Last update: 12-04-2020
Terms And Conditions Of Use
Am Dickobskreuz 10
53121 Bonn, Germany
Phone: +49 228 387 649 11
In the following also referred to as “we” and “Snabble”.
The Snabble app is configured to work only if you are in a store that allows shopping with the Snabble app (participating store). This is because Snabble only provides the technical infrastructure for mobile shopping (mobile self-checkout) at the store. A contract for goods or services is always only concluded between you and the merchant where you are located. An overview of the stores that support the Snabble app can be found in the app. There you will also find their contact details.
Services Of The Snabble App
The Snabble app allows you to scan your purchases at the stores listed in the app on your own. Afterwards you can pay for your purchase in different ways: At the cash desk, at a self-service checkout or directly online in the app. The options available to you depend on the store you are currently in.
In general, the Snabble app supports SEPA direct debit, credit card or payment at the cash register of the merchant. However, not all payment methods are available at every merchant. Snabble and the merchant explicitly reserve the right to exclude certain payment methods in individual cases or to make them dependent on further requirements.
A sales contract is only made between you as a customer and the respective merchant from whom you are shopping. Any claims in regard to the conclusion of the contract concerning the goods that have been scanned with the Snabble app can therefore only be asserted against the merchant whose contact data can be accessed via the app.
The payment processing takes place either at the merchant's checkout or, in case of online payment, via the merchant's payment provider that Snabble GmbH has connected in the app for this purpose. Snabble is not responsible for the processing of cashless payment by the respective payment provider. Snabble merely establishes a secure channel to the payment service provider according to the requirements of the Payment Services Directive. In case of wrong or incorrect bookings as well as disruptions in the payment process outside the Snabble app, you must contact the respective merchant or the payment service provider commissioned by the merchant yourself.
In case of online payment you will receive the receipt in the app. If you have chosen to pay online with the Snabble app, you also agree to waive a paper receipt.
The use of the Snabble app is free of charge for you. With this in mind, we cannot guarantee a minimum availability of the service. In particular, it is possible that the availability of the Snabble app may be temporarily unavailable partially or completely due to maintenance work or the elimination of technical malfunctions. By using the Snabble app, you cannot derive any claim to continuous use of the services. Snabble is entitled at any time and without prior notice, but taking into account your interests as a user, to change or temporarily or permanently suspend individual services. Furthermore, there is no entitlement to pay with the Snabble app in certain stores. Participating stores may vary in the future. In general, the merchant decides on the use of the Snabble app in his store.
Requirements For Using The App
In order to be able to pay with the Snabble app, you must be at least 14 years old and you must have entered your payment information for one of the offered payment methods and be authorized to access them. By using the payment function, you accept that the payment method or payment account selected by you will be debited with the amount of the payment for the goods in your shopping cart after the purchase is completed. Depending on the payment method, Snabble, the merchant or the payment service provider may require further authentication measures.
If you purchase via the app, you agree that store employees may carry out random checks in the checkout area or before leaving the checkout area and may require you to present the shopping cart, shopping bag or contents of the app.
Usage of the Snabble app requires an internet data connection and requires you to authorise access to the camera and location in your smartphone. Some local merchants also offer the possibility of using a Wi-Fi connection. The use of the Snabble app is only possible with a sufficient internet data connection. You will have to pay the connection costs for the data transfer yourself. The amount depends on the mobile phone contract between you and your telecommunications provider.
Some merchants allow you to store your store's customer card directly in the Snabble app so that you can use it automatically for future purchases. Please note that the conditions for shopping with the customer card are exclusively set by the respective merchants and Snabble has no influence on them.
Please note that you must install the updates we provide from time to time to use the Snabble app without errors.
As a user of the Snabble app you have to make sure that - if you have stored payment data in the app or have carried out an age verification with it - no other person than yourself has access to the app.
Shopping With The App
You agree to use the Snabble app to scan all the products of your purchase to the best of your knowledge and belief. You also ensure that if you remove products from the app's shopping cart, they will be returned to the shelf. Depending on the merchant, random samples can be performed. These random samples can cover individual items or the entire purchase. Please note any further requirements on site which are set and observed by the merchant (e.g. the obligation to use a trolley).
