Privacy Policy

We are pleased about your interest in our website. The protection of your personal data is of great importance to us. We observe the statutory provisions relating to data protection and data security.

In particular, we are subject to the provisions of the General Data Protection Regulation (GDPR), the German Federal Data Protection Act in the version in force since 25 May 2018 (BDSG), the German Digital Services Act (DDG) and the German Telecommunications and Telemedia Data Protection Act (TDDDG). Under these provisions, we are authorised in particular to collect and use personal data insofar as this is necessary to enable you to use our online offering at www.bxc-security.com, including all services and functions contained therein.

Below you will find information about what personal data we collect when you use our website and make use of the services and functions contained therein, and how we use this data and for what purposes.

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states, as well as other data protection regulations, is:

BxC GmbH & Co. KG
Föhrenweg 1 85399 Hallbergmoos
Tel.: +49-811-12880743
Website: www.bxc-security.com

The data protection officer of the controller is:  

Johannes Schwiegk
Datenzeit GmbH
Friedrich-Engels-Allee 200
D-42285 Wuppertal
Tel.: +49-202-94794940
E-Mail: datenschutz@datenzeit.de
Website: https://www.datenzeit.de/

We process personal data of our users only to the extent necessary to provide a functioning website and our content and services. Personal data of our users is processed on a regular basis only with the consent of the user. An exception applies in cases where prior consent cannot be obtained for factual reasons and where the processing of the data is permitted by statutory provisions.

Where we obtain the consent of the data subject for the processing of personal data, Art. 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.  

Where processing of personal data is necessary for the performance of a contract to which the data subject is a party, Art. 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.  

Where processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6(1)(c) GDPR serves as the legal basis.  

In cases where processing of personal data is necessary in order to protect the vital interests of the data subject or another natural person, Art. 6(1)(d) GDPR serves as the legal basis.  

Where processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, and where those interests are not overridden by the interests, fundamental rights and fundamental freedoms of the data subject, Art. 6(1)(f) GDPR serves as the legal basis for processing.

The personal data of the data subject will be deleted or restricted as soon as the purpose of storage no longer applies. Storage may take place beyond this if provided for by European or national legislators in EU regulations, laws or other provisions to which the controller is subject. Data will also be restricted or deleted when a storage period prescribed by the aforementioned standards expires, unless there is a necessity for further storage of the data for the conclusion or performance of a contract.

We cannot attribute this data to specific persons. We do not combine this data with other data sources.
‍
The legal basis for the temporary storage of the data is Art. 6(1)(f) GDPR.

Our websites use what are known as "cookies". Cookies are small text files that do not cause any damage to your device. They are stored either temporarily for the duration of a session (session cookies) or permanently on your device (persistent cookies). Session cookies are automatically deleted when you end your visit. Persistent cookies remain stored on your device until you actively delete them or until they are automatically deleted by your web browser.

In some cases, third-party cookies may be stored on your device when you enter our website (third-party cookies). These enable you or us to use certain services offered by third parties (e.g. cookies for processing payment services).

Cookies have a variety of functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping cart function or the display of videos). The purpose of other cookies may be to analyse user patterns or to display advertising messages.

Cookies that are required for carrying out electronic communication processes (necessary cookies), for providing certain functions that you wish to use (functional cookies, e.g. for the shopping cart function), or that are required for optimising the website (e.g. cookies that provide measurable insights into the web audience), are stored on the basis of Art. 6(1)(f) GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing cookies to ensure the technically error-free and optimised provision of the operator's services. Where your consent to the storage of cookies has been requested, the cookies in question are stored exclusively on the basis of the consent obtained (Art. 6(1)(a) GDPR); this consent can be revoked at any time.

You have the option of setting your browser to inform you every time cookies are set and to allow the acceptance of cookies only in certain cases. You can also exclude the acceptance of cookies in certain cases or in general, or activate the delete function for automatic deletion of cookies when closing the browser. If cookies are deactivated, the functions of this website may be restricted.

If cookies from third parties are used, or if cookies are used for analytical purposes, we will inform you separately within the context of this privacy policy and, if applicable, ask for your consent.

1. Scope of the Processing of Personal Data

This website uses the "Google Cloud CDN" service. The provider of this service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, and Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Cloud CDN uses geographically distributed servers to increase the loading speed of our website and to deliver content more efficiently to users. The data processed includes in particular your IP address and location data, as well as, under certain circumstances, technical data such as browser information, device types and usage statistics. Data may be processed in the USA.

Where personal data is transferred to the USA, this is done on the basis of the EU-US Data Privacy Framework and, where applicable, on the basis of the European Commission's standard contractual clauses.

2. Legal Basis for the Processing of Personal Data

The legal basis for the use of Google Cloud CDN is Art. 6(1)(f) GDPR.

1. Scope of the Processing of Personal Data

This website uses the Google Tag Manager. The provider of this service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, and Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The only data processed is your IP address, which is necessary to run the Google Tag Manager but is not collected without your consent (e.g. through appropriate settings in your browser or our consent management tool). The Tag Manager itself does not create user profiles or store cookies.

Data may be processed in the USA. Where personal data is transferred to the USA, Google has submitted to the EU-US Data Privacy Framework, and the EU Commission's standard contractual clauses are also used. Further information is available at https://business.safety.google/adsprocessorterms/.

1. Scope of the Processing of Personal Data

This website uses the "Amazon Web Services (AWS) CloudFront" service. The provider of this service is Amazon Web Services, Inc., 410 Terry Avenue North, Seattle, WA 98109-5210, USA. The service is used to efficiently deliver content on our website and to improve loading speed for our users. In the context of using the service, data such as IP addresses, web browser information, devices used and similar technical information may be processed in order to deliver content quickly to end users. In addition, data about your interactions with the content provided on our website, such as frequency and duration of access, may be collected.

The service is a globally distributed network that provides data from servers worldwide. As a result, your data may also be processed in countries outside the European Union.

Where personal data is transferred to the USA, this is done on the basis of the EU-US Data Privacy Framework and, where applicable, on the basis of the European Commission's standard contractual clauses.