This Privacy Policy explains which personal data will be collected, used, shared, and otherwise processed by Grow-App s. r. o., with its registered office at Černyševského 1287/10A, 851 01 Bratislava – Petržalka, Company ID: 56846398, registered in the Commercial Register of the Bratislava III District Court, Section: Sro, Insert No. 186934/B (hereinafter “we,” “us,” or “our”), as the provider of the service named “Grow-App,” about individuals (hereinafter “you”) who communicate with us (hereinafter “Data”) on our websites, applications (“Applications”), devices connected to our services, or other offerings (“Offering” or “Offerings”).

In this Privacy Policy, the term Controller refers to the entity that determines the purposes and means of processing your Data.

The conditions for expressing your consent or refusal with the processing of personal data are further specified in our published document General Terms and Conditions.

CONTENTS

• Scope of this Privacy Policy
• Data Collected
• How We Use the Data
• Data Sharing and Disclosure
• Data Retention
• Cookies and Other Technical Information
• Complaints
• Individual Rights Requests
• Notice of Updates
• How to Contact Us

Scope of this Privacy Policy

Please read this Privacy Policy carefully. It explains what types of Data we may collect about you, the purposes for which we collect such Data, the methods by which we collect them, and, where applicable, the legal basis for such collection. It also provides information about data retention, your rights, and how you may contact us. This Privacy Policy covers both our online and offline activities related to data processing, including Data collected through our Offerings that are and will be directed to you.

For example, these include digital services such as: 

• Our websites, including activities carried out through them (e.g., surveys, research studies, promotional events, contests, newsletter subscriptions, etc.)
  • Mobile applications, including activities carried out through such Applications (e.g., activities available on our websites)
  • Subscription services or other services that may be classified as streaming services offered by us to customers, or services through which you access content via our websites
  • Our pages/accounts/channels (“fan pages”) on third-party social media platforms (e.g., Facebook, Instagram, Twitter, LinkedIn, TikTok)

They also include offline services such as:

• Events you attend as a customer or guest, as an attendee rather than as a business representative (e.g., influencer events, marketing events)

Please note that we may combine Data collected from one source (e.g., a website) with Data obtained from another source (e.g., a mobile application), including Data collected by one of our affiliates or by a third party. Also note that our offline services may involve your interaction with our digital services, and vice versa. Some Offerings (such as certain branded amusement parks, online shops, and in-app purchases) are not operated by us but by licensees or third-party app stores. Any processing of your personal data by such licensees or third-party app stores is not subject to this Privacy Policy. Please carefully check whether the applicable terms of use refer to other companies.

Data Collected

We collect, use, share, and otherwise process the following categories of Data:

Data we may collect from you:
• Registration, account, and login data, including information provided during registration or login (e.g., name, username, password, email, contact details, date of birth or age, interests in our content, etc.).
• Purchase data, including relevant payment details (e.g., credit card data and billing information). We may also process Data relating to redeemed rewards or promotional offers, payment history, and any missed payments.
• Usage or participation data, including whether you opened an email we sent, how you interact with our digital services (including any account you use), content viewed or posted, ads interacted with, preferences and interests, and use of features, programs, services, and content available.
• Participation in promotions, contests, sweepstakes, or challenges, including images, videos, and text.
• Social media activity data, including interactions with our fan pages/channels/accounts in third-party communities and forums, as well as posts, likes, user-generated content, and personal details (e.g., name, user ID, profile picture, date of birth, and—if permitted—friend/follow lists). By providing such Data or otherwise interacting with our Offerings via social media, you consent to our use of such Data in accordance with this Privacy Policy.
• Data shared in an Offering or on public/private company forums, including photos, letters, videos, or comments. In some Offerings, you may communicate with other users via text or chat. Depending on privacy settings, such Data or content, as well as your username, may become public. We cannot prevent further use once made public.
• Location data, including information derived from your device (e.g., IP address or country preference), interactions with our digital services, or—if permitted—precise device geolocation.
• Event data, including images and video clips recorded by us or on our behalf, and other Data related to event organization and management (e.g., food allergies or other requirements).
• Technical/usage data from your device, including device type, browser, unique device ID, MAC address, operating system, internet provider, mobile device ID, advertising ID, connected device IDs (including connected TV), IP address, network attributes, and other settings.
• Customer inquiry data, including Data you provide when contacting us by email, message, social media, or call centers (calls may be recorded).

Data we may collect about you from other sources:
From time to time, we may combine Data with other information lawfully obtained, including online usage data about your interactions with websites, ads, and media. We may also supplement or combine with third-party data (e.g., advertising interaction data). We may receive Data from third parties with whom you hold a subscription that includes access to our content or services.

