BXB Digital BRIX Privacy Notice

BXB Digital (“we” or “our”, or “us”) our parent, Brambles Ltd. and affiliates, respect your right to privacy and your right to control the dissemination of personal information about yourself.  Please click here for a list of business locations and contact information.

BXB Digital harnesses the scale, supply-chain expertise and insights that come from Brambles end-to-end involvement in the world's supply chains.  Brambles is the parent company of CHEP the largest equipment pooling company in the world. CHEP manages, maintains, transports, and supplies more than 300 million platforms for our customers. Our higher quality pallets, containers, RPCs, bins, trays and store displays support the construction, handling and transport of more efficient and sustainable product loads. CHEP platforms and services play a critical role within every leg and across every trading partner in the supply chain.

BRIX (Brambles Intelligence Exchange) is a software logistics system used for supply chain applications, including but not limited to logistics tracking, transport collaboration and supply chain insights.  This Privacy Notice applies to BRIX or websites operated by us that are directly related to BRIX and describes how BRIX collects information from you, what types of information it collects, what we may do with the information you provide, and your rights regarding privacy.

By using BRIX, you acknowledge you have read and understood the terms of this Privacy Notice. This Privacy Notice is incorporated into, and part of, the Terms and Conditions of the Application, which governs your use of the Application.



BRIX collects limited personal information.  The majority of data BRIX collects or analyzes is container and pallet movement and does not contain personal information.   We may collect and process the following information about you:

1.1. Contact Information

Access to BRIX is based on contractual relationships with our customers, including the company that employs you or that you represent.  When your company authorizes you to use BRIX, you or a company administrator will be required to complete the BRIX registration process, which may include providing basic information about you and/or your company -- such as name, phone number, and email address.  This information enables us to provide BRIX-based services and information to you, and helps make our contact with you as productive as possible.


1.2. Communications

To continually improve the effectiveness of our customer service communications, we may examine e-mail communications with you for its effectiveness. We may also collect other information from you when you provide comments or participate in surveys.

1.3. Browsing

Details of your visits to BRIX including, but not limited to, traffic data, location data, weblogs and other communication data, whether this is required for our own purposes or otherwise, and the BRIX resources that you access.




2.1. IP Addresses

Our web servers may collect the name of the domain you used to access the Internet, the website you came from, and the website you visit next. This information is aggregated to measure the number of visits to the site, average time spent, page views, and other statistics about visitors to this site. We may also use this aggregated data to monitor site performance and to make the site both easier and more convenient to use.  

When you access BRIX, we collect certain technical and routing information about your computer to facilitate your use of BRIX. For example, we may log environmental variables, such as browser type, operating system and CPU speed, and the Internet Protocol ("IP") address of your originating Internet Service Provider, to try to bring you the best possible service.

We may use your user name and IP address to track your use of the site. We may also record BRIX application screens used, search requests and results retrieved through BRIX applications, to try to ensure the accuracy and efficiency of our BRIX applications.

2.2. About Cookies

Cookies are files, often including unique identifiers, that are sent by web servers to web browsers, and which may then be sent back to the server each time the browser requests a page from the server.

Cookies can be used by web servers to identity and track users as they navigate different pages on a website, and to identify users returning to a website. Cookies are either placed by Our Website (first-party cookies) or other websites whose content appears on Our Website (third-party cookies).

Cookies may be either "persistent" cookies or "session" cookies.  A persistent cookie consists of a text file sent by a web server to a web browser, which will be stored by the browser and will remain valid until its set expiry date (unless deleted by the user before the expiry date). A session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.

2.3. How we use cookies

Cookies do not contain any information that personally identifies you, but information that we store about you may be linked, by us, to the information stored in and obtained from cookies.

We use the information we obtain from you for the following purposes:

·       to recognize you and your computer when you visit BRIX

·       to track you as you navigate BRIX

·       to improve BRIX usability

·       to analyze the use of BRIX


2.4. Managing cookies

You can control how your browser handles cookies received from our Application. You can choose to refuse all cookies, or to be prompted before a cookie is saved to your hard drive, or to only accept cookies from certain websites that you designate. Information on deleting or controlling cookies is available at www.AboutCookies.org . By refusing to accept cookies from us, you may not be able to use some of the features and functionality available on BRIX.



We may use the information we obtain about you to:

3.1. Operate BRIX

3.2. Ensure that the content from BRIX is presented in the most effective manner for you and for your computer

3.3. Provide you with the specific services that you request, including BRIX support

3.4. Operate, evaluate, and improve our business

3.5. Gather your feedback about and improve our products, services, programs, and Internet services

3.6. Protect against and prevent fraud, unauthorized transactions, claims, and other liabilities, and manage risk exposure, including by identifying potential hackers and other unauthorized users

3.7. Comply with applicable legal requirements and industry standards and with our policies



With the exception of our EU/EEA users, BRIX stores personal information on Amazon AWS in the United States.  When you provide information to BRIX, we may share that information as follows:

4.1. Within Brambles.  Please click here for a list of our business locations and contact information.

4.2. Support for BRIX is provided by CHEP India.

4.3. In order to carry out your requests, to make various features, services and materials available to you, to respond to your inquiries, and for other purposes described in the "How We Use Your Information" section of this Privacy Notice, we may share your personal information or usage information with third parties that perform functions on our behalf (or on behalf of other entities with which we do business), such as companies or individuals that: host or operate our sites; analyze data; and provide customer service.

