a period of 10 years after the relevant taxation year. We may also retain your personal data after the termination of the contractual relationship if your personal data are necessary to comply with other applicable laws or if we need your personal data to establish, exercise or defend a legal claim, on a need-to-know basis only. To the extent possible, we will restrict the processing of your personal data for such limited purposes after the termination of the contractual relationship.

Children's Privacy

Our Service is not directed to individuals under the age of 13. We do not intentionally collect personally identifiable information from individuals under 13 years of age. If you are a parent or guardian and you become aware that your child has provided us with Personal Data without your consent, please contact us immediately.

In the event that we discover we have collected Personal Data from an individual under the age of 13 without parental consent, we will take appropriate steps to delete such information from our records. Should we need to rely on consent as the legal basis for processing your information, and if your jurisdiction requires parental consent, we may seek your parent's consent before collecting and using your information.

Links to Other Websites

Our Service may include links to external websites that are not operated by us. If you click on a third-party link, you will be redirected to that third party's site.

We strongly recommend reviewing the Privacy Policy of every site you visit. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party sites or services.

Complaints

As noted above, if you would like to make a complaint, please contact us by e-mail or by mail using the details provided under “Contact” above.

If you are not satisfied with our response to your complaint, you have the right to lodge your complaint with the relevant data protection authority. You can contact your local data protection authority, or our supervisory authority here: https://www.dataprotectionauthority.be/citizen

Last updated: 12/02/2025

Privacy Policy​