Who We Are
This Policy provides you with the necessary information regarding your rights and our obligations, and explains how, why and when we process your personal data. Our general principle is to collect only the information that is necessary to provide you with full functionality of our products and services.
BroxMe Technology is a company located in Holding no #778 Jamalpur pouroshova , Jamalpur , Bangladesh and acts as the data controller when processing your data.
What We Consider “Personal Information”
We follow EU’s General Data Protection Regulation (“GDPR”) which defines personal data as: “…any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”. When we use terms “personal data” or “personal information”, we mean exactly that.
How We Collect Personal Data
There are several ways how we may get your Personal Data:
When you visit our website broxme.com and its subdomains (“Website”). Learn more about what exactly and how is collected and how you can manage it from the BroxMe Technology’ privacy notice;
When you use our products. You can find the full list of Personal Data collected on a privacy notice page dedicated to the product you use.
What Personal Data We Collect
Data we collect includes no more than is crucial to provide full functionality of BroxMe products, websites and services. We do not collect anything for tracking purposes and take all necessary technical, administrative and physical measures to protect the information we get.
In-depth breakdowns of what Personal Data is getting acquired for the Website and each separate BroxMe product are present in the specific product-related and Website-related privacy notices.
How We Use Your Personal Data
Your privacy is the highest concern for us. We take it very seriously and we never disclose, share or sell your data, unless we have your consent or required to do so by law. The only purpose of collecting and storing your Personal Data is to provide you with our products and services at their full potential.
We retain Personal Data for as long as necessary to continue providing you with these products and services, or until you revoke your consent to share this information.
Our VPN Service
Applying the data minimization principle, we collect for this service only randomly generated or hashed user and device IDs, IP addresses and randomly generated tokens to establish VPN connection for the sole purpose of providing the VPN service. For this service, we use Pango as data processor who processes data on behalf of BroxMe Technology in accordance with BroxMe’s instructions and for the sole purpose of providing VPN services to users.
You have the following rights when it comes to Personal Data:
Export all Personal Data that we hold about you to a local file from the BroxMe Account on broxme.com;
Request information about what data about you we store and for how long, and if we didn’t collect it directly from you, information about the source;
Request to correct any incomplete or inaccurate data about you. We will do so as quickly as possible, unless there is a valid reason not to, in which case you will be notified;
Delete all your Personal Data.
You can do this at will via BroxMe Account, or by sending a request to [email protected] In the latter case, we may ask you to verify your identity before fulfilling the request.
If you disagree with our Policy or any of its parts, you have the right to lodge a complaint with your local data protection authority.
As stated in our keynote, your privacy is the highest concern for us. We make every possible effort to protect you and your Personal Data from unauthorized access, alteration, disclosure or destruction. We implement and maintain the following technical and security measures:
System Access Controls: We take reasonable measures to prevent Personal Data from being used without authorization. These controls shall vary based on the nature of the processing undertaken and may include, among other controls, authentication via passwords and/or two-factor authentication, documented authorization processes, documented change management processes and/or logging of access on several levels.
Data Access Controls: We take reasonable measures to ensure that Personal Data is accessible and manageable only by properly authorized staff. Direct database query access is restricted and application access rights are established and enforced to ensure that persons entitled to use a data processing system only have access to the Personal Data to which they have privilege of access; and that personal data cannot be read, copied, modified or removed without authorization in the course of processing.
Transmission Controls: We take reasonable measures to ensure that it is possible to check and establish to which entities the transfer of personal data by means of data transmission facilities is envisaged so personal data cannot be read, copied, modified or removed without authorization during electronic transmission or transport.
Input Controls: We take reasonable measures to make it possible to check and establish whether and by whom personal data has been entered into data processing systems, modified or removed.
Data Backup: Back-ups of the databases are made on a regular basis, are secured, and encrypted to ensure that personal data is protected against accidental destruction or loss when hosted by us.
Logical Separation: Personal Data is logically segregated on our systems to ensure that Personal Data that is collected for different purposes can be processed separately.
Consequences of Not Providing Your Personal Data
You are not obligated to provide your Personal Data to us. However, as this information is required for us to provide you with our services or respond to your enquiries, we will not be able to offer some or all our services without it.
To the extent not prohibited by applicable law, we do not allow use of our Services, Products and Website by anyone younger than 13 years old. If you learn that anyone younger than 13 has unlawfully provided us with Personal Data, please contact us and we will take steps to delete such information.