This service (hereinafter "App") is provided by Toegel & Daut GBR (hereinafter "we" or "us") as the responsible party within the meaning of the applicable data protection laws (GDPR, BDSG, TTDSG, etc.).
The "Inspection App" streamlines the digital recording, documentation, and real-time presentation of discrepancies during aircraft construction and final inspections. As a Progressive Web Application (PWA), it ensures secure access with Microsoft two-factor authentication and encrypted passwords.
The app supports recording system component data for comparison with supplier documentation (e.g., ARL, LLP) and offers features like SRL for easy sorting, summarization, and extraction. Data is captured online, allowing simultaneous input by multiple users, with mandatory fields ensuring high data quality. Automated communication enhances collaboration without disrupting established AOC processes, with all data securely stored and readily accessible.
The database for the app is hosted and maintained in the Toegel & Daut GBR Azure Cloud as an associated WebApp. In addition, a progressive web app (PWA) functions as a mobile app. Access is protected by authentication and authorization, and 2-factor authentication must be used.
When you use the app, we process personal data about you. Personal data means any information relating to an identified or identifiable natural person. Because protecting your privacy when using the App is important to us, we would like to inform you in the following which personal data we process when you use the App and how we handle this data. In addition, we will inform you about the legal basis for the processing of your data and, insofar as the processing is necessary to protect our legitimate interests, also about our legitimate interests.
You can access this privacy policy at any time under the menu item "[Privacy Policy]" within the app.
Certain information is already processed automatically as soon as you use the app. We have listed exactly which personal data is processed for you below:
When logging in or registering, the necessary personal data for 2-factor user authentication is transmitted to the authentication server. The following data is requested for this purpose: user name, e-mail address, online identification numbers, the time, and the individual device identification number.
When using the app, we automatically collect certain data that is required for the use of the app. This includes internal device ID, version of your operating system, time of access, and log files, especially for user authentication.
This data is automatically transmitted to us in order to provide you with the service and the associated functions; to improve the functions and performance features of the app and to prevent and eliminate misuse and malfunctions. This data processing is justified by the fact that the processing between you as the data subject and us is necessary for the use of the app pursuant to Art. 6 (1) a & b GDPR, or we have a legitimate interest in ensuring the functionality and error-free operation of the app and to be able to offer a service that is in line with the market and interests, which here outweighs your rights and interests in the protection of your personal data within the meaning of Art. 6 (1) f GDPR.
When you create a user account or register, we use your access data (e-mail address and password) to grant you access to your user account and to manage it ("mandatory data"). Mandatory data within the scope of registration are marked with an asterisk. If you do not provide this data, you will not be able to create a user account.
We use the mandatory data to authenticate you when you log in and to follow up on requests to reset your password. We process and use the information you provide during registration or login to verify your eligibility to manage the user account; enforce the app's terms of use and all related rights and obligations; and contact you to send you technical or legal notices, updates, security messages, or other messages related to, for example, managing the user account.
We use voluntary information to display it within the app according to the settings you have made and to make it available to other app users at your request.
Within the app, you can enter, manage, and edit various information, tasks, and activities. This information includes, in particular, data when creating or modifying an entry.
The app also requires the following permissions:
In addition to the cases explicitly mentioned in this data protection declaration (privacy policy), your personal data will only be passed on without your express prior consent if this is permitted or required by law. This may be the case, for example, if the processing is necessary to protect the vital interests of the user or another natural person.
Any disclosure of personal data is justified by the fact that we have a legitimate interest in disclosing the data for administrative purposes and that your rights and interests in the protection of your personal data within the meaning of Art. 6 (1) lit. f GDPR are not outweighed.
If it is necessary to clarify illegal or abusive use of the app or for legal prosecution, personal data will be forwarded to law enforcement agencies or other authorities and, if necessary, to injured third parties or legal advisors. However, this only happens if there are indications of unlawful or abusive behavior. A transfer may also take place if this serves the enforcement of terms of use or other legal claims. We are also legally obligated to provide information to certain public authorities upon request. These are law enforcement agencies, authorities that prosecute administrative offenses subject to fines, and the tax authorities.
We rely on the following third-party companies and external service providers to provide our service:
The provisioning of the app as well as the hosting is done internally and is administered by Toegel & Daut GBR.
We also process data in countries outside the European Economic Area ("EEA"). However, the data is encrypted during transport over the Internet and thus secured against unauthorized access by third parties. However, we cannot exclude that the routing of data takes place via Internet servers that are located outside the EU. This may be the case in particular if participants are located in a third country.
In order to ensure the protection of the personal rights of users in the context of these data transfers as well, we make use of the standard contractual clauses of the EU Commission pursuant to Art. 46 (2) lit. c GDPR when structuring the contractual relationships with recipients in third countries.
Processing of your personal data for purposes other than those described above will only take place if permitted by law or if you have consented to the changed purpose of the data processing. In the event of further processing for purposes other than those for which the data was originally collected, we will inform you about these other purposes prior to further processing and provide you with all other relevant information.
We delete or anonymize your personal data as soon as they are no longer required for the purposes for which we have collected or used them in accordance with the above paragraphs. As a rule, we store your personal data for the duration of the usage or contractual relationship via the app plus a period of 7 days, during which we keep backup copies after deletion, unless this data is needed longer for criminal prosecution or to secure, assert or enforce legal claims.
Specific statements in this privacy policy or legal requirements for the retention and deletion of personal data, in particular those that we must retain for tax law reasons, remain unaffected.
You have the following rights under the GDPR:
You have the right to object to the processing of your personal data for reasons arising from your particular situation (Art. 21 GDPR). We will stop processing your data unless we can demonstrate compelling legitimate reasons for the processing.
You have the right to contact the competent regulatory authority in case of complaints. The competent supervisory authority is:
Saxon Data Protection and Transparency Commissioner
Devrientstraße 5
01067 Dresden
Germany
If you have any questions or comments about our handling of your personal data, or if you would like to exercise your rights, please contact:
Data Protection Coordinator
Toegel & Daut GBR
Ferdinand Freiligrath Strasse 8
04158 LEIPZIG
Germany
privacy@toegel-daut.de
We always keep this privacy policy up to date. Therefore, we reserve the right to change it from time to time and to update any changes in the collection, processing, or use of your data. The current version of the privacy policy is always available under "[designation]" within the app.
Status: Version 1.0 Date: 16.04.2025