For your convenience, we have provided a translation of this page. This translation is for informational purposes only, and the definitive version of this page is the italian version.

Privacy policy of the service and the website


This information is provided pursuant to arts. 13 and 14 of EU Regulation 2016/679 GDPR (hereinafter "GDPR") as well as in accordance with current national legislation on the protection of personal data and is intended to describe and inform users / visitors who visit the website www. on the processing of personal data collected during browsing. It also aims to inform registered users about the processing of personal data provided by the latter for the provision of Beesy services.

Beesy Srl, with registered office in Via Alserio n. 20, Milan (MI), ZIP code 20159, VAT number 10348740969 (hereinafter "Beesy"), in line with the GDPR and the national legislation for the protection of personal data, intends to guarantee the privacy and security of the data of each registered user to the platform and unregistered users and visitors.

Please note that this information is provided only for the site (including the domains owned by Beesy) and not for other websites that may be consulted by the user through links that Beesy is not in any way responsible for.

1. Data controller

The Data Controller of your personal data is Beesy Srl with registered office in Via Alserio n. 20, Milan.

2. Legal basis and purpose of the processing

The personal data you provide are processed by the Data Controller for the following purposes and legal bases:

2.1. Treatments for which the provision of data is necessary

The provision of data for the purposes set out in the following points 2.1.1, 2.1.2 and 2.1.3 is necessary; therefore, their failure, partial or incorrect conferment will result in the objective impossibility for Beesy to establish or regularly conduct the contractual relationship and to make use of the services offered by Beesy.

2.1.1. Execution of the contract or fulfillment of pre-contractual commitments

  • acquire pre-contractual data and information;
  • provide for the obligations related to the execution of the contractual relationship;
  • carry out the operations necessary for the provision of the services covered by the contract;
  • forwarding communications of various kinds and with different means of communication (telephone, mobile phone, text message, e-mail) with reference to the services covered by the contract;
  • exchange information aimed at the execution of the contractual relationship and manage any further need related to the performance of the contract;
  • improve the services covered by the contract through statistical analysis aggregated on an anonymous basis.

The legal basis of the processing is the execution of the contract or pre-contractual measures.

2.1.2. Compliance with legal obligations

  • manage administrative, accounting, civil and fiscal obligations;
  • comply with and comply with the obligations established by laws, regulations, community regulations and orders of the competent authorities.

The legal basis in this case is a legal requirement.

2.1.3. Legitimate interest

The treatments performed for:

  • prevent and manage possible litigation, take legal action in case of need;
  • respond to your requests for information sent by form/chat;
  • send commercial communications to the e-mail address you have provided relating to services and products similar to those already purchased by you; every mail sent will allow you, by clicking on the appropriate link, to refuse further mailings.

The legal basis that makes these treatments lawful is the legitimate interest of the Owner.

2.2. Treatments with consent

The legal basis of the processing for marketing purposes referred to in point 2.2.1 is the consent you may provide.

It is understood that consent to the processing of your data for the aforementioned purpose is purely optional

This consent may be revoked at any time by sending a request to the e-mail address .

The withdrawal of consent does not affect the lawfulness of the treatment based on consent before revocation.

2.2.1. Marketing purposes

Send by e-mail information and promotional communications, including commercial, newsletters, advertising material and / or offers of services related to Beesy and propose the questionnaires and requests for feedback by e-mail or telephone calls.

2.3. Treatment of the website

We also inform you that the website, in order to operate, provide services and allow browsing, collects user data in the following ways:

2.3.1. Navigation data collected

The computer systems and software procedures used to operate the website acquire, during their regular activity, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes:

  • IP addresses or domain names of the computers used by users who connect to the site;
  • the addresses in the notation URI (Uniform Resource Identifier) ​​of the requested resources;
  • date and time of visit;
  • web page of origin of the visitor (referral) and exit;
  • browser type;
  • the method used in submitting the request to the server;
  • the size of the file obtained in response;
  • the numerical code indicating the status of the response given by the server (success, error, etc.);
  • other parameters related to the operating system and the user's computer environment.

It is specified that these data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning.

This category also includes cookies, small files containing strings of text (usually formed by letters and numbers) that allow a site to recognize a particular device or browser. To learn more about the cookie usage policy, see the specific policy available at the following address

2.3.2. Data provided voluntarily by the user

The site may collect other data in case of voluntary use of services by users such as support services, newsletters or communication (contact forms, boxes and similar), which will be used exclusively for the provision of the requested service:

  • personal data;
  • e-mail address or other contact information.

In the case of registration to the service and access to the platform, this processing takes place on the basis of the contractual / pre-contractual relationship established with Beesy and falls within the cases referred to in point 2.1.1 .; in case of subscription to the newsletter, the processing is done by registering it and expressing your consent, as provided for in point 2.2.1. Finally, your data may be processed on the basis of the legitimate interest of the Data Controller to respond to your requests for information via the form/chat.

