Last updated on 17.04.2023
If you wish to make a complaint about a breach of your privacy, you can contact us:
Responsible body in the sense of data protection law
mementor DE GmbH
Karl-Heine-Straße 15
04229 Leipzig
Deutschland / Germany
Contact details of the data protection officer
Paul Schmude
Karl-Heine-Straße 15
04229 Leipzig
Deutschland / Germany
You may also have the right to lodge a complaint in relation to our processing of your personal data with a local supervisory authority, including the following:
Australia: Office of the Australian Information Commissioner
New Zealand: Office of the Privacy Commissioner | Home
This privacy policy provides users with information about the nature, scope and purpose of the collection and use of their data by the responsible provider.
The privacy policy is valid for the app somnio. The app somnio is used for the treatment of sleep disorders and guides through a variety of cognitive behavioral exercises by means of a digital avatar. A sleep journal is used to track progress and guide therapy. For this purpose, health information within the meaning of Art. 9 GDPR is used; this is explained in more detail in point 4.b).
Each time you use somnio, a connection is established with the somnio server. Information is automatically collected in the process.
The IP address and information about the end device you are using are recorded. Without this data, it would not be technically possible to use somnio. In this respect, the collection of the data is mandatory. In addition, we use the anonymized information for statistical purposes. They help us to optimize the offer and the technology. We also reserve the right to subsequently check the log files if we suspect illegal use of our offer. The legal basis for the temporary storage of the data or the log files is Art. 6 para. 1 lit. f GDPR, whereby the legitimate interest follows from the aforementioned purposes.
Deletion of the data, in particular the log files, takes place at regular intervals.
Personal data is processed in the course of sleep training. Personal data is any information by which a person can be clearly identified. It is therefore data that can be traced back to a person.
All data is stored and processed on servers in Germany by European providers. The operator of our servers is certified according to ISO 27001, and corresponding order data processing contracts are in place.
Internet access must be available in order to use the app. The use of online based services is generally associated with a certain security risk, which we minimize from our side, but we can not address all risks completely.
If registration takes place via the website http://au.somn.io, the following personal data will be processed by mementor as part of the registration and use of the digital health application somnio: e-mail address and license code.
In this case, the processing of your data is based on your consent pursuant to Art. 6 para.1 p. 1 lit. a GDPR. You can revoke the consent at any time without giving reasons. The processing of the code for billing purposes is based on Art. 6. para. 1 p. 1 lit. b GDPR.
The deletion of the data takes place 12 months after the end of the usage period to give you the opportunity to continue sleep training at a later time even after the end of this. Deletion also takes place after 12 months of inactivity, in which case you will receive a notification by e-mail 30 days before deletion.
In order to personalize sleep training and thus achieve the highest possible success rate, further data is collected in sleep training with the somnio health application. This includes:
When using the app, it requests health data on
The given answers are stored and evaluated in order to adapt the training to the users individual problems and needs. The data collected are special categories of personal data, specifically health data, as defined by Art. 9 GDPR. Health data is all data relating to the physical and mental state of health of a natural person. This data is stored on a server in Germany. The servers are not operated by us, but by a European provider. A commissioned data processing agreement and a list of technical and organizational measures are in place with this provider. The contractor is certified according to ISO27001. Only our administrators, our user support staff and you have access to the data.
The stored data is used to calculate score values, create evaluations and monitor training success.
This data is only collected and used by mementor if this is expressly permitted by law or if the user consents to the collection, processing, use and disclosure of the data.
The legal basis for processing the data or health data is your express consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR and Art. 9 para. 2 p. 1 lit. a GDPR. You can withdraw your consent to processing at any time without giving reasons. Withdrawal of consent results in blocking the processing of your data, and in deletion after 30 days. Within this period, you may give your consent again and continue to use the program without losing your progress.
The deletion of the data takes place 12 months after the end of the period of use, in order to give you the opportunity to continue the sleep training at a later time, even after the end of this period. Deletion also takes place after 12 months of inactivity, in which case you will receive a notification by e-mail 30 days before deletion.
The health application somnio offered by mementor can optionally be connected to a fitness tracker. The connection is done via the API of the corresponding manufacturer. Information about
are transmitted from the fitness tracker to somnio and transferred to the sleep journal according to lit. b.
A connection with the fitness tracker and the retrieval of the data is only possible after you have given your consent according to Art. 6 para. 1 p. 1 lit. a GDPR. You have the option to revoke this consent at any time and continue using somnio without a fitness tracker.
The deletion of the data takes place according to lit. a 12 months after the end of the usage period.
The somnio health application is based on current scientific treatment methods and takes into account the latest knowledge from research. To ensure continuous improvement of the sleep training, mementor reserves the right to anonymize and subsequently evaluate your data. This allows the training and its effectiveness to be optimized.
If you contact mementor by e-mail or form, the information you provide (in particular your email address) will be stored in order to answer your inquiry and to be able to ask possible follow-up questions.
In this case, the processing of your data is based on your (implied) consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR.
somnio uses so-called cookies. These are text files that are stored on your device from the server. Cookies are used in somnio to store session data after logging into the program. We would like to point out that this may involve certain risks. To ensure that your session cannot be hijacked by third parties, we recommend that you log out after each use of somnio.
In the following, you will find information on which data subject rights the applicable data protection law grants you vis-à-vis the controller with regard to the processing of your personal data:
If you wish to exercise your right of revocation or objection, simply send an e-mail to info@mementor.de.
In order to ensure that our privacy policy always complies with the current legal requirements, mementor reserves the right to make changes at any time. This also applies in the event that the data protection declaration has to be adapted due to new or revised services, for example new services.