Kreis mit der Nationalflagge Deutschlands in Schwarz, Rot und Gelb.Weißes Kreuz auf rotem Hintergrund, Symbol der Schweiz.Flagge von Österreich mit drei horizontalen Streifen in Rot, Weiß und Rot.

Privacy Policy

We are delighted by your interest in our company. Data protection is of particular importance at heycare. Every user should always be informed about which personal data (hereinafter "data") heycare processes.

Should anything be unclear, please never hesitate to contact us. Data protection jurisprudence and decision-making practice are constantly evolving, and we always strive to keep pace. However, should a "topic slip through" unexpectedly, please do not hesitate to contact us using the contact details provided for the data protection controller. We will then promptly address your concern.

The term "user" is to be understood broadly below. It includes companies and parents who register with heycare, as well as nannies and mere visitors to our site who do not register. The term is also to be understood as gender-neutral. This privacy policy informs you about the nature, scope, and purpose of the processing of personal data within our online offering. The privacy policy applies regardless of the domains, systems, portals, and devices used (e.g., desktop or mobile) on which the online offering is operated. We process data strictly in compliance with the relevant data protection regulations. This is somewhat obvious, but also a matter of course for us. Because your data is important to us.

In other words, this means that data is only processed when there is a legal basis for doing so.

Furthermore, we inform you below about the third-party components we use for optimization purposes and to enhance user quality, insofar as third parties process data under their own responsibility. With regard to the processing of personal data based on the General Data Protection Regulation (GDPR), we point out that the legal basis for consent is Art. 6 para. 1 lit. a and Art. 7 GDPR, the legal basis for processing to fulfill our services and implement contractual measures is Art. 6 para. 1 lit. b GDPR, the legal basis for processing to fulfill our legal obligations is Art. 6 para. 1 lit. c GDPR, and the legal basis for processing to protect our legitimate interests is Art. 6 para. 1 lit. f GDPR.

Controller

The controller for data processing on this website, as defined by Art. 4 No. 7 GDPR and Art. 5 lit. j of the Federal Act on Data Protection (Data Protection Act, DSG), is:

heynannyly GmbH
Am Galgenberg 21
91315 Höchstadt
Tel: 0175/1156455
Email: team@heycare.com

Our EU Data Protection Officer and GDPR Data Protection Consultant can be reached via heyData GmbH, Schützenstraße 5, 10117 Berlin, www.heydata.eu, Email: datenschutz@heydata.eu reachable.

Our Privacy Policy for Download

heycare Privacy Policy - German

heycare Privacy Policy - English

General Information Security Statement:
ISO/IEC 27001:2022

1.1 Purpose

heynannyly GmbH has developed and maintains an Information Security Management System (ISMS) in accordance with ISO/IEC 27001 to ensure comprehensive information security.

1.2 Commitment to Information Security

Protection of Information Assets:
The company is committed to preserving the confidentiality, integrity, and availability of all information managed within its environment. This includes data owned by the company, its employees, customers, partners, and suppliers.

ISMS Implementation:
To demonstrate its commitment to high information security standards, the company has implemented an ISMS that complies with ISO/IEC 27001 best practices.

1.3 Leadership and Commitment

Alignment with Strategy:
Top management ensures that information security objectives are aligned with the company's broader strategic goals.

Process Integration:
ISMS requirements are embedded into the company's operational processes to support effective and secure business practices.

Defined Responsibilities:
Clearly assigned roles and responsibilities enable efficient governance and management of the ISMS.

Provision of Resources:
The company provides the necessary resources to effectively maintain and improve the ISMS.

Commitment to Improvement:
Leadership fosters a culture of continuous improvement within the ISMS and supports adaptability to new threats and technological changes.

1.4 Key Objectives of the ISMS

Compliance with Regulations and Stakeholders:
The company strives to meet applicable legal, regulatory, and contractual obligations and to fulfill the expectations of interested parties.

Operational Continuity and Resilience:
A high level of cyber resilience and business continuity is maintained to ensure uninterrupted operations.

Risk Identification and Mitigation:
Security risks are proactively identified, assessed, and managed to minimize potential impact and maintain an acceptable level of risk.

1.5 Policy Review and Update

Scheduled and Responsive Reviews:
This policy will be reviewed and revised at least annually, or sooner if there are significant changes in the business, technological, or legal environment.