How We Use the Data

We may use Data for the purposes described in this Privacy Policy or in other ways disclosed at the time of collection. Data may be processed for multiple purposes (e.g., to provide an Offering, improve services, or for marketing). Our use of Data depends on your interactions with us and the permissions you grant (e.g., consent or opt-out of direct marketing).

Providing our Offerings: We may use your Data to set up your account, enable application registration, process payments, provide access to Offerings, enable participation in promotions, or resolve issues with Offerings or Applications. This may include enforcing terms (e.g., subscription rules, device limits, location-based content delivery) and optimizing delivery across devices. “In the sections below, where relevant, we also indicate the legal basis on which we rely for such processing.”

Data Sharing and Disclosure

We may share Data with third parties in the following cases:

• Service providers and vendors: Our agents and contractors may access Data only as needed to provide services on our behalf (e.g., hosting, delivery, marketing, IT, payments, email handling, promotions, research, analytics, fraud prevention, and customer support). If we share Data for third-party marketing purposes, we will always provide an explicit opt-in or opt-out choice in compliance with law.
  • Linked third-party sites: Our digital services may contain links to other sites, including social media platforms. We do not control Data collected by such third parties; please review their policies.
  • Third-party partners: We may co-sponsor services (e.g., contests, promotions, apps, or integrations). Such partners may collect Data directly; we recommend reviewing their policies.
  • Ad technology providers: We may share Data (hashed or anonymized) with advertisers, agencies, networks, platforms, publishers, or non-profits for interest-based ads, including real-time bidding. Segment or audience data may also be shared.
  • Other third parties: In case of business change (sale, merger, acquisition, bankruptcy, reorganization), Data may be shared as part of due diligence with potential/new owners and advisors.
  • Law enforcement and authorities: Where necessary, we may disclose Data for crime prevention, investigation, or prosecution, or in response to legal/regulatory processes (e.g., subpoenas, court orders). Data may also be disclosed for fraud prevention, rights protection, or where legally required.

Public forums: If you share Data during interactions via our digital services or social media pages, depending on settings, such Data may become public. We cannot prevent its further use.

Data Retention

We will retain your Data only as long as necessary for the purposes described. Retention varies by type of Data and purpose (e.g., financial/tax compliance may require retention for several years). Strict internal policies govern retention in compliance with law. Once retention expires, Data will be securely deleted by authorized personnel unless needed for legal claims.

Complaints

“If you believe that the processing of your personal data infringes applicable law, you have the right to lodge a complaint with a supervisory authority, in particular in the EU/EEA Member State of your habitual residence, place of work, or place of the alleged infringement. In Slovakia, the supervisory authority is the Office for Personal Data Protection of the Slovak Republic. This is without prejudice to any other remedies available to you.”

Cookies and Other Technical Information

We may use cookies or similar technologies to (i) provide, develop, maintain, customize, protect, and improve our digital services and content, (ii) perform analytics and reporting on usage and performance, (iii) prevent and detect fraud or illegal activity, (iv) create aggregated user group data (including ad targeting), and (v) deliver, target, and personalize ads.

Browser settings: You may set your browser to refuse cookies from us or any site. Blocking cookies may limit access to some content or features. See your browser’s settings for details.

Individual Rights Requests

Under certain circumstances, you may request the following:
• Right of access, review, update, and correction: Request details of Data held, copies of your Data, or correction of errors.
• Right to deletion (“right to be forgotten”): Request deletion of Data, except where we are legally required to retain Data (e.g., regulatory reporting), need to assert rights, or need Data to continue providing an Offering.
• Right to portability: Request your Data in digital format or transfer to another controller, where technically feasible.
• Right to object: Object (based on your specific situation) to Data processing based on legitimate interest and/or consent, including for direct marketing. This may be limited by local law.
• Right to withdraw consent: Withdraw consent for processing based on consent at any time.

All requests will be evaluated individually. Legal exceptions may apply, meaning we may retain Data even if consent is withdrawn, always in compliance with law.

Notice of Updates

We may update this Privacy Policy from time to time. Significant changes will be announced on our websites. We encourage you to review this Privacy Policy regularly to stay informed.

How to Contact Us

If you have questions about this Privacy Policy, please contact our Data Protection Officer at info@grow-app.sk, or by post at Grow-App s. r. o., Černyševského 1287/10A, 851 01 Bratislava – Petržalka.

Effective Date: 01 April 2025