loader image
PRIVACY POLICY
GET IN TOUCH

BAMTEC® – Solution

BAMTEC® – Advantages

BAMTEC® – Partners and network

News

Downloads

About us

Contact

BAMTEC® – Solution

BAMTEC® – Advantages

BAMTEC® – Partners and network

News

Downloads

About us

Contact

GET IN TOUCH

Privacy Policy

A) General Information

BAM AG (hereinafter also referred to as «we», «us», «company») collects and processes personal data relating to you or other persons (e.g. work colleagues, family members; «third parties»). The term «data» is synonymous with «personal data» or «personally identifiable information». The terms «processing» and «handling» are used interchangeably.

In this privacy policy, we describe how we process your data when you use https://www.bamtec.com/ (hereinafter referred to as the «website»), purchase our services or products, are otherwise in a contractual relationship with us, visit our social media channels, communicate with us or otherwise interact with us. This privacy policy may be supplemented by other documents such as contractual terms and conditions or additional specific privacy policies.

If you disclose data from third parties to us, we assume that you are authorised to do so and that this data is correct. By transmitting data about third parties, you confirm this and ensure that these third parties have been informed about this privacy policy. Our own information obligations under the applicable data protection laws will remain unaffected by this.

The processing of your personal data is governed in principle by the Swiss Federal Act on Data Protection (FADP) and the Data Protection Ordinance (DPO). In some cases, for example if you access our website from a member state of the European Union (EU) or the European Economic Area (EEA), the EU General Data Protection Regulation (GDPR) and, where applicable, other national laws of your country may also apply. Where specific reference is made to an article of the GDPR, this refers exclusively to the processing of data of persons residing in the EU or the EEA.

B) Responsible Party / Data Protection Officer / Data Protection Advisor

In accordance with data protection law, except where otherwise stated, the following party is responsible for the data processing described in this privacy policy of BAM AG:

BAM AG (CHE-102.247.440.)
Franz Häussler
Neugasse 43
9000 St. Gallen SG
Switzerland
Tel.: +41 71 222 20 61
E-Mail: info@bamtec.com
Website: https://www.bamtec.com/

We have appointed the following additional data protection officers:

– Data protection officer in the EU in accordance with Art. 27 GDPR:

Häussler Innovation GmbH
Mozartstrasse 31
87435 Kempten
Germany
Tel.: +49 831 521 73 11
Email: info@bamtec.com

C) Categories of Processed Data

We primarily process personal data that you provide to us, that we collect when operating our website, our social media channels, at trade fairs or other events, as well as personal data from publicly available sources, in particular company websites. We may also receive personal data from third parties. The personal data processed may fall into the following categories:

  1. technical data (cookie ID, IP address, etc.);
  2. communication details (telephone number, email address, etc.);
  3. master data (name, address, date of birth, etc.);
  4. contract details (contractual services to be provided, contract duration, etc.);
  5. behavioural and preference data (website usage, selection of products and services, etc.);
  6. data relating to projects and other assignments;
  7. particularly sensitive personal data or special categories of personal data (for example, biometric data, health information etc.);
  8. other data (photos, videos, audio recordings, etc.).

D) Basis for Data Processing

Whenever we ask for your consent for specific processing (e.g. for the processing of particularly sensitive personal data), we will inform you separately about the relevant purposes of the processing. You can revoke your consent at any time by sending an email to: info@bamtec.com with effect for the future.

Where we do not ask for your consent, we process your personal data either because the processing is necessary for the initiation or performance of a contract with you (Art. 6(1)(b) GDPR) or because the processing is necessary for the purposes of our or third parties’ legitimate interests (Art. 6(1)(f) GDPR), provided that your interests or fundamental rights and freedoms do not override those interests. In particular, this applies where the processing is required to pursue the purposes described below and to implement appropriate measures.

If we receive particularly sensitive data, we may also process your data on other legal grounds, e.g. in the event of disputes arising from the need to process data for a possible legal proceeding or to enforce or defend legal claims.

