Privacy Statement

BTC AG Privacy Statement

1. Declaration by BTC AG on data protection

Compliance with the legal requirements for data protection and information security of the data are a high priority for BTC AG. The protection of personal data is of particular importance in every business process and in IT operations.

The following explains which data is processed under which conditions when you visit our website. However, the declaration does not apply to the websites of other companies that contain a link to this BTC AG website or to which our website is linked.

Responsible for the website:
Communication, Marketing & Sales Services
Escherweg 5
26121 Oldenburg
Tel .: +49 441 3612-0

2 Overview of data processing when visiting the website

When you visit our website, no reference can be made to you personally; This means that no profile of your usage behavior is created that can be used to trace your person. In our view, your identity therefore remains anonymous.

When you visit our website, the connection established by your browser is logged with so-called technical data, which has the following content:

  • IP address (volatile storage)
  • Domain name (provider-dependent) / name of Internet provider
  • Date and time of the request
  • The content accessed on our website
  • Operating system and browser software used
  • Possibly. the website that referred to our website via a link
  • The URL from which consent was sent by the CookieBOT
  • An anonymous, random and encrypted key from the CookieBOT
  • The status of your anonymous consent, which we use as purely technical proof of consent (from the CookieBOT)
  • Personal data with which you reveal your identity to us are collected as soon as you use our contact form, e.g. to register for an event.

3 log data

Log data on the web servers are processed to ensure our system security - this includes e.g. troubleshooting on our technical systems, programming our website, averting danger and, if necessary, making it available for criminal prosecution by investigating authorities in the event of a criminal act on our website, e.g. by a hacker attack. The log data will be deleted after 7 days.

The data processing takes place on the basis of Art. 6 Abs. 1 lit. f General Data Protection Regulation (GDPR).

4 Contacting and registration for events

If you contact us using the contact form or register for an event, the contact details you have provided will be stored for the purpose of processing the request and for answering possible follow-up questions. While making contact you can decide whether and about which of our service offers you would like to be informed in the future.

Our range of services is basically aimed at business customers. As a rule, this is business contact data that has been provided to a person by their respective employer. We reserve the right to delete contact details if we discover that this is not the case.

The following data is collected by BTC AG when contacting us and when registering for an event according to relevance, mandatory fields are marked accordingly in the form and include:

  • Salutation
  • First name
  • Surname
  • Address
  • E-mail address
  • Telephone
  • Function
  • Companies
  • Corporate Industry
  • Company size
  • Issue
The data will be processed for the purpose of processing and answering your request. The data will be deleted depending on your request and the legal requirements of the GDPR - especially if you ask us to do so (see your rights section).
The data processing takes place on the basis of Art. 6 Para. 1 lit. a GDPR.

5 newsletters

You have the option of registering for the free newsletter on our website. We point out that our range of services is generally aimed at existing and potential business customers and not at private individuals. We therefore reserve the right to prevent inclusion in the target group.
For an effective registration, we need your legally valid consent. In order to check that the registration was actually carried out by the owner of the email address, you will receive a confirmation email during the registration process with a link that you must click to complete the registration.
The data you have provided are listed in this e-mail so that you can check them and cancel the registration if necessary.
There is also a link to the present data protection declaration on our website so that you can find out more about data protection.
To prove your consent, we log the registration of the newsletter subscription, the sending of the confirmation email and the confirmation by actively calling up the link within this email.

You have the option to object to the sending of the newsletter at any time by clicking on the clearly visible link at the end of the respective newsletter. As a result, you will not receive any further newsletters in the future unless you ask us to do so again.
In the case of interested parties without a contractual relationship, data processing takes place on the basis of Art. 6 Para. 1 lit. a GDPR.
Sending newsletters to existing customers can be based on Section 7 Paragraph 3 UWG in conjunction with Art. 6 Paragraph 1 lit. f GDPR.

6 cookies

Our website uses cookie technology to provide you with convenient access to our information. We also have the opportunity to continuously optimize our website in your interest.
Cookies are small text files that are generated by a web server and stored in your web browser. In principle, you can prevent the storage of cookies by setting your browser software accordingly.
All technical measures that we use on our website to conduct marketing and advertising as well as to give you an optimal surfing experience are monitored by a so-called CookieBOT.
This in turn uses cookies itself to monitor and control the status of your consent to the use of corresponding technologies.
All of the techniques we use are shown in detail below (CookieBOT table). The information is automatically provided by the CookieBOT and documents the current status (see date).
Personal identification is not possible based on the information stored in the cookies.
The data processing takes place on the basis. Art. 6 para. 1 lit. a GDPR.

7 social media

Our website does not use any social media plugins. It is only a matter of redirecting to the relevant websites. No data is transmitted to Facebook, Twitter, Xing or LinkedIn etc. from our website. As soon as you use this website, the provider processes the data in accordance with the respective data protection declaration and terms of use.

8 Use of YouTube Videos

Our website provides links to YouTube videos. If you click on this, the video starts in your browser and processes the data in accordance with YouTube's privacy policy and terms of use. No data is transmitted to YouTube from our website.
The data processing for the use of YouTube videos takes place in accordance with. Art. 6 para. 1 lit. a GDPR.

