Language detected

Your browser language was detected.

Continue

Privacy Policy

1. Introduction

BOUNCEBUDS Fulfillment GROUP GmbH (“Bounce Buds Group,” “we,” “us,” or “our”) respects your privacy and is committed to protecting personal data in a transparent and responsible manner.

This Privacy Policy explains how we collect, use, store, disclose, and protect personal data when you visit our websites, use our customer portal, communicate with us, enter into business relationships with us, or otherwise interact with our services.

Our services operate internationally and may include fulfillment, logistics, warehousing, e-commerce operations, Amazon FBA preparation, pick & pack services, and related customer portal services. We process personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (“GDPR”).

2. Scope of This Policy

This Privacy Policy applies to personal data processed by Bounce Buds Group in connection with:

  • our website and online business presence;
  • our customer portal and related account functions;
  • fulfillment, logistics, warehouse, and e-commerce operations;
  • communications with clients, suppliers, and business partners;
  • operational records, shipping and delivery workflows, and account administration;
  • technical, security, and analytics systems used to support our services.

This Policy does not apply to third-party websites, services, or platforms that may be linked from our website or used by you independently. In such cases, the privacy practices of those third parties apply.

3. Information We Collect

We may collect and process the following categories of personal data:

Information you provide directly

  • name, company name, position, and contact details;
  • email address, telephone number, billing and correspondence information;
  • account login details for the customer portal;
  • uploaded operational files and documents, order details, shipping instructions, customs-related information, and operational files;
  • communications sent through forms, email, portal messages, or support channels.

Information collected automatically

  • IP address;
  • browser type, device type, operating system, and language settings;
  • session logs, login activity, access timestamps, and portal usage data;
  • cookies and similar tracking technologies;
  • website interaction data, including pages viewed and referring URLs;
  • security and diagnostic logs.

Information generated through operations

  • order and shipment records;
  • warehouse handling data;
  • picking, packing, preparation, dispatch, and inventory-related information;
  • customer portal activity and workflow data;
  • service performance and support records;
  • fraud prevention, authentication, and operational security logs.

Information from third parties

We may also receive personal data from:

  • business clients and their authorized users;
  • logistics, shipping, and payment-related service providers;
  • analytics and cloud service providers;
  • public sources or verification services where necessary for compliance or security purposes.

4. How We Use Information

We use personal data for the following purposes:

  • to provide and operate our fulfillment, logistics, warehousing, and related business services;
  • to manage customer portal accounts and authenticate users;
  • to process orders, shipments, returns, and operational requests;
  • to support Amazon FBA preparation, pick & pack, labeling, inventory handling, and workflow coordination;
  • to communicate with customers, partners, and authorized users;
  • to maintain operational records and service documentation;
  • to monitor security, prevent misuse, detect fraud, and protect our systems and users;
  • to analyze website and portal performance and improve our services;
  • to comply with legal obligations, contractual commitments, and regulatory requirements;
  • to support internal administration, invoicing, auditing, and reporting;
  • to manage and operate cloud-based systems and service infrastructure;
  • to support logistics and fulfillment operations across our international business structure.

We only use personal data where we have a lawful basis to do so, as set out in Section 14 below.

5. Customer Portal Security

Our customer portal may allow clients and authorized users to access service information, upload operational files and documents, manage operational requests, and review records related to their account.

For portal access, we may process:

  • account registration information;
  • login credentials and authentication data;
  • session logs;
  • device and IP address information;
  • activity records and access timestamps.

You are responsible for keeping your credentials confidential and for restricting access to authorized personnel only. Please notify us promptly if you suspect unauthorized access, misuse, or compromise of portal credentials.

We use authentication tools, access controls, and security logging to help protect the portal and related data. These measures are designed to safeguard both customer data and our operational systems.

6. Cookies and Tracking Technologies

We use cookies, pixels, analytics tools, and similar tracking technologies to support the operation of our website and customer portal.

These technologies may be used to:

  • enable core website and portal functionality;
  • remember user preferences and language settings;
  • measure traffic, usage, and performance;
  • support security and session management;
  • improve user experience and service quality.

Where required by applicable law, we will request consent for non-essential cookies and similar technologies. You may also control cookie settings through your browser or device settings. However, disabling certain cookies may affect website or portal functionality.

7. International Data Transfers

As an international business, we may transfer and access personal data across borders, including within the European Economic Area (“EEA”) and to countries outside the EEA.

Where personal data is transferred outside the EEA, we take appropriate safeguards to protect it in line with applicable data protection law. These safeguards may include:

  • adequacy decisions;
  • Standard Contractual Clauses;
  • additional technical and organizational measures;
  • transfer assessments where appropriate.

Certain operational services and warehouse infrastructures outside Germany may be provided through affiliated operational entities within the APEXX GLOBAL group structure.

By using our services, you acknowledge that your data may be processed in jurisdictions where our service providers, systems, or business operations are located.

8. Third-Party Service Providers

We may share personal data with trusted third-party service providers that help us deliver and support our services. These may include:

  • cloud infrastructure and hosting providers;
  • analytics and monitoring providers;
  • customer relationship and support tools;
  • logistics, shipping, freight, and delivery partners;
  • payment, billing, and invoicing providers;
  • IT, cybersecurity, and operational support vendors;
  • document management and productivity service providers;
  • professional advisors, auditors, and legal consultants where necessary.

These third parties are permitted to process personal data only for the purposes we specify and are expected to implement appropriate confidentiality and security measures.

We do not sell personal data.

9. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including:

  • providing services and managing customer relationships;
  • maintaining operational and warehouse records;
  • meeting legal, accounting, tax, and contractual obligations;
  • resolving disputes and enforcing agreements;
  • protecting against fraud, misuse, or security incidents.

Retention periods may vary depending on the type of data and the legal or business purpose involved. When personal data is no longer required, we will delete, anonymize, or archive it in accordance with applicable law and our internal retention policies.

10. User Rights

Depending on your relationship with us and applicable law, you may have the right to:

  • access your personal data;
  • request correction of inaccurate or incomplete data;
  • request deletion of your personal data;
  • object to certain processing activities;
  • request restriction of processing;
  • request data portability, where applicable;
  • withdraw consent where processing is based on consent;
  • lodge a complaint with a supervisory authority.

If you wish to exercise any of these rights, please contact us using the details in Section 16. We may need to verify your identity before responding.

11. GDPR Rights

Where the GDPR applies, you may have the following rights:

Right of access

You may request confirmation of whether we process your personal data and receive a copy of that data.

Right to rectification

You may request correction of inaccurate or incomplete personal data.

Right to erasure

You may request deletion of personal data where legal grounds for retention no longer exist.

Right to restriction of processing

You may request that we limit how we process your data in certain circumstances.

Right to data portability

You may request certain data in a structured, commonly used, machine-readable format where legally applicable.

Right to object

You may object to processing based on legitimate interests or to direct marketing, where applicable.

Right to withdraw consent

If processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.

Right to lodge a complaint

You may lodge a complaint with a data protection supervisory authority, particularly in the EEA country where you live, work, or where an issue occurred.

12. Data Security Measures

We use appropriate technical and organizational measures to protect personal data against unauthorized access, accidental loss, alteration, disclosure, or destruction.

These measures may include:

  • access controls and role-based permissions;
  • password protection and authentication procedures;
  • encrypted systems and secure communications where appropriate;
  • network and infrastructure security monitoring;
  • logging and incident detection;
  • backup and recovery procedures;
  • confidentiality obligations for personnel and contractors;
  • secure handling of uploaded operational files and documents;
  • controlled access to warehouse, logistics, and administrative systems;
  • protection of cloud-based systems and related operational environments.

While no system can guarantee absolute security, we continuously maintain and improve our safeguards to help protect personal data and operational systems.

13. Children’s Privacy

Our services are intended for business and professional use and are not directed to minors.

If we learn that we have collected personal data from a minor without lawful basis, we will take appropriate steps to delete such data.

14. Legal Basis for Processing

Where GDPR applies, we process personal data on one or more of the following legal bases:

Performance of a contract

We process personal data to provide our services, manage customer portal accounts, fulfill operational requests, and support logistics and warehousing workflows.

Legitimate interests

We may process personal data where this is necessary for our legitimate business interests, such as:

  • operating and improving our services;
  • securing our systems and facilities;
  • preventing fraud and misuse;
  • managing internal administration;
  • analyzing service performance;
  • maintaining business communications.

Where we rely on legitimate interests, we consider the impact on your rights and interests and take appropriate safeguards.

Legal obligation

We may process personal data to comply with legal and regulatory obligations, including tax, accounting, customs, audit, and record-keeping requirements.

Consent

In limited cases, we may rely on consent, for example for certain cookies or marketing-related activities where required by law. Where we rely on consent, you may withdraw it at any time.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, technologies, or internal practices.

When we make material changes, we will take reasonable steps to inform you, such as by updating the policy on our website or notifying relevant users through appropriate channels. The updated version will take effect on the date indicated or, if no date is indicated, on the date it is published.

We encourage you to review this Policy periodically.

16. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us at:

BOUNCEBUDS Fulfillment GROUP GmbH
Hohenheimer Str. 32
73734 Esslingen am Neckar
Germany

Email: info@bouncebudsgroup.com

If required, you may also use this contact information to exercise your rights under applicable data protection law.

17. Governing Law and Jurisdiction

This Privacy Policy shall be governed by the laws of the Federal Republic of Germany.

Jurisdiction shall be Stuttgart, Germany, where legally permissible.

Last Updated: May 2026

Scroll to Top