E) Purposes of Data Processing

We process your data in connection with communication with you and for the establishment, management and execution of contractual relationships. We may also process data for marketing purposes, to assert legal claims, to defend ourselves in legal disputes, for relationship management, market research and product development, and to comply with laws, directives and recommendations from authorities and also to comply with internal regulations. The legal basis for processing is Art. 6(1)(f) GDPR. Where necessary and legally permissible, we process your data beyond the actual contractual purposes in order to fulfil legal obligations.

a) Use of our Website

1. Logfiles

When you visit our website, we automatically collect general technical visitor information in so-called log files. The following information may be collected: the browsers and versions used, the operating system used by the accessing system, the website from which an accessing system reaches our website, the sub-websites that are accessed on our website, the date and time of access to our website, the IP address of the device used to visit the website, the Internet service provider of the accessing system and other similar information that may be used to avert attacks on our systems.

These log files are collected and processed for the purpose of enabling the use of our website (connection establishment), ensuring and increasing the security and stability of our systems on a permanent basis, enabling the optimisation of our Internet offering, and for internal statistical purposes. The legal basis for data processing is Article 6(1)(f) GDPR.

2. Newsletter

You can subscribe to our newsletter via our website. We process the data collected in this process in order to send you our newsletter with information about us, our services, general developments in the industry and other news. You can unsubscribe from the newsletter at any time by sending an email to info@bamtec.com or by clicking the ‘Unsubscribe’ button in the newsletter.

3. Contact Form, Chat and Email Contact

You can contact us via the contact form, chat or email. We process the data collected in this way in order to review your enquiry, contact you and, for example, arrange an appointment or send you offers for our products and services. The provision of further information – in particular the content of the request – is expressly voluntary and subject to your consent in the case of general enquiries, Art. 6(1)(a) GDPR, or in the case of (pre-)contractual enquiries on the basis of Art. 6(1)(b) GDPR. Insofar as this involves information on communication channels (e.g. email address, telephone number), you also consent to us contacting you via this communication channel in order to respond to your enquiry. Your data, which we have received in the course of contacting you, will be deleted as soon as it is no longer required for the purpose for which it was collected, your enquiry has been fully processed and no further communication with you is necessary or desired by you. Please note that in the case of (pre-)contractual enquiries, we may be subject to statutory retention obligations and may only be able to delete your data after these have expired.

4. Cookies

Cookies are small units of information that can be used to uniquely identify your browser and store additional information such as user settings. The legal basis for processing is Art. 6(1)(f) GDPR. We use the following cookies:

  • Technically necessary cookies: These cookies are essential for the functioning of our website and cannot be disabled in our systems.
  • Functional cookies: These cookies enable the provision of enhanced features and personalisation. They may be set by us or by third parties whose services we use on our website.
  • Analytical cookies: These cookies enable us to count visits and identify traffic sources in order to determine and improve the performance of our website.
  • Marketing cookies: These cookies and other tracking technologies enable us to show you personalised advertising.

You can set your browser in the respective browser settings so that cookies are automatically blocked. However, this may result in some areas of the website not functioning.

We will inform you about cookies and similar technologies when you first visit our website and offer you the option of accessing and adjusting your current cookie settings at any time on our website. The legal basis for processing is Art. 6(1)(a) GDPR.

5. Tracking and Analysis Tools

We use various technical systems, mainly from third-party providers such as Google Analytics, CleverReach, HubSpot, Surfe or Mailchimp, to measure and evaluate the use of our website and our newsletter. We process the data collected for the purpose of designing our website and newsletter in line with requirements and continuously optimising them. These tracking and analysis tools use cookies and similar technologies; please refer to the section on cookies for further information on their use on our website.