9 Analysis of our website

9.1 Wiredminds
Our website uses the counting pixel technology of Wiredminds GmbH, Wiredminds GmbH, Lindenspürstrasse 32, 70176 Stuttgart ( for statistical analysis of website usage.
Technical data is processed, from which an anonymous usage profile is created.
No personal data is saved from you. IP addresses are anonymized immediately after collection by deleting the last number block.
Data collection, processing and storage can be objected to at any time with future effect.
The data processing for the use of Wiredminds takes place in accordance with. Art. 6 para. 1 lit. a GDPR.

9.2 Google Analytics
This website uses Google Analytics from Google Inc. (Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA).
Google Analytics uses cookies, which enable an analysis of the use of our website. The technical data are transmitted to Google in the USA and processed. We use the analysis services anonymously (without using an advertising ID, user ID or IP address). We use the addition “gat._anonymizelp” for this purpose. This addition will shorten the Google IP address.
Google evaluates the technical data on our behalf (agreement on data protection Article 32 GDPR) in order to create reports on website activity. The cookies are automatically deleted after a period of 14 months.
You can object to the use of cookies by using the revocation link in the CookieBOT (see below) and then updating the website in the browser or editing your browser cache accordingly and deleting the relevant cookies.
The data processing for the use of Google Analytics takes place in accordance with. Art. 6 para. 1 lit. a GDPR.

10 Google Ads

If you reached our website via a Google ad placed by us, Google will store cookies in your web browser. We use the anonymous information from these cookies to receive statistical evaluations, e.g. how many visitors came to our website via a Google ad and whether our advertising measure was successful.
Google processes the data in accordance with the privacy policy and terms of use on their website.

11 data transmission

BTC AG only transmits data to processors within the legal framework and following instructions from BTC AG in accordance with Art. 28 GDPR. BTC AG is responsible for data processing when order processing is used.
In certain cases, we are fundamentally entitled to transfer existing data to official bodies (e.g. damage prevention), we are obliged to do so to meet legal requirements (e.g. criminal prosecution).

12 Existence of automated decision-making in individual cases

We do not use any automated decision-making procedures in accordance with Article 22 GDPR. We thus preserve your right not to be subjected to a decision based solely on automated processing - including profiling - which has legal effects on you or which significantly affects you in a similar manner.

13 Applicant Selection Process

In the applicant selection process (recruiting), we collect, process and use personal information to process the application. For this, an informed consent is required, which is given during the application process. Consent applicant selection process

14 SAP App Center: Provided SAP Fiori Apps

BTC My Timesheet

The data protection relevance is not given from the provider's point of view:
The Fiori app is implemented by the company in its own SAP systems, tested in advance (function, security, interfaces) and operated independently
The operator is the responsible body according to. GDPR
Time recording systems are fundamentally relevant to data protection
The data integrity and data security are inherently relevant for the software development processes
The quality assurance processes are effective and can be proven
The security architecture of SAP Fiori takes effect and significantly ensures data security
The app does not collect any data that is transmitted to BTC (no metadata, no cookies, etc.)
The app is provided without any support services


15 Security Measures

BTC uses extensive technical and organizational security measures to protect data against misuse, accidental or deliberate manipulation or against access by unauthorized persons. Our security procedures are continuously improved in line with technological developments.

16 Your rights

When processing personal data, the GDPR grants you as a website user the following rights:

Right to information (Art. 15 GDPR):
You have the right to request confirmation as to whether personal data relating to you is being processed; If this is the case, you have a right to information about this personal data and the information listed in detail in Art. 15 GDPR.

Right to correction and deletion (Art. 16 and 17 GDPR):
You have the right to immediately request the correction of incorrect personal data / information relating to you and, if necessary, the completion of incomplete personal data / information.
You also have the right to request that personal data relating to you be deleted immediately if one of the reasons listed in Art. 17 GDPR applies, e.g. B. if the data is no longer required for the purposes pursued.

Right to restriction of processing (Art. 18 GDPR):
You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR is met, e.g. B. if you have objected to the processing, for the duration of a possible review.

Right to data portability (Art. 20 GDPR):
In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive your personal data in a structured, common and machine-readable format or to request the transfer of this data to a third party.

Right of objection (Art. 21 GDPR):
Are data based on Art. 6 Para. 1 S. 1 lit. f collected (data processing to safeguard legitimate interests), you have the right to object to processing at any time for reasons that arise from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling reasons worthy of protection for the processing that outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims .

Right of objection (Art. 7 GDPR):
You have the right to withdraw your consent to data processing on our website at any time. Revoking your consent does not affect the legality of the processing carried out on the basis of your consent up to the point of revocation. You were informed of this before you gave your consent via the link to this data protection declaration.

Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
You have the right to complain to a supervisory authority if you are of the opinion that the processing of the data concerning you violates data protection regulations. The right to lodge a complaint can in particular be asserted with a supervisory authority in the member state of your place of residence, your place of work or the place of the alleged violation. Responsible is the supervisory authority for data protection in Lower Saxony (state commissioner for data protection in Lower Saxony).
You also have the right to contact the data protection officer of BTC AG directly in this regard.

17 Company data protection officer:

Data protection officer
Escherweg 5
26121 Oldenburg
Tel .: +49 441 3612-0
Fax: +49 441 3612-3999