The maxon Group's data protection notices in connection with the Bike Drive APP platform

The maxon international ag app platform (hereinafter referred to as maxon or we) includes our iOS and Android Connect app. The protection of your privacy when processing personal data and the security of information is an important concern for us, which we take into account in our business processes. We process personal data that is collected and processed in connection with the use of our services confidentially and only in accordance with the statutory provisions. Data protection and information security are part of our corporate policy.

1 Responsible

1.1 Responsible for the processing of your data is:

maxon international ag
Mobility Solutions business unit
Brünigstrasse 220
6072 Sachseln
Telephone: +41 (0)41 666 15 00

1.2 Rights of Data Subjects

to assert your rights or if you have any questions, use the following link: contact

1.3 Contact to data protection officer

If you have any questions or suggestions regarding this data protection declaration, your personal data or data security at maxon, you can contact us as follows:
maxon international ag
Data Protection Officer
Brünigstrasse 220
CH-6072 Sachseln
Telephone: +41 (0)41 666 15 00
Email: privacy@maxongroup.com

2 Collection and processing of personal data

2.1 Definition of personal data

Personal data is any information relating to an identified or identifiable natural person, such as name, address, telephone number or email address.

2.2 Processed data categories, processing purposes and legal bases

The individual processing purposes, including the data categories, are described in more detail below.

2.2.1 Log data to provide our platform

When accessing our website or using our BIKEDRIVE Connect app, certain information is automatically transmitted to us and stored in so-called log files. The following information in particular is stored in the log files:

IP address
Name of the retrieved files or information
Date and time as well as duration of the call
Amount of data sent
Type of event
Referrer URL (last visited website that referred to our website/app via a link)
http status code
Device type (user interface string, e.g. iOS, Android, operating system used)

These log files are stored for a period of 1 month in order to provide and optimize our online offer, to ensure technical operation and to identify and eliminate faults and to investigate criminal offenses on the basis of Article 6 Paragraph 1 lit. f EU-DSGVO .
The technical data of the server log files are stored separately from all personal data relating to you.

2.2.2 Registration and creation of a user account

Registration is required to provide our services. The personal data that you provide when registering and using our services includes your name, your contact details and your e-mail address and password. We need this information to identify and provide our services as well as for the purpose of communication and to answer and process your inquiries.
Your data will be collected and processed on the basis of Article 6 Paragraph 1 Letter b of the EU GDPR.

2.2.3 Contact via the contact form on the website

If you contact our customer service, e.g. B. in the case of questions, complaints or suggestions, further personal data can be processed in order to implement and process your request, e.g. B. Your phone number.
Your data will be collected and processed on the basis of Article 6 Paragraph 1 Letter b of the EU GDPR.

2.2.4 General service and function-related user data

Various information about your bike system is made available to you via the dashboard of our BIKEDRIVE Connect APP. In addition, you can regulate the support of the motor via the app and adapt it to your driving behavior. This information may be used to improve the Services and to assist in service cases. The device-related data (information on the e-bike hardware component) is linked to your user account data and stored. The device-related data is information about your e-bike, e.g. B. Information about the manufacturer, the model of the e-bike including bike parameters, the serial number, hardware and software version number etc. Further information on e-bike components such as the drive unit (motor) or battery status as well as general activity data such as e.g. B. Total driving time or battery charge cycles can also be processed.
The legal basis for the processing of this data for the purposes described above is Article 6 (1) (b) EU/GDPR (unless this is indicated otherwise below).
You have the option of modifying the motor support of the drive unit of your e-bike and saving corresponding profiles. Additional information on the respective drive unit is compiled and visualized for you to give you the option of reactivating the configurations you last set.

2.2.5 Product Improvement and Development

In order to constantly improve our platform and the BIKEDRIVE Connect app and to develop new products and services (e.g. HMI, DriveUnit, battery), we use diagnostic and usage data that is generated through the use of maxon BIKEDRIVE products. Here z. B. an analysis of the performance statistics as well as the device and software-related usage information, or how you use the platform or app, which functions you access to what extent or when you delete your account or uninstall the app. This information helps us to further develop our platform and app and to adapt it to the needs of our users. The data is only processed in an anonymous form and used for statistical usage evaluations.
The legal basis for this processing is a legitimate interest pursuant to Article 6 (1) (f) GDPR. maxon BIKEDRIVE's legitimate interest is to optimize its own products and services, to develop new products and services and thus to maintain or promote your satisfaction.

2.2.6 Service case & system connection to the maxon BIKEDRIVE service app

If you have any questions about your e-bike, you are welcome to contact your bicycle dealer or service partner. In order to be able to process your request, it is first necessary to identify the technical fault. To do this, the dealer connects to your system via a dealer app (BIKEDRIVE service app). When you connect your e-bike to this diagnostic tool, the following information about your e-bike is sent to maxon processing:
Information about the manufacturer, the date of manufacture and the model of the e-bike, bike ID, information about the e-bike components (item number, serial number, hardware and software versions, configuration data, statistical data), and data about the e-bike ( e.g. total driving time, battery charging cycles)”. The device-related data can be processed for the following purposes: processing your request, handling a service case, configuring the e-bike, performing updates, resetting a detected manipulation, unlocking the e-bike components, setting the system time and for product improvement.
The legal basis for processing is Article 6 Paragraph 1 Letter b) GDPR (contract) and Article 6 Paragraph 1 Letter f) GDPR (legitimate interest). maxon's legitimate interest results from the interest in solving any technical faults that may exist, handling warranty cases, maintaining or promoting your satisfaction and optimizing our own products.

2.3 Newsletter with registration / right of withdrawal

You can subscribe to our newsletter as part of our online offering. We use the so-called double opt-in procedure for this, according to which we will only send you a newsletter by e-mail, mobile message services (e.g. WhatsApp), SMS or push message if you have previously expressly informed us by clicking on a link have confirmed the activation of the newsletter service in a notification. If you later decide not to receive newsletters, you can unsubscribe at any time by revoking your consent. The revocation takes place for e-mail newsletters via the link printed in the newsletter. We would like to point out that we evaluate the behavior of the readers of our e-mail newsletter. For this evaluation, the e-mails sent contain so-called web beacons or tracking pixels. This tracking does not take place if you have deactivated the display of images in your e-mail program by default. In this case, the newsletter will not be displayed to you in full and you may not be able to use all functions. As soon as you display the images, the tracking described above is activated. Your personal data will only be transmitted to other responsible parties (our "partners") if this is necessary to provide the service and to process your request when contacting our customer service and/or if you have given your consent.
We also commission external service providers for IT services, marketing services and programming in order to be able to provide you with our services. We have carefully selected these service providers and monitor them regularly, in particular their careful handling of data. We oblige all service providers to maintain confidentiality and to comply with legal requirements. In addition, your data may be transmitted to public authorities if we are obliged to do so by law or by an enforceable official or court order. If data is passed on on the basis of a legitimate interest, you will be expressly informed of this in this data protection declaration.

3 Transmission of data / data inspection

3.1 Disclosure of Personal Data

Hubspot (newsletter service, marketing, use of data only in the event of customer consent....)
Arendi (app developer, data for the purpose of further development or testing of the APP)
Inovit (IT architecture, consulting, for the purpose of structural improvement)
maxon IT app development and testing
Country of data retention – Switzerland

In principle, we store your data for as long as this is necessary to provide our online offer and the associated services or we have a legitimate interest in further storage. In all other cases, we delete your personal data with the exception of data that we must continue to store to fulfill legal obligations, e.g. B. we are obliged due to tax and commercial law retention periods, documents such. B. to keep contracts and invoices for a certain period of time.

4 security

We take all necessary technical and organizational measures to ensure an appropriate level of protection and to protect your data managed by us, in particular against the risks of unintentional or unlawful destruction, manipulation, loss, alteration or unauthorized disclosure or unauthorized access. Our security measures are constantly being improved in line with technological developments.

5 Rights of Users

To assert your rights, please use the information in section 1 "Responsible body". Please make sure that we can clearly identify you personally.

5.1 Right to information and access

You have the right to receive information from us about the processing of your data. To this end, you can assert a right to information in relation to the personal data that we process from you.

5.2 Right to rectification and erasure

You can request us to correct incorrect data and, insofar as the legal requirements are met, to complete or delete your data.

5.3 Right of removal and objection

If we process data on the basis of a legitimate interest (Art. 6 Para. 1 lit. f EU-DSGVO), as set out in this data protection notice, you have the right to object to this processing at any time.

5.4 Right of withdrawal for consents

If you have given us your consent to the processing of your data, you can revoke this at any time with effect for the future.
This does not affect the lawfulness of the processing of your data until you withdraw your consent. Please note that if you revoke your consent, certain services cannot be provided for technical reasons, as these require the processing of personal data. This does not apply to declarations of revocation in relation to the receipt of electronic advertising.

5.5 Right of appeal to the supervisory authority

You have the right to lodge a complaint with a data protection supervisory authority. You can contact the data protection supervisory authority responsible for your place of residence.

6 Changes to this Privacy Notice

We reserve the right to change our security and data protection measures if this is necessary due to technical developments. In these cases, we will also adapt our information on data protection accordingly. Therefore, please note the current version of the data protection information.

Status: 04.08.2022