It is possible that third-party providers may use the data for their own purposes to draw conclusions about your identity, create personal profiles and link this data to any user accounts you may have. If you consent to the use of the relevant services and their cookies, you explicitly agree to such processing, which may also include the transfer of personal data (in particular usage data relating to the website and app, device information and individual IDs) to the USA and other countries.

b) Pages on Social Networks

We use social networks and have our own pages on LinkedIn, XING and YouTube. We use our social network pages to share information about ourselves, our offerings and other news. We also use these pages to communicate with you and third parties. We use personal data from followers on LinkedIn, such as profile information and interactions, for business and marketing purposes, as described in this privacy policy. The data collected in this process may be transferred to our customer relationship management (CRM) system, where it may be further processed and maintained for the aforementioned purposes.

When you visit our pages in social networks or interact with us, we receive data about you. We process this data for communication, marketing and market research purposes. We may further process content that you yourself have published. The legal basis for processing is Art. 6(1)(f) GDPR. For further information on how the platform operators process data, please refer to the platforms’ privacy policies. There you will also find information about the countries in which they process your data, your rights to information, erasure and other rights of data subjects, and how you can exercise these rights or obtain further information.

We use plugins. When you click on a link to one of our pages on social networks, a direct connection is established between your browser and the server of the social network in question. This enables us to offer certain functions on the pages.

c) Contractual Relationships with Customers, Suppliers and other Business Partners

To fulfil our contractual obligations, we process existing data (such as names, addresses and contact details) and contract data (such as services used, names and contact details of designated points of contact and payment information) of customers, suppliers and other business partners in accordance with Art. 6(1)(b) GDPR, including for invoicing and communication purposes.

d) Data Collection at Physical Events

During physical events such as trade fairs or other events, we collect personal data (e.g. name, email address, telephone number) that is provided to us through the exchange of business cards, the completion of forms or in personal conversations. The data is used to establish contact, follow up on the event and, if necessary, for marketing purposes. Data subjects concerned are informed of their rights under the Swiss Federal Act on Data Protection (DSG) and, where applicable, the EU General Data Protection Regulation (GDPR), and may object to the use of their data at any time.

F) Profiling and Automated Decision-Making

We may automatically evaluate certain of your personal characteristics («profiling») when we want to determine preference data, but also to identify abuse and security risks, perform statistical analyses or for operational planning purposes. For the same purposes, we may also create profiles, i.e. we may combine behavioural and preference data, as well as master and contract data and technical data assigned to you, in order to better understand you as a person with your different interests and other characteristics.

In certain situations, for reasons of efficiency and consistency in decision-making processes, it may be necessary for us to automate relevant discretionary decisions with legal effects or potentially significant disadvantages («automated individual decisions»). In this case, we will inform you accordingly and take the measures required by applicable law.

G) Sharing of Personal Data with Third Parties

We treat your personal data confidentially and only share it with third parties listed in this privacy policy. This sharing takes place in connection with our contracts, the website, our services and products, our legal obligations or to protect our legitimate interests, as well as for the purposes listed under letter E) above.

We use external service providers for various administrative tasks. These external service providers may have access to your personal data due to their activities, but they are contractually obliged to treat your personal data as confidential at all times. To this end, we have concluded contracts with them for commissioned data processing, where necessary.

  1. trustees in connection with bookkeeping and the preparation and dispatch of invoices;
  2. tax advisors, if necessary for the preparation of tax returns;
  3. logistics service providers in connection with the dispatch of our products;
  4. banks and insurance companies, if this is necessary in connection with our contracts;
  5. our group companies;
  6. IT service providers who provide the software programmes and services we use and who manage the website and related matters (e.g. web hosts, newsletter providers, tracking and analysis tool providers);
  7. debt collection agencies, if we need to enforce our claims through legal proceedings;
  8. law firms, especially in the event of a dispute;
  9. credit card acquirers, if you use our paid services;
  10. social media companies, if you click on a link to one of our social media profiles via plugins;
  11. public authorities, courts and other authorities, if we are legally obliged or entitled to do so, or if this appears necessary to protect our interests;
  12. project participants such as architects, subcontractors, suppliers and clients.

