Mai 2019



Privacy Policy for the use of the Secure4Home Platform



To use our smart home system, we provide you with our web interface https://eu.bphomeconnect.com or our mobile app "Secure4Home" (collectively "our services"). This allows you to connect your chosen display device to our server via the Internet, to display live broadcasts, to signal alarms and alarms, to arm or disarm home security systems, to control home automation devices and video and image data save. Below we inform you about the processing of personal data when using our web interface / our Secure4Home APP and other third-party software. Personal data is any data relating to an identified or identifiable natural person (hereinafter the "data subject"). This includes your name, address or e-mail address.

  1. Responsible for data processing and data protection officer

Responsible acc. Article 4 (7) of the EU General Data Protection Regulation (GDPR) is the



Security Brand Pro GmbH

Munich District Court HRB 222793

Mondstrasse 2-4, 85622 Feldkirchen-Munich

Germany

Managing Director: Manuel Paul

E-Mail: contact@blaupunkt-sc.com

Website: https://www.blaupunkt.com/en/nc/products/security-systems/



Our data protection officer can be reached by e-mail at datenschutz@blaupunkt-sc.com or by post at:



Shobha Fitzke

personal / confidential

c/o intersoft consulting services AG

Beim Strohhause 17

20097 Hamburg

  1. Collection of personal data when using our services

  1. Download of the app

When downloading the Secure4Home APP, the required information is transferred to the App Store, in particular the username, e-mail address and customer number of your account, time of download, payment information and the individual device code. We have no influence on this data collection and are not responsible for it. We only process the data as far as necessary for downloading the mobile app to your mobile device.

For further information please refer to the privacy policy of the App Store:

iTunes: https://www.apple.com/legal/privacy/en-ww/

Google: https://policies.google.com/privacy?hl=en&gl=en

  1. Use of the mobile app

Each time our Secure4Home APP is called, our system automatically collects data and information from the calling device system that is technically required to enable the Secure4Home APP to run on iOS or Android devices, to ensure the functionality of the Secure4Home APP, and to ensure the stability and security of our to ensure information technology systems. The legal basis is Art. 6 para. 1 lit. f DSGVO. The data is stored for 7 days in the log files of our system and then deleted. A storage of this data together with other personal data of the user does not take place.



The following data is collected here:

  • The IP address of the user

  • MAC address for Wi-Fi use

  • Serial number of the camera

  • Date and time of access

  • Language and version of the system

  • Software Version

  • Device Model

  • Equipment Identity

  • Data of the acceleration sensor

  1. Use of our web interface

If you merely visit our web interface, do not register or otherwise provide us with information, we will only collect the data that your browser automatically transmits to the server. These are temporarily stored on the server.



The following data is collected here:

Information about the browser type and version used

The operating system of the user

The Internet service provider of the user

The IP address of the user

Access Status / HTTP status code

Date and time of access

Time zone difference to Greenwich Mean Time (GMT)

Websites from which the user's system accesses our website

Websites accessed by the user's system through our website



The data is technically needed to show you the web interface and to ensure its security. We evaluate this data solely for statistical purposes in order to resolve possible technical errors and, if necessary, to identify and ward off attacks and security risks. A storage of this data together with other personal data of the user does not take place.



The legal basis for the temporary storage of data and log files is our legitimate interest in the security and stability of our website (Article 6 (1) (f) GDPR). The interest of the user is taken into account by the fact that the data are not used for his identification.

  1. Data collection when registering for our services

For the provision of our services, we ask you to register on our web interface or in our app by specifying your e-mail address, a user-defined password and a user name as well as the MAC address of the system panel. We require this mandatory information in order to provide you with technical updates and support for our services in order to ensure their functionality, as well as to authenticate you at login and to verify your authorization to manage the user account. The legal basis for this are Art. 6 (1) lit. b and f DSGVO.



Insofar as we request further information during registration, these are always marked as optional. A notification of this information is expressly made with your consent, Art. 6 para. 1 lit. a DSGVO and serves to address you personally. Of course, you can revoke this consent at any time with effect for the future.



If you no longer wish to use our services, you can delete the data from us under the conditions set out in para. I request contact details and uninstall the app in the case of APP use.