4.4. We may share non-personal information, such as aggregate user statistics, demographic information, and usage information with third parties.

4.5. We may disclose your personal information, usage information, and other information about you to parties acquiring part or all of our assets, as well as to attorneys and consultants. If we transfer your information to an acquirer, we will use reasonable efforts to direct the acquirer to use your information in a manner that is consistent with this Privacy Notice.

4.6. If any bankruptcy or reorganization proceeding is brought by or against us, your information may be considered a company asset that may be sold or transferred to third parties.

4.7. We may disclose information about you to others if we have a good faith belief that we are required to do so by law or legal process, to respond to claims, or to protect the rights, property or safety of Brambles or others.




By providing us with information and data, you understand and acknowledge that we may collect, use and disclose personal data for commercial purposes, and may provide such information (consistent with the terms of this Privacy Notice) within Brambles - any or all of which may be outside your resident jurisdiction.

5.1. Communications

To continually improve the effectiveness of our customer service communications, we may examine e-mail communications with you for effectiveness. Insofar as this communication relates to European Union or European Economic Area (EU/EEA) customer services, such analyses are performed on the basis of anonymized e-mails. We anonymize these e-mails in accordance with the requirements of the EU General Data Protection Regulation and local law before transmitting them to a processor / service provider outside of the EU/EEA for their analysis. In the unlikely case that data are re-identified after transfer, the security of your data will be protected by appropriate safeguards, including but not limited to Model Clauses pursuant to the European Commission’s decision (C(2010)593) of 5 February 2010 on Standard Contractual Clauses for the transfer of personal data to processors established in third countries which do not ensure an adequate level of data protection (“Model Clauses”).

5.2. Where we store your personal information

Please be aware that the personal data shared by individuals in the EU/EEA is stored on Amazon AWS in Frankfurt, Germany. 

5.3. Legal Basis for Processing

We will only collect and process personal data about you where we have a legal basis including performance of a contract (where processing is necessary for entering into or the performance of a contract with you), consent and legitimate interests.  We may process your personal data for the purposes of our legitimate interests, provided that such processing does not outweigh your rights and freedoms. Where we rely on legitimate interests, you have the right to object. Please keep in mind that if you object this may affect our ability to perform certain services for your benefit.

We process your personal data based on legitimate interests in order to:

·       Protect you, us, or others from security threats

·       Comply with laws that apply to us

·       Improve BRIX performance

·       Enable or administer our business, such as for invoicing and platform maintenance and

·       Understand and improve our business or customer relationships generally


5.4. European Supervisory Authority

You have the right to register a complaint with a European data protection or supervisory authority about our collection and use of your personal information. For more information, please contact your local data protection authority (contact details for data protection authorities are available at http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm).



You may: (i) request information on and access to the personal information We hold about you; (ii) request that any inaccurate personal information We hold be corrected; (iii) to object to certain types of processing of your personal information We carry out (including the right to opt-out of any direct marketing); (iv) request that We delete the personal information We hold about you; and (v) request a copy of your personal information in a machine readable, commonly used format (or to request We transfer your personal information in such a format to a third party service provider).

Whilst some of these rights can be exercised by you directly through this Website, many of the rights, such as those relating to requests to delete your personal data, will need to be submitted to Us as detailed in the “How to Contact Us” section of the Privacy Notice.

We will consider such requests and respond to you.  If we deny an access request, we will notify you of the reasons for the denial. We may charge you a small fee and may require verification of your identity before providing a copy of your information as permitted by law.



We retain the personal data that we collect from you no longer than is necessary except where we have an ongoing legitimate business need to do so (for example, to provide you with the services you requested or to comply with an applicable legal requirement).  Specifically, BRIX will delete your personal information 6 months after your account is deactivated.



We maintain certain administrative, technical and physical safeguards to help protect against loss, misuse or unauthorized access, disclosure, alteration, or destruction of your personal information. However, no electronic data transmission or storage of information can be completely secure. We cannot ensure or warrant the security of any information you transmit to us or that we acquire. Accordingly, you must use our BRIX-based applications at your own risk.

If, despite all our efforts, a data breach does occur, we shall do everything reasonably practicable to limit the damage.  In case of a data breach, and depending on the circumstances, we will inform you about remedial actions to prevent any further damage.



Our services are generally not directed to children under 16. We do not knowingly collect personal information from anyone under 16 without parental consent. If you become aware that we have collected personal information from a child under the age of 16 without parental consent, please contact us as indicated below so we can take appropriate action.



If you have any questions, comments or concerns about this Privacy Notice or if you would like us to update information we have about you or your preferences, please contact our Chief Privacy Officer at privacy@brambles.com.  Alternatively, please contact our location nearest you.  Our list of business locations is available here. 



We reserve the right to modify or supplement this Privacy Notice at any time.  Changes to the policy will be posted at least 30 days prior to the effective date of the changes.  The date below indicates when this Privacy Notice was last changed.

This policy was last updated on October 11th, 2018, effective October 11th, 2018.