BizExchangeX
BizExchangeX
Bringing Businesses Together!
Buyer Portal
Help
Contact UsFAQAbout Us
Log In
Document: privacy-policy
Status: DRAFT
Version:
Classification:
Effective:
Review:

This page is generated from the controlled Markdown source: docs/privacy/privacy-policy.md

Privacy Policy

Purpose

This Privacy Policy explains how BEX collects, uses, stores, shares, and protects personal information.

Scope

This Policy applies to all users of BEX websites, applications, services, and procurement workflows.

Information We Collect

BEX may collect:

* Contact information, including names, email addresses, and phone numbers.

* Organization information, including company names and addresses.

* Account credentials and authentication data.

* Procurement, bid, contract, and transaction information.

* Usage, device, and log data.

* Communication preferences and support interactions.

How We Use Information

BEX uses personal information to:

* Provide platform services.

* Authenticate users.

* Facilitate procurement workflows.

* Communicate with users.

* Improve platform performance.

* Maintain security and compliance.

* Meet contractual and legal obligations.

Legal Bases for Processing

Where required by law, BEX processes information based on:

* Contract performance.

* Legitimate interests.

* Consent.

* Legal obligations.

Information Sharing

BEX may share information with:

* Buyers and vendors participating in authorized transactions.

* Service providers and subprocessors.

* Legal and regulatory authorities when required.

* Professional advisors and auditors.

BEX does not sell personal information.

Data Retention

BEX retains information only as long as necessary to:

* Provide services.

* Meet contractual obligations.

* Satisfy legal and regulatory requirements.

* Resolve disputes and enforce agreements.

Retention periods are defined in the BEX Data Retention Policy.

Security

BEX maintains administrative, technical, and physical safeguards designed to protect personal information.

These safeguards include:

* Access controls

* Encryption

* Audit logging

* Monitoring

* Backup and recovery procedures

User Rights

Subject to applicable law, users may request:

* Access to personal information.

* Correction of inaccurate information.

* Deletion of personal information.

* Data portability.

* Restriction of processing.

* Objection to processing.

* Withdrawal of consent where applicable.

Requests may be submitted using the contact information below.

International Data Transfers

BEX may process information in jurisdictions where it operates or where authorized service providers are located.

Appropriate safeguards will be implemented when required by law.

Children's Privacy

BEX services are intended for business users and are not directed toward children under 18 years of age.

Changes to This Policy

BEX may update this Privacy Policy periodically.

Material changes will be communicated through appropriate channels.

Compliance References

* GDPR

* CCPA / CPRA

* SOC 2

* CAN-SPAM

* Applicable privacy laws

Contact Information

[compliance@bizexchangex.io](mailto:compliance@bizexchangex.io)

Revision History

VersionDateSummary
1.0.02026-06-19Initial draft