We will only share your data with the third parties listed for these purposes if:

  • you have given your express consent in accordance with Art. 6(1)(a) and, where applicable, Art. 9(2)(a) GDPR for particularly sensitive data;
  • the disclosure is necessary for the establishment and performance of a contractual relationship pursuant to Article 6(1)(b) and, where applicable, Article 9(2)(b) of the GDPR;
  • there is a legal obligation to share the data in accordance with Article 6(1)(c) of the GDPR;
  • the disclosure is necessary in accordance with Article 6(1)(f) of the GDPR to safeguard our legitimate interests and/or those of third parties, and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing the data.

H) Data Sharing with and Data Transfer to Parties Abroad

We are also entitled to transfer your personal data to companies abroad, provided that this is done for the purpose of data processing in accordance with section E) above. We disclose your personal data to the following countries: EU and USA. If the country in question is located outside Switzerland, the EU or the EEA and does not guarantee adequate legal data protection, we contractually oblige the recipient to comply with the applicable data protection regulations. To this end, we use the European Commission’s standard contractual clauses, which are available here: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?

I) Your Rights

You have the right to assert your data protection rights at any time and, upon request, to receive information about whether we process the data in question. You also have the right to request that we return the data you have provided to us in a common format (right to data portability). The legal basis for this is Art. 15 (3) GDPR. Upon request, we will also transfer the data to a third party of your choice.

In addition, you have the right to have inaccurate data corrected and, within the scope of the GDPR, to have your data completed, as well as the right to have your personal data deleted at any time, provided that there is no legal obligation to retain it or a legal basis that allows us to process the data. According to Art. 18 GDPR, you have the right to request the restriction of the processing of your data.

The data subject has the right to object to the processing of personal data on grounds relating to their particular situation. This general right to object applies to all processing purposes described in this privacy policy that are processed on the basis of our legitimate interest. If we process your data for the purpose of direct marketing, you have the right to object at any time in accordance with Art. 21(2) GDPR.

Furthermore, you have the right to enforce your claims in court or to lodge a complaint with the competent data protection authority regarding the processing of your personal data. You can do this at the data protection authority at your place of residence, workplace or the place of the alleged data protection violation. The competent data protection authority for Switzerland is the Federal Data Protection and Information Commissioner: https://www.edoeb.admin.ch/edoeb/de/home.html.

In the case of data processing operations to which you have consented, you may revoke your consent to the processing of personal data at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation. You can contact us for the aforementioned purposes via the email address info@bamtec.com. We may require appropriate proof of your identity in order to process your requests.

J) Data Security

We use appropriate technical and organisational security measures to protect your personal data stored with us against accidental, unlawful or unauthorised manipulation, deletion, alteration, disclosure or use, partial or complete loss, and against unauthorised access by third parties. Our security measures are continuously adapted and improved in line with technological developments. We assume no liability for data loss or for data being accessed, disclosed, or used by third parties.

We also take internal data protection very seriously. Our employees and the service providers we commission are bound by confidentiality agreements and are required to comply with data protection regulations.

As a registered user, you can only access your user account after entering your personal password. You should always treat your access data as confidential and log out of your user account when you have finished communicating with us, especially if the device you are using is not used exclusively by you.

K) Duration of Data Storage

We only store your personal data for as long as is legally required or necessary for the purpose of processing. In the case of analyses, we store your data until the analysis is complete. We store contract data for longer, namely at least as long as the contractual relationship exists and at most as long as the limitation periods for possible claims by us run or statutory or contractual retention obligations are prescribed. Retention obligations that require us to store data arise from accounting regulations and tax regulations. According to these regulations, business communications, contracts and accounting documents must be retained for up to 10 years. If we no longer need this data to perform services for you, the data will be blocked. This means that the data may then only be used for accounting and tax purposes.

L) External Links

Our website contains links to external sites. We are not responsible for their content or data protection practices. We recommend that you carefully read the respective privacy policies on the linked websites.

M) Current Version and Changes

We reserve the right to update and amend this privacy policy at any time without prior notice. The most recent version published on our website will apply. We therefore recommend that you visit our website regularly to find out about any updates that may have been made.

BAM AG, December 2025