Privacy Policy

in accordance with articles 13 and 14 of Regulation (EU) 2016/679 ("GDPR")

Bee Web Srl (hereinafter, "Company" or "Data Controller") considers the protection of personal data a fundamental value and processes information of users of its website in full respect of fundamental rights and freedoms, with particular reference to privacy, protection of personal identity and security of personal data.

This information describes the methods of processing personal data of users who consult or interact with the Company's website.

1. Data Controller

The Data Controller is:

Bee Web Srl

Str. Delea Veche, nr 24, etaj 5, 020321 – Bucharest, Sector 2, Romania

VAT RO35008880

Email: privacy@beeweb.eu

All employees and collaborators who process personal data are authorized by the Data Controller and operate on the basis of specific instructions.

2. Types of data processed

a) Data provided voluntarily by the user

The Data Controller may collect personal data sent voluntarily by the user through:

  • contact forms or service requests;
  • sending emails to addresses published on the site;
  • requests for commercial information;
  • sending curriculum vitae.

The data collected may include: name, surname, email, phone, company, professional information, content of messages sent and any other information voluntarily included by the user.

b) Navigation data

The computer systems and software procedures that enable the website to function acquire, during normal use, some personal data whose transmission is implicit in the use of Internet protocols.

These data include: IP address, access logs, device identifiers, browser and operating system characteristics, pages visited, visit time, time spent, aggregated statistical data.

This information does not allow direct identification of the user.

c) Cookies

The site may use technical cookies and, with prior consent, analysis and profiling cookies managed by third parties. Cookie management is described in the Cookie Policy available on the site.

3. Purposes of processing and legal bases

Personal data are processed for the following purposes:

1) Responding to requests for information, assistance or quotes.

Legal basis: execution of pre-contractual or contractual measures (art. 6.1.b GDPR).

2) Commercial management of the relationship with customers, suppliers or partners.

Legal basis: execution of a contract (art. 6.1.b GDPR).

3) Sending promotional communications or newsletter, with user consent.

Legal basis: consent (art. 6.1.a GDPR).

4) Evaluation of applications and staff selection.

Legal basis: pre-contractual measures (art. 6.1.b GDPR).

5) Statistical analysis, site security and technical maintenance.

Legal basis: legitimate interest of the Data Controller (art. 6.1.f GDPR).

6) Compliance with legal, tax and administrative obligations.

Legal basis: legal obligation (art. 6.1.c GDPR).

The provision of data for the purposes of points 1 and 2 is necessary to obtain the requested service; failure to provide may result in the impossibility of responding.

4. Methods of processing

The processing of personal data takes place through computer and/or manual tools, in compliance with the principles of lawfulness, correctness, transparency, minimization and security.

The Data Controller adopts adequate technical and organizational measures to prevent data loss, unauthorized access, illicit processing and unauthorized disclosure of data.

5. Recipients of data

Data may be communicated to:

  • employees and collaborators authorized by the Data Controller;
  • tax, accounting and legal consultants;
  • IT services, hosting, cloud and maintenance providers;
  • partner companies involved in activities requested by the user;
  • competent authorities within the limits of the law;
  • subjects who can access data by virtue of national or European regulations.

Recipients process data as Data Processors or persons authorized by the Data Controller.

Data are not disseminated.

6. Transfer of data outside the EU

In the event that it becomes necessary to transfer data to countries located outside the European Union, this will take place in compliance with articles 44–49 GDPR, adopting appropriate tools such as adequacy decisions, Standard Contractual Clauses or supplementary measures.

7. Data retention period

Personal data will be retained for the time necessary for the purposes for which they were collected, in particular:

  • Data for contact requests: up to 24 months.
  • Contractual data: for the entire duration of the relationship and for a further 10 years in compliance with tax and civil obligations.
  • Data for marketing purposes: until consent is withdrawn.
  • Data relating to CVs: maximum 24 months.
  • Navigation data: as provided for in the cookie policy.

8. Rights of the data subject

The user may exercise the following rights:

  • access to data;
  • rectification;
  • deletion (right to be forgotten);
  • limitation of processing;
  • data portability;
  • opposition to processing;
  • withdrawal of consent;
  • complaint to the Data Protection Authority.

9. How to exercise rights

Requests may be sent to:

privacy@beeweb.eu

The Data Controller will respond within the terms provided by GDPR.

10. Third-party sites

The site may contain links to external sites. This information does not apply to sites managed by third parties, for which the Data Controller is not responsible.

11. Changes to this information

The Company may update this information at any time. Changes will be published on the site and will become effective at the time of publication.