Stamped — Legal

Imprint · Privacy Policy · Licenses

Imprint

Media Owner & Operator

Richard Specht
1030 Vienna
Austria

Contact

Email: contact@stamped.at

Nature of the Service

Stamped is a privately operated travel companion for discovering and tracking visits to UNESCO World Heritage Sites. It is currently offered free of charge and contains no advertising or in-app purchases. This may change in the future; should paid features or advertising be introduced, this notice and the disclosures in the Privacy section will be updated accordingly.

Disclosure (§ 25 MedienG)

Information pursuant to § 5 E-Commerce-Gesetz (ECG) and § 25 Mediengesetz (MedienG). Editorial direction (Blattlinie): a personal, non-commercial travel companion for the UNESCO World Heritage List.

Disclaimer

Stamped is an independent project and is not affiliated with, endorsed by, or sponsored by UNESCO. “UNESCO” and “World Heritage” are protected designations of their respective holders and are used here for descriptive purposes only. Site information is aggregated from public sources (see Licenses) and is provided without warranty as to accuracy, completeness, or timeliness.

Privacy Policy

Data Controller

Richard Specht
1030 Vienna, Austria
contact@stamped.at

What We Process & Why

Account & sync — When you sign in with Google or Apple we receive and store an account identifier (and your email address, if the provider releases it), a user ID, and the World Heritage sites and locations you mark as visited or favorite. This lets you keep your passport across devices. Legal basis: Art. 6 (1) (b) GDPR (performing the service you requested).

Guest mode — If you use the app without signing in, your visited sites and favorites are stored only on your device and are not transmitted to us.

Diagnostic error reports — When a technical error occurs, the app may send a report (error context, message, technical details, and your platform, e.g. iOS/Android) to our backend so we can fix problems. These reports are not linked to your account identifier. Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in a working, stable app).

Location — If you grant permission, your approximate device location is used on your device to show nearby sites. It is not transmitted to or stored on our servers.

Processors & Recipients

Supabase — Hosting, database, and authentication are provided by Supabase, Inc. on our behalf as a processor (Art. 28 GDPR). Project region: eu-west-1 (Ireland, EU).

Google / Apple — Authentication is handled via “Sign in with Google” (Google Ireland/LLC) and “Sign in with Apple” (Apple Inc.), depending on the method you choose.

Content & map providers — When the app loads site descriptions, images, or maps, requests are made to Wikipedia/Wikimedia and Wikidata (Wikimedia Foundation), and to the map provider (Apple Maps on iOS; OpenStreetMap tiles on the web). These providers necessarily receive your IP address to deliver the content.

International Transfers

Your account data is stored in the European Union (Supabase region eu-west-1, Ireland). Some providers used to deliver content or sign-in (e.g. Google, Apple, the Wikimedia Foundation, and map providers) may process data outside the EU/EEA; where they do, such transfers are safeguarded by an EU adequacy decision or the EU Standard Contractual Clauses.

Storage Period

Account data is kept until you delete your account, after which it is removed. Data stored locally on your device (session tokens, cached site list, your local visited/favorite entries) remains until you sign out, delete your account, clear the app data, or uninstall the app.

Your Rights

Under the GDPR you have the right to access, rectification, erasure, restriction of processing, data portability, and to object to processing, as well as to withdraw consent at any time. You can delete your account and all associated server data directly in the app, or by contacting contact@stamped.at.

You also have the right to lodge a complaint with the Austrian Data Protection Authority: Österreichische Datenschutzbehörde, Barichgasse 40–42, 1030 Vienna — dsb.gv.at.

Security & Tracking

All data transmission is TLS-encrypted and authentication tokens are kept in the device’s secure storage. The app currently uses no advertising or tracking technologies and performs no profiling or automated decision-making (cf. § 165 Abs. 3 TKG 2021).

Changes to this Policy

We may update this policy to reflect changes to the app or legal requirements — for example, if optional paid features or advertising are introduced in the future, which may involve additional recipients such as the app stores’ payment systems. The current version is shown by the “Last updated” date below. Where a change materially affects how your data is processed, we will make it known within the app.

Licenses & Attribution

Site Data

World Heritage Site data is sourced from Wikidata and dedicated to the public domain under CC0 1.0.

Descriptions

Site descriptions are excerpts from Wikipedia, available under the Creative Commons Attribution-ShareAlike 4.0 license. Text reused from Wikipedia remains under the same license.

Images

Photographs are provided by Wikimedia Commons and remain © their respective authors under the individual free licenses stated on each file’s Commons page.

Maps

Maps are rendered using Apple Maps (iOS) and Google Maps, subject to those providers’ terms. On the web, map tiles are © OpenStreetMap contributors, available under the Open Database License (ODbL).

Icons

Interface icons are from Ionicons, licensed under the MIT License.

Trademarks

“UNESCO” and “World Heritage” and associated emblems are the property of UNESCO. This app is independent and not affiliated with or endorsed by UNESCO.