3. Methods of processing

Data processing is based on principles of correctness, lawfulness and transparency; it will be carried out mainly using electronic procedures and supports (by way of example: DB, CRM platforms, etc.) for the time strictly necessary to achieve the purposes for which the data were collected. These tools are designed to store, manage and transmit them by means of appropriate technical and organizational measures to guarantee, as far as is reasonable and to the state of the art, the security, confidentiality, integrity, availability and resilience of systems and services, through the use of appropriate procedures that avoid the risk of loss, unauthorized access, illicit use and dissemination.

Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access, in accordance with the accountability principle provided by the GDPR.

3.1. Newsletter

Beesy informs that the site offers the newsletter service for reporting content and information processed by Beesy. Registration for the newsletter service takes place through the double opt-in procedure, which allows the newsletter to be sent only after confirmation by the user of the correctness of the e-mail address indicated during registration. When registering for the newsletter service, Beesy automatically stores the IP address, the date and time of registration and user confirmation in order to prove its actual registration and possibly report unauthorized use of the e-mail address. user's mail.

Beesy informs that the user has the right to withdraw his consent to receive the newsletter at any time by sending a request to the e-mail address support@beesy.itor by clicking on the unsubscribe link in the e-mails. mail sent.

4. Data retention period

The data collected for the purposes referred to in paragraphs 2.1.1, 2.1.2 and 2.1.3 will be processed for the entire duration of the contractual relationship and subsequently retained for no more than 10 years from the termination of the contract and in any case for the prescribed time limit From law.

The data collected for the purposes referred to in points 2.2.1 and 2.3.2 will be retained for 24 months and then deleted, subject to renewal of your consent.

The data collected for the purposes referred to in point 2.3.1, will be kept for 7 days, except in case of investigation of computer crimes against the site.

5. Recipients or categories of recipients of personal data

Personal data processed by the Data Controller will not be disclosed, ie no knowledge will be given to indeterminate subjects, in any possible form, including that of their availability or simple consultation.

They can be communicated to workers who work under the holder. In particular, based on the roles and tasks performed, some employees of the owner have been authorized to process personal data within the limits of their powers and in accordance with the instructions given to them by the Owner.

They may also be communicated, to the extent strictly necessary, to third parties who collaborate with the designated Controller, where necessary, Data Processors, to individuals who, for the purpose of providing the service on behalf of the Data Controller or business relations with the latter, must services or services. They can be communicated to group companies, banks and credit institutions. Finally, it may be communicated to the persons entitled to access it by virtue of provisions of law, regulations and community regulations.

6. Rights of interested parties and methods of exercise

Beesy informs you that, as an interested party, if the limitations established by law do not apply, you have the right to:

  • ask for confirmation that a personal data processing is currently underway;
  • access to their personal data, obtaining evidence of the purposes pursued by the Owner, the categories of data involved, the recipients to whom they may be communicated, the applicable retention period, the existence of automated decision-making processes;
  • obtain without delay the correction of inaccurate personal data concerning you and the relative notification to those to whom the data may have been transmitted;
  • obtain, in the cases provided for, the deletion of their data and the relative notification to those to whom the data may have been transmitted;
  • obtain the limitation of the treatment, when foreseen;
  • oppose the processing of personal data when possible;
  • request and obtain the portability of personal data in established cases and in a structured format, commonly used and readable by automatic device, also to transmit this data to another owner, within the limits of the feasibility material of the operation and the costs to be incurred;
  • propose a claim to a supervisory authority pursuant to art. 77 of the GDPR. The contacts of the Guarantor for the Protection of Personal Data are available on the website .

You can exercise your rights by writing to the e-mail address or c / o Beesy Srl, Via Alserio n. 20, Milan, 20159. The Data Controller will, within the time limits established by current legislation, provide you with a timely response.

Any clarification or request for clarification can be sent in writing to the Data Controller at the e-mail address .

7. Extra-EU data transfers

Your data may be transferred outside the European Union, particularly in the USA. This transfer will take place on the basis of an adequacy decision adopted by the European Commission.

If the transfer takes place to countries with respect to which the European Commission has not adopted an adequacy decision pursuant to art. 45 of the GDPR, it will happen after adoption of the other guarantees of which the articles. 46 and 47 of the GDPR or in the presence of one of the exceptions referred to in art. 49 of the GDPR.

8. Updates and changes

The Data Controller reserves the right to modify, supplement or periodically update this information in accordance with the applicable legislation or the measures adopted by the Guarantor for the Protection of Personal Data, therefore we invite you to periodically consult this page. For this purpose, this information highlights the update date.

9. Data Controller and Data Protection Officer (DPO)

The Data Controller to which you can contact is Beesy Srl Via Alserio 20, 20159 Milan, e-mail .

For any requirement you can contact our Data Protection Officer (DPO) at the following e-mail address: .

Last updated: 24th of January 2019