In the app you can always see your shopping cart, especially which products you have scanned and in what quantities. Before paying, you are obligated to check your shopping cart in the Snabble app. By starting the payment process ("Pay now"), you confirm that all products in your shopping cart or shopping basket have been completely and legitimately scanned.
A contract is only concluded when the goods have been paid for. Your contractual partner is the merchant who sells the goods and is listed as such on the store page in the Snabble app. In most cases you can make your payment directly with the app. However, for certain items such as alcohol - or in case of a random check - an employee may need to approve your purchase first. Once you have purchased the goods, we will show you how to behave on site, especially in order not to stand in a queue unnecessarily, in the app. In some stores, for example, we may ask you to scan a QR code from the app
The use of the Snabble app can be cancelled and terminated at any time and without notice. To do so, you must delete the app from your smartphone.
Any interference with the app or decompilation of the code is not permitted and will result in exclusion from use of the app. In particular, you are prohibited from copying, renting, editing or otherwise redesigning the Snabble app in whole or in part.
Changes To The App
We reserve the right to improve and change the app at any time.
The law of the Federal Republic of Germany shall apply.
Notice according to § 36 VSBG: We are neither willing nor obliged to participate in a dispute resolution procedure before a consumer arbitration board.
General Information And Mandatory Information
Note on the responsible authority
The responsible party for data processing in the Snabble app is:
Am Dickobskreuz 10
Phone: +49 228 387 649 11
Data Processing Purposes And Legal Basis
We process personal data in the Snabble app for the following purposes:
- Provision of an app for scanning goods in a store, including camera data processing, shopping cart, self-checkout and (mobile) payment,
Art. 6 Sec. 1 lit. b.) GDPR
- Accounting purposes/transmission of data to the merchant’s POS system,
Art. 6 Sec. 1 lit. b.) GDPR
- Clear identification of your device to provide the app, prevent misuse and ensure IT security and operation,
Art. 6 Sec. 1 lit. b.) and f.) GDPR
- Age verification,
Art. 6 Sec. 1 lit. b.) GDPR as well as to fulfil legal obligations, Art. 6 para. 1 c GDPR or in the public interest, Art. 6 para. 1 e GDPR
- Determination of your location and the nearby market,
Art. 6 Sec. 1 lit. a.) GDPR
- Provision of map services from Google Maps and Apple Maps,
Art. 6 Sec. 1 lit. f.) GDPR
- Analysis of user behavior for further development, error analysis and statistical analysis of user behavior for optimization and marketing purposes, Art. 6 Sec. 1 lit. f. GDPR
- Fulfillment of tax and commercial law retention obligations,
Art. 6 Sec. 1 lit. c GDPR
- Prevention/defense of criminal acts to the detriment of snabble or the dealers involved,
Art. 6 Sec. 1 lit. f. GDPR
Details about the aforementioned data processing can be found in the Data Collection section of the Snabble app below.
Recipients Or Categories Of Recipients Of Personal Data
In order to provide the Snabble app or to fulfill our contractual and legal obligations, individual personal data may also be passed on or disclosed by you to various public authorities (e.g. tax authorities, customs authorities, social security agencies), as well as to external service providers, especially the payment service providers involved, as well as the merchants and stores involved to the extent necessary.
Storage Period Of Personal Data
This app uses encryption for security reasons and to protect the transmission of confidential content that you send to us as the operator. This means that the data you send to us cannot be read by third parties.
Information, Restriction, Deletion And Correction
Within the framework of the applicable legal provisions, you have the right to obtain information free of charge about your stored personal data, a right to correct, restrict processing and delete your data at any time. You can contact us at any time at the address given in the imprint for this purpose and for further questions about personal data.
Right To Data Transferability
You have the right to receive data that you have provided to us, that we process automatically on the basis of your consent or in fulfillment of a contract, to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done as far as it is technically feasible.
