Privacy Policy

1. Who We Are (Data Controller)

The protection of your personal data is of utmost importance to us. We, bee produced GmbH, are the data controller responsible for processing your personal data. Our contact details are as follows:

bee produced GmbH
Julius-Tandler-Platz 7/11,
A-1090 Vienna, Austria
Contact person: Dr. Wilfried Lepuschitz
Phone: +43 1 34 60 708
Email: contact@beeproduced.com

This privacy policy outlines the key aspects of data processing on our website, in line with the General Data Protection Regulation (GDPR), the Austrian Data Protection Act (DSG), and the Telecommunications Act 2003 (TKG 2003).

2. Data Collection and Purposes of Processing

We process your personal data, which fall under the following categories:

  • Name/Company
  • Date of birth
  • Company registration number
  • Contact person
  • Business address and other addresses
  • Contact details (telephone number, fax number, email address, etc.)
  • Bank details, credit card data, PayPal account details
  • Order data
  • VAT number
  • Customer service inquiries

You have voluntarily provided us with data about yourself, and we process this data based on your consent for the following purposes:

  • To fulfill the contracts concluded and the associated contractual obligations
  • Customer support, as well as
  • For our own marketing purposes, such as sending offers, advertising brochures, and newsