TrafficNaxx – Privacy Statement

Status: May 2021

Privacy Statement

We value the importance of your personal information and comply with applicable privacy and telecommunications laws, including the EU GDPR.

Controller Technaxx Deutschland GmbH & Co. KG
Contact support@technaxx.de
Scope Mobile App & Services

1. Overview

We do our best to protect your personal information by implementing appropriate security standards. This statement explains the purposes and methods by which personal information may be used, as well as measures taken to protect your privacy.

2. Responsible party

For users in European countries, the responsible party pursuant to Article 4(7) GDPR is:

Responsible party & contact

Technaxx Deutschland GmbH & Co. KG
Represented by Managing Director: Pascal Pekcan
Konrad-Zuse-Ring 16–18, 61137 Schöneck, FRG
E-mail: support@technaxx.de

3. Information about the collection of personal and other data

We provide a mobile app you can download to your device. This section explains the collection of personal information as well as other data when using the app.

“Personal information” is information that identifies or can identify you, such as your name, email address, phone number, location data, or other data that can reasonably be linked to that information.

The camera (together with the app and a WiFi/LAN connection or mobile subscription) may collect and transmit data to Technaxx, such as location data. Data collection, storage and use are performed under strict privacy and security measures.

The Security Premium app and platform collect personal information when a user registers with Security Premium.

4. Categories of personal information we collect and how we use it

Downloading the App

When you download the mobile app, required information is transferred to the App Store (Apple App Store or Google Play), in particular: username, email address and customer number of your account, time of download, payment information, and the individual device identification number. We process the data only to the extent necessary to download the app to your device.

Access authorizations (permissions)

Certain permissions are technically necessary for the app to function.

  • Android (required): memory access (e.g., change/delete USB storage contents), microphone/camera permissions (e.g., intercom / adding devices).
  • Android (network): retrieve network connections, full network access, access all networks, internet data, WLAN connections, etc.
  • iOS: mobile data access outside WLAN to retrieve information while on the move.

Legal basis (if personal reference applies): Art. 6(1)(b) GDPR.

Device information

We collect data regarding device identification and functions, device type, version and operating system as needed to provide app functions and ensure stability and security.

Legal basis (if personal reference applies): Art. 6(1)(f) GDPR.

User account

To use the app, you must create a user account. A device token is generated and mandatory information (nickname, email address or phone number) is collected to enable secure access and assignment to your device.

Legal basis: Art. 6(1)(b) GDPR.

Further data (examples)

After registration and login, we may collect service usage information, access information, cookies, IP address, device IDs (device ID / IMEI), information about unauthorized access, and location information stored on your device.

More detailed examples of data we may collect

  • Installation information (device type, device token, installation ID, phone number or e-mail)
  • User information (username/password, phone number or e-mail)
  • Devices managed by the user (installation information)
  • Phone contacts (contact icon, phone number, nickname)
  • Device information (phone number, IMEI/IMSI, MAC address, firmware version)
  • Locations (coordinates and timestamps)
  • Device settings and status values

Legal basis: performance of the contract (Art. 6(1)(b) GDPR).

Location processing (consent)

Features requiring tracking of movement data can only be used after you agree to location collection (e.g., via GPS). You can revoke consent in your device/app settings at any time. If revoked, full use of features requiring movement tracking may no longer be possible.

Legal basis: consent (Art. 6(1)(a) GDPR) and/or contractual performance (Art. 6(1)(b) GDPR), depending on the feature.

5. Disclosure of personal information – transfer to third parties

If we use commissioned service providers for individual functions, we inform you about the respective processes and relevant storage criteria. Personal data is only passed to third parties where permitted by law, where there is a legitimate interest, or where you have given consent.

We do not share personal information for marketing purposes unless you have explicitly consented.

We may disclose personal information without consent if required by applicable laws, regulations, legal proceedings, or enforceable governmental requests. We may also share location information with emergency services where legitimate interests apply.

Data may be processed and stored by AWS as hosting provider.

Website access logs (technical data)

When you visit the website, we (or our hosting provider) may collect technical data needed for delivering the site and ensuring stability and security (e.g., IP address, date/time, request content, status code, transmitted data, operating system/interface). Data may be stored for fourteen days and then deleted.

Legal basis: Art. 6(1)(f) GDPR.

6. Deletion of data

Unless otherwise regulated for specific processing operations, stored data is deleted as soon as it is no longer required for its intended purpose, unless statutory retention obligations apply. Where data cannot be deleted (because it is required for other legally permissible purposes), processing is restricted.

This may apply, for example, to data that must be retained for commercial or tax law reasons.

Account data

We store registration data and device token until you permanently delete the app on your mobile device. If you deactivate your account by email, we keep your data for 45 days (deactivation period), during which it is not accessible. After that, deletion begins; deletion from systems and backups may take up to one week.

7. Your rights

With regard to personal data concerning you, you have the right vis-à-vis us to:

Key rights (GDPR)
  • Revoke consent at any time (Art. 7(3) GDPR).
  • Request information/access to your personal data (Art. 15 GDPR).
  • Request rectification of incorrect/incomplete data (Art. 16 GDPR).
  • Request erasure under conditions (Art. 17 GDPR).
  • Request restriction of processing (Art. 18 GDPR).
  • Receive data in a structured, common, machine-readable format / transfer (Art. 20 GDPR).
Right to object (Art. 21 GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to processing of personal data based on Art. 6(1)(e) GDPR (public interest) or Art. 6(1)(f) GDPR (legitimate interests), including profiling. If you object, we will no longer process your personal data unless compelling legitimate grounds override your interests, or processing serves legal claims.

If your objection is directed against direct marketing, we will stop processing immediately. In this case, no specific situation is required.

To exercise your rights, an e-mail to support@technaxx.de is sufficient. You also have the right to complain to a data protection supervisory authority.

8. Topicality and change of this data protection declaration

This data protection declaration is currently valid and has the status May 2021.

Status: May 2021