Right To Object To The Processing Of Your Data
You have the right to revoke at any time, for reasons arising from your particular situation, to the processing of personal data concerning you that is carried out pursuant to article 6 section 1 letters e or f of the General Data Protection Regulation. We will then no longer process this data unless we can prove compelling reasons for processing worthy of protection that outweigh your interests, rights and freedoms, or our processing serves to assert, exercise or defend legal claims.
If personal data are processed by us for the purpose of direct advertising, you have the right to revoke to this processing for the purpose of such advertising at any time. We will then no longer process the personal data for these purposes.
Revocation Of Consent
If you have given us your consent for certain data processing, you have the right to revoke this consent at any time with effect for the future. However, this does not affect the legality of the processing carried out on the basis of the consent until the revocation.
Right Of Appeal To The Competent Supervisory Authority
In the event of violations of the GDPR (General Data Protection Regulation, Regulation 2016/679 of the European Parliament and of the Council of April 27th, 2016 on the protection of individuals with regard to the processing of personal data, on the free movement of such data and repealing Directive 95/46/EC), you have a right of appeal to a supervisory authority, in particular in the member State of your habitual residence, your place of work or the place of the suspected violation. This right of appeal is without prejudice to any other administrative or judicial remedy.
Need To Provide Personal Data
In order to use the Snabble app, the processing of certain personal data is mandatory. This includes a randomly generated ID and your IP address. Without this data, the app cannot be used.
Furthermore, you can provide us with additional personal data via the app (e.g. customer card numbers). As part of the payment function in the Snabble app, you have to provide us with certain personal data that is mandatory for the respective payment method. Otherwise, you cannot use this payment method. You can see which personal data is required when you add the payment methods in the app. Which data is required is determined by the payment service providers (more about this below in the explanations on data collection in the Snabble app).
Data Processing Outside The EU/EEA
Our platform is stored on the servers of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The data is stored exclusively on servers within the European Union and within the scope of application of the GDPR.
It may happen that in order to provide you with a certain service (e.g. map services), we also have to resort to service providers who process individual data outside the EU/European Economic Area (EEA) (e.g. in the USA). In these cases, we ensure by concluding so-called EU standard contract clauses that an adequate level of data protection is established at the recipient's premises before your personal data is transferred. Should this not be possible in exceptional cases, we will only process the data outside the EU if an exception in accordance with Art. 49 GDPR exists.
Data Acquisition In The Snabble App
As the foundation of communication on the Internet, your IP address is transmitted to all systems with which the app communicates. For technical reasons it is absolutely necessary to record your IP address. In order to protect your privacy, however, the IP address is stored on our systems in an anonymous form and the original IP address is deleted within 48 hours, so that it is no longer possible to draw conclusions about your person.
A Client ID is a random combination of digits and numbers that is generated when you install our app on your device and is used to clearly identify the device.
When you use the Snabble app, we store your client ID on our platform. The storage is based on art. 6 paragraph 1 lit. b & lit. c. GDPR as part of the purchases made. We need this ID in order to be able to permanently assign your purchases and to display them in your shopping overview. The client ID will be deleted if you have not made any purchases with the app for more than three years.
When you buy age-restricted items via the app, your age is verified either by a merchant or store employee or by a payment method. This feature (over 16, over 18) is stored on the Snabble platform in conjunction with your Client ID so that you don't have to verify your age again for subsequent purchases. This data will be deleted if you have not made any purchases with the app for more than three years.
Credit Card Data
When using online payment by credit card in the Snabble app, you enter payment information in the app. In accordance with the PCI-DSS standard, the credit card data is not cached, but transferred directly to the payment service provider First Data (First Data GmbH, Marienbader Platz 1, 61348 Bad Homburg v.d.H., Germany). During the process, Snabble only receives a so-called token to identify the payment data for a subsequent transaction. If payment is made by credit card, First Data forwards the payment information to the merchant's payment service provider.
Verification of a credit card is required as part of the initial registration of a credit card in the Snabble app. To verify your credit card, you will be forwarded to your bank after entering your data. There you will be asked to agree to a transfer of 1,00 EUR to Snabble. The amount will be credited to your account immediately after your agreement.
When using online payment via SEPA direct debit in the Snabble app, you enter payment data in the app. The data is encrypted with an RSA public key and stored in the app (art. 6 paragraph 1 lit. a & b GDPR). Only if the app is used is the data transmitted, in encrypted form, and transferred to the respective merchant and the payment service provider First Data (First Data GmbH, Marienbader Platz 1, 61348 Bad Homburg v.d.H., Germany). Only data that is absolutely necessary for the execution of the payment (Art. 6 paragraph 1 lit. b GDPR) is transferred:
- Your first and last name
- Your IBAN
- The amount to be paid
- The payee
In the case of a purchase, a tax and commercial law retention obligation of 10 years applies to the storage, beginning at the end of the calendar year.
Shopping Cart And Receipt Data
Products scanned with the Snabble app are stored locally in the app so that they can be displayed in your shopping cart. At the same time, we transfer the scan events and the current shopping cart to the Snabble platform for storage (art. 6 paragraph 1 lit. b GDPR). The merchant from whom you are currently shopping can also view your shopping cart (Art. 6 Paragraph 1 lit. b GDPR) and retrieve it via a technical interface for integration into their POS systems (Art. 6 Paragraph 1 lit. b GDPR).
When paying with the Snabble app, receipt data is generated. This data contains both the shopping cart and the method of payment. We also store this data in the Snabble platform (art. 6 paragraph 1 lit. b GDPR). The receipt data is transferred to the merchant from whom the purchase was made in order to fulfil the contract (art. 6 paragraph 1 b GDPR).
The Snabble app uses your current location. However, this location is only used locally on your device to automatically select the store where you shop. This is only done if you have agreed to access the location on your device.
Any Other Business
This app uses the Google Maps map service on Android via an API. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps it is necessary to save your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this app has no influence on this data transfer.
Google Maps is used in the interest of an appealing presentation of our app and in order to make it easy to find the places we have indicated in the app. This represents a legitimate interest within the meaning of Art. 6 paragraph 1 lit. f GDPR. You can revoke your consent to use the maps by deactivating the function in the app's settings.
This app uses the map service Apple Maps under iOS. Provider is Apple, One Apple Park Way, Cupertino, CA 95014, USA.
Apple Maps is used in the interest of an appealing presentation of our app and to make it easy to find the locations we have indicated in the app. This constitutes a legitimate interest within the meaning of Art. 6 paragraph 1 lit. f GDPR. You can object to this use by deactivating the function in the app's settings.
In this app, data is collected and stored using the analysis service software Matomo (www.matomo.org), a service of the provider InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand, ("Matomo") on the basis of our justified interest in the statistical analysis of user behaviour for optimisation and marketing purposes in accordance with Art. 6 Section 1 letter f GDPR. Pseudonymised user profiles can be created and evaluated from this data for the same purpose. The data collected with Matomo technology (including your pseudonymised IP address) is processed on our servers ("on premise"). The information generated in the pseudonymous user profile is not used to personally identify users of this app and is not merged with personal data about the bearer of the pseudonym. You can object to this use by deactivating the function in the app's settings.
We use Crashlytics to detect and analyse errors in the app and to fix them. Crashlytics receives crash reports with information on affected code locations, device information and last log file messages. Provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Crashlytics is used in the interest of a stable and error-free app. This represents a legitimate interest in the sense of Art. 6 Section 1 letter f GDPR. You can revoke your consent to use Crashlytics by deactivating the function in the app's settings.
You can find more information on the handling of user data in the Google data protection declaration: https://firebase.google.com/terms/crashlytics-app-distribution-data-processing-terms.
We use Sentry to detect and analyse errors in the app and to fix them. Sentry receives crash reports with details of affected code locations, device information and recent log file messages. The provider is Functional Software, Inc, 132 Hawthorne St, San Francisco, CA 94107, USA. You can object to its use by disabling the feature in the app's settings.
Sentry is used in the interest of a stable and error-free app. This constitutes a legitimate interest within the meaning of Art. 6 Para. 1 letter f GDPR.
The Snabble app only needs access to your device's camera to scan product barcodes. At no time will image or video data be stored by us or transferred to a service outside the app.