Stila Privacy Policy

Stila research initative has the goal to improve personal life with showing the research participants their stress development. We appreciate that you als research participant are trusting us with information that is important to you, and we want to be transparent about how we use it.

INFORMATION COLLECTED

When you participate Stila research project as participants through the use of our services, we collect the following types of information.

INFORMATION YOU PROVIDE US

ACCOUNT INFORMATION

Some information is required to create an account on our Services, such as your name, email address, password, date of birth, gender, height, weight and in some cases your student id (matriculation number) of your university. This is the only information you have to provide to create an account with us. You may also choose to provide other types of information, such as a profile photo, biography, country information, and community username.

ADDITIONAL INFORMATION

To help improve your experience or enable certain features of the Services, you may choose to provide us with additional information, like your logs for activities, weight, sleep.

If you contact us or participate in a survey, we collect the information you submit such as your name, contact information, and message.

INFORMATION FROM THIRD-PARTY SERVICES

You connect your account on our Services with your account on another service, we may receive information from the other service. For example, if you connect to Fitbit or Google, we may receive information like your name, profile picture, age range, language, email address and your daily heart rate. You grant us access to your exercise or activity data from another service through using our service. You can stop sharing the information from the other service with us by removing our access to that other service and stoping using our service.

INFORMATION WE RECEIVE FROM YOUR USE OF OUR SERVICES

DEVICE INFORMATION

Your third part device collects data to estimate a variety of metrics like heart rate, sleep stages, active minutes. The data collected varies depending on which third part device you use to connect your services. When your third party device syncs with our applications or software, data recorded on your third party device is transferred from your device to our servers.

USAGE INFORMATION

When you access or use our Services, we receive certain usage data. This includes information about your interaction with the Services or software, for example, when you view or search content, install applications or software, create or log into your account, pair your device to your account, or open or interact with an application on your third party device such as Android Wear.

We also collect data about the devices and computers you use to access the Services, including IP addresses, browser type, language, operating system, Fitbit, Android Wear or mobile device information (including device and application identifiers), the referring web page, pages visited and cookie information.

HEALTH AND OTHER SPECIAL CATEGORIES OF PERSONAL DATA

To the extent that information we collect is health data or another special category of personal data subject to the European Union's General Data Protection Regulation ("GDPR"), we ask for your explicit consent through the third party services to process the data. We obtain this consent separately when you take actions leading to our obtaining the data, for example, when you pair your device to your account, grant us access to your exercise or activity data from another service. You can use your account settings and tools of the third party services to withdraw your consent at any time, including by stopping use of our service, removing our access to a third-party service, unpairing your device, or deactivate your account.

HOW INFORMATION IS USED

We use the information we collect for the following purposes.

RESEARCH

All information we collect are mainly for research purpose. For example, with the information about your heart rate, activities and feedbacks to your activities, a personalised stress detection model can be created. Information relevant to research is anonymised without your personal information (such as name, email address, IP address) and may be published in paper, conferences; be shared with other researchers and in some cases be downloaded from our web page, services or software by the general public.

PROVIDE AND MAINTAIN THE SERVICES

Using the information we collect, we are able to deliver the Services to you and honor our Terms of Service contract with you. For example, we need to use your information to provide you with your dashboard tracking your stress, activity, and other trend.

IMPROVE, PERSONALIZE, AND DEVELOP THE SERVICES

We use the information we collect to improve and personalize the Services and to develop new ones. For example, we use the information to troubleshoot and protect against errors; perform data analysis and testing; conduct research and surveys; and develop new features and Services.

When you allow us to collect activity information from third party such as Google Calendar, we use that information to provide and improve features of the Services such as building your personalised stress detection assistant.

We also use your information to make inferences and show you more relevant content. Here are some examples:

  • Information like your height, weight, gender, and age allows us to improve the accuracy of your personalised stress model.
  • Based on your sleep data, we may make inferences about your sleeping patterns and provide you with customized insights to help you visualise and perceive stress caused by your sleep behaviour.

COMMUNICATE WITH YOU

We use your information when needed to send you Service notifications and respond to you when you contact us. We also use your information to promote new features or research initiatives that we think you would be interested in. We use your information to give you instantaneously feedback about your current stress development through wearable watches, applications or software.

PROMOTE SAFETY AND SECURITY

We use the information we collect to promote the safety and security of the Services, our users, and other parties. For example, we may use the information to authenticate users, respond to a legal request or claim, conduct audits, and enforce our terms and policies.

We use Tokens and similar technologies for the purposes described above.

For personal data subject to the GDPR, we rely on several legal bases to process the data. These include when you have given your consent, which you may withdraw at any time using your third party account settings and other tools; when the processing is necessary to perform a contract with you, like the Terms of Service; and our legitimate research interests, such as in improving, personalizing, and developing the Services, new features or research initiatives that may be of interest, and promoting safety and security as described above.

HOW YOUR INFORMATION IS SHARED

We do not share your personal information except in the limited circumstances described below.

FOR RESEARCH

Information relevant to research is anonymised without your personal information (such as name, email address, IP address) and may be published in paper, conferences; be shared with other researchers and in some cases be downloaded from our web page, services or software by the general public.

FOR LEGAL REASONS OR TO PREVENT HARM

We may preserve or disclose information about you to comply with a law, regulation, legal process, or governmental request; to assert legal rights or defend against legal claims; or to prevent, detect, or investigate illegal activity, fraud, abuse, violations of our terms, or threats to the security of the Services or the physical safety of any person.

  • Please note: Our policy is to notify you of legal process seeking access to your information, such as search warrants, court orders, or subpoenas, unless we are prohibited by law from doing so. In cases where a court order specifies a non-disclosure period, we provide delayed notice after the expiration of the non-disclosure period. Exceptions to our notice policy include exigent or counterproductive circumstances, for example, when there is an emergency involving a danger of death or serious physical injury to a person.

We may share non-personal information that is aggregated or de-identified so that it cannot reasonably be used to identify an individual. We may disclose such information publicly and to third parties, for example, in public reports about stress and activity, to other researchers under agreement with us, or as part of the benchmarking information we provide to users of our services.

If we are involved in a merger, acquisition, or sale of assets, we will continue to take measures to protect the confidentiality of personal information and give affected users notice before transferring any personal information to a new entity.

YOUR RIGHTS TO ACCESS AND CONTROL YOUR PERSONAL DATA

Accessing and Exporting Data. By logging into your account, you can access much of your personal information, including your dashboard with your daily stress and activity statistics.

Restricting or Limiting Data Use. We strive to follow the rules of the Asilomar Convention for Learning Research in Higher Education in our research initiatives, you can find these rules under asilomar-highered.info. If you need further assistance regarding your rights, please contact stila@pms.ifi.lmu.de, and we will consider your request in accordance with applicable laws and regulations for research.

OUR POLICIES FOR CHILDREN

We appreciate the importance of taking additional measures to protect children’s privacy.

Persons under the age of 18, or any higher minimum age in the jurisdiction where that person resides, are not permitted to create accounts in our services. If we learn that we have collected the personal information of a child under the relevant minimum age without parental consent, we will take steps to delete the information as soon as possible. Parents who believe that their child has submitted personal information to us and would like to have it deleted may contact us at stila@pms.ifi.lmu.de.

INFORMATION SECURITY

We work hard to keep your data safe. We use a combination of technical, administrative, and physical controls to maintain the security of your data. This includes using Transport Layer Security ("TLS") to encrypt many of our Services. No method of transmitting or storing data is completely secure, however. If you have a security-related concern, please contact stila@pms.ifi.lmu.de.