The disclosure of your data is neither contractually nor legally required. Without the mandatory information, the app is not or only to a limited extent available.



  1. Contact

If you contact us by e-mail, the information you provide will be stored by us to answer your request. A statement of this information is expressly provided on a voluntary basis with your consent, Article 6 paragraph 1 a DSGVO. As far as this information about communication channels (for example, e-mail address, telephone number), you also agree that we may also contact you via this communication channel to answer your request. Of course, you can revoke this consent at any time with effect for the future.

We delete the data that arises in this context after the storage is no longer required, or limit the processing if there are statutory retention requirements.

  1. Technical Newsletter

When registering for our web interface / our mobile app, it is possible to subscribe to a newsletter in which we inform you about our new products and offers.



To register for our newsletter, we use the so-called double opt-in procedure. This means that after you have registered, we will send you an e-mail to the e-mail address specified in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within [24 hours], your information will be blocked and automatically deleted after one month.



In addition, we store your IP addresses and times of registration and confirmation. The purpose of the procedure is to prove your registration and, if necessary, to clarify possible misuse of your personal data.



The only requirement for sending the newsletter is your e-mail address. The specification of additional, separately marked data is voluntary and will be used to address you personally. After your confirmation, we will save your e-mail address for the purpose of sending you the newsletter. The legal basis is Art. 6 para. 1 lit. a GDPR.



You can revoke your consent to the sending of the newsletter at any time and unsubscribe from the newsletter. You can declare the cancellation by clicking on the link provided in each newsletter e-mail or by contacting us via the above contact details.

The data will be stored until you revoke your consent to receive the newsletter.



  1. Data collection and storage of the smart home system

As part of our smart home system, the following data is collected depending on the selected functionality:

Picture and video material

Data from your smart home devices (for example, your panel ID, heating / lighting control data, information about security equipment used, system configuration data, photos and videos, energy consumption information)

If you use our premium package, this data will be stored on the server for a period of up to 90 days. Third parties can not see this data. If you use our technical support to change your settings, you may, with our prior consent, view the stored data for the period of access. In this case, you will be asked for permission in advance as part of the technical support access. The legal basis for granting access is your consent, Art. 6 para. 1 lit. a GDPR.

  1. Access to camera, microphone, USB, photos, videos etc. in case of using our mobile APP

When you start using our Secure4Home APP, we ask you for permission to access your camera and microphone in a pop-up so the camera can communicate with the device. If you do not grant the permission, you will not be able to access these features. However, you will not be able to use all features of the Secure4Home APP in this case.

If you allow access to this information, the Secure4Home APP will only access those features as necessary to provide the functionality. The legal basis for granting access is your consent, Art. 6 para. 1 lit. a GDPR. You can revoke the permission at any time in the settings of the Secure4Home APP.

We use encrypted SSL communication between the Q-Series alarm systems and our Web Interface or Secure4Home App.















Who can access the live stream or save videos and photos?

In order to access the live stream, recorded videos and photos or other data, the smart home system must be registered in our web interface or in the Secure4Home APP. To ensure that no unauthorized person can access the live stream or recorded videos and photos, the username and password of the Q-Series alarm system are required. An access by our technical support is only within the scope of the in. V. with your consent.

  1. Data transfer

We work with external IT service providers to assist us with the provision of our Web Interface / Secure4Home App through technical support and hosting services. This may involve the use of service providers located in third countries outside the European Union. In this case, we have taken specific measures to ensure that your personal data is processed in the third countries as safely as within the European Union. With service providers in third countries for which an adequate level of data protection has not been established, we conclude the standard data protection clauses provided by the Commission of the European Union.

If you have any further questions about the individual beneficiaries or the measures taken in third countries, please contact us at the points in sec. I specified contact data.



  1. Secure4Home Skill” with Amazon Alexa

Using the Secure4Home skill with an Amazon Alexa allows voice control of your SmartHome alarm system of the Blaupunkt Q series. Amazon Alexa is a software that analyzes, evaluates, and executes voice commands through Amazon platform. Amazon provides an interface that allows SBP to provide their own functions, so-called skills. This allows users to specifically connect and use their systems with Amazon voice control. For more information on how to process your personal information on Amazon Alexa, please visit Amazon.co.uk Privacy Policy at: https://www.amazon.co.uk/gp/help/customer/display.html/?nodeId=GA7E98TJFEJLYSFR .



