Skip to content
Back to home

Privacy Policy

Last updated: June 2026

1. Privacy at a Glance

This privacy policy explains which personal data is processed when you visit this website, use the annily app or contact us. The annily app stores the content you enter exclusively locally on your device. We do not have access to names, birthdays, gift ideas, events or local backups.

2. Controller

The controller for this website and the annily app is:

Invisible Room GmbH & Co. KG Rigaer Straße 84 10247 Berlin Germany Email: hallo@invisibleroom.com Phone: +49 (0)151 204 679 14

Represented by the personally liable managing partner Invisible Room MediaTech GmbH, represented by managing directors Maren Demant and Sascha Demant.

3. Website Data Processing

When you visit this website, technically necessary access data is processed so the website can be delivered securely. This may include IP address, date and time, requested page, referrer, browser, operating system and device information.

The legal basis is Art. 6(1)(f) GDPR, our legitimate interest in providing the website securely and without errors.

4. Cookies and Local Storage

This website uses technically necessary browser storage to remember your cookie choice. We also use Google Analytics only if you have given prior consent.

You can withdraw your consent at any time for the future by reopening the cookie settings in the footer and changing your choice.

5. Google Analytics

If you have consented, we use Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics helps us understand how the website is used. Usage data, device information and shortened IP addresses may be processed. The legal basis is Art. 6(1)(a) GDPR.

Google may also transfer data to the United States. Where required, Google relies on appropriate safeguards, in particular the EU-US Data Privacy Framework or standard contractual clauses. More information is available at https://policies.google.com/privacy.

6. Data in the annily App

The annily app stores all data you enter exclusively locally on your device. This may include people, birthdays, gift ideas, events, reminders and settings.

No app content is transmitted to our servers. We cannot see, analyze or restore this data.

If you use the export function, a backup file is created locally on your device. You decide whether and where to share that file.

7. Google Calendar and Contacts Import

Google Calendar import

If you use Google Calendar import, annily accesses your Google calendar data in read-only mode to bring birthdays, anniversaries or other relevant events into the app.

annily does not create, change or delete events in your Google Calendar. Calendar data is used only for the import you start and is not transmitted to our servers.

Google Contacts import

If you use Google Contacts import, annily accesses your Google contact data in read-only mode to bring birthdays and other relevant information into the app.

annily does not create, change or delete contacts in your Google account. Contact data is used only for the import you start and is not transmitted to our servers.

8. Safeguards for Google User Data and Sensitive Data

Google Calendar and Google Contacts data may contain personal data and, depending on the content, sensitive information. annily therefore processes this data with particular restraint and only for the import you initiate.

In particular, the following measures apply to protect this data:

  • Google data is accessed exclusively through the OAuth and API interfaces provided by Google.
  • Access takes place only after your explicit authorization through your Google account.
  • annily uses only read-only permissions for calendar and contact data.
  • annily does not change, create or delete any data in your Google account.
  • Imported data is stored locally on your device and is not transmitted to our servers.
  • Google access tokens are stored locally on your device to the extent technically required.
  • Communication with Google services takes place over encrypted connections.
  • We do not sell Google user data or share it for advertising purposes.
  • Google user data is not used for advertising, profiling or tracking.
  • Google user data is not read by humans unless you explicitly provide this data to us yourself as part of a support request.

9. Retention and Deletion of Google User Data

annily generally stores calendar or contact data imported from Google locally on your device. We do not store this data on our servers.

Imported data remains stored in the app until you delete it yourself in the app, remove the app data from your device or uninstall the app.

If you create a local backup file, that file remains on your device or at the storage location you choose until you delete it yourself. We have no access to these backup files.

You can revoke annily’s access to your Google account at any time in the security settings of your Google account. After revocation, annily can no longer import additional data from your Google account. Data already imported locally into annily remains stored on your device until you remove it yourself in the app or by deleting the app data.

Because we do not store Google Calendar or Google Contacts data on our servers, we cannot centrally delete, export or restore this data. Management and deletion take place locally on your device.

For Google Calendar import, annily uses only the Google permissions required for read-only access, in particular:

  • https://www.googleapis.com/auth/calendar.readonly

For Google Contacts import, annily uses only the Google permissions required for read-only access, in particular:

  • https://www.googleapis.com/auth/contacts.readonly

If additional Google permissions are used in the app or in the Google Cloud OAuth consent screen, they will be used only to the extent required for the respective function and will be added to this privacy policy accordingly.

10. Support and Contact

If you contact us by email, we process your email address and the content of your message to handle your request. The legal basis is Art. 6(1)(f) GDPR and, for contract-related requests, also Art. 6(1)(b) GDPR.

Support: annily@invisibleroom.com

11. Your Rights

Under the GDPR, you have in particular the right to access, rectification, erasure, restriction of processing, data portability and objection. If processing is based on consent, you may withdraw that consent at any time with effect for the future.

To exercise your rights, contact hallo@invisibleroom.com. You also have the right to lodge a complaint with a data protection supervisory authority. The competent authority for Berlin is the Berliner Beauftragte für Datenschutz und Informationsfreiheit, www.datenschutz-berlin.de.

12. App Stores and Third Parties

When you download the annily app through the Apple App Store or Google Play Store, the privacy policies of the respective providers also apply. We have no influence over that processing.

Apple: https://www.apple.com/privacy Google: https://policies.google.com/privacy

13. Changes to This Privacy Policy

We update this privacy policy if our processing, app features or legal requirements change. The version published on this page applies.