The Secure4Home skill provides such functionality to allow some controls by voice at home. You will not be provided with this functionality unless you explicitly enable the Secure4Home skill in your Amazon account and your Blaupunkt Q-Series alarm and link your account to this skill. No account or personal data will be transmitted to Amazon. Only through this link, it is possible that certain commands are evaluated by Amazon and sent to your Blaupunkt Q-series alarm center for execution. When linking, only the information from your sensor list will be transferred to Amazon in order to activate or deactivate it by voice command. No further data from your Blaupunkt Smarthome alarm system will be stored in the skill or transferred to Amazon. The voice commands for arming and disarming must be explicitly activated by the user in the settings page of the Blaupunkt Q-Series Smarthome alarm system. If these are activated, an additional PIN is required for authentication. The legal basis for the data processing is the implementation of the user contract (article 6 paragraph 1 b DSGVO) as this function cannot be provided without the data processing described above.

  1. Secure4Home” with Google Assistant

Using Secure4Home with a Google Assistant allows voice control of your SmartHome alarm system of the Blaupunkt Q series. Google Assistant is a software that analyzes, evaluates, and executes voice commands through Google Assistant platform. Google provides an interface that allows SBP to provide their own functions, so-called apps. This allows users to specifically connect and use their systems with Google voice control. For more information about the collection, processing, and use of personal information on Google Assistant, please visit: : https://support.google.com/googlehome/answer/7072285?hl=en .

Google is solely responsible for the processing of your personal data as part of the language processing in the Assistant.

Secure4Home provides such functionality to allow some controls by voice at home. You will not be provided with this functionality unless you explicitly enable Secure4Home in your Google Account and Blaupunkt Q-Series Alarms and link your account to Secure4Home. No account or personal data will be transmitted to Google. Only through this link is it possible for certain commands to be evaluated by Google and sent to your Blaupunkt Q-Series alarm center for execution. When linking, only the information from your sensor list will be transmitted to Google in order to activate or deactivate it via voice command. No further data from your Blaupunkt Smarthome alarm system will be stored or transferred to Google. The voice commands for arming and disarming must be explicitly activated by the user in the settings page of the Blaupunkt Q-Series Smarthome alarm system. If these are activated, an additional PIN is required for authentication. The legal basis for the data processing is the implementation of the user contract (article 6 paragraph 1 b DSGVO) as this function can not be provided without the data processing described above.



  1. Rights of the person concerned

You have the following rights with respect to the personal data concerning you:



  1. General Rights

You have the right to access, rectification, erasure, restriction of processing, object to the processing and data portability.

If processing is based on your consent, you have the right to revoke it with effect for the future.

You can object to the use of your data for advertising by electronic mail at any time, without incurring other than the transmission costs according to the basic rates.













  1. Rights in the event of data processing on the basis of legitimate or public interests

Pursuant to Art. 21 para. 1 GDPR, you have the right to object to the processing of your personal data at any time on grounds relating to your particular situation, on the basis of Art. 6 para.1 lit. e GDPR (data processing in the public interest) or Article 6 para.1 lit. f GDPR (data processing to protect a legitimate interest), this also applies to profiling based on this provision.

In the event of your objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing is necessary for the establishment, exercise or defence of legal claims.



  1. Rights in the event of data processing for direct marketing purposes

If we process your personal data for direct marketing purposes, pursuant to Art. 21 para. 2 GDPR you have the right to object at any time to the processing of your personal data for the purpose of such advertising, this also applies to profiling insofar as it is associated with such direct marketing.

In the event of your objection to processing for direct marketing purposes, we will no longer process your personal data for these purposes.



  1. Rights to lodge a complaint with a supervisory authority

You also have the right to lodge a complaint with a data protection supervisory authority if you consider that the processing your personal data is contrary to data protection provisions.

  1. Change of Privacy Policy

We reserve the right to change this Privacy Policy at any time in accordance with applicable privacy laws. The current status is October 2018.



7


This website uses cookies

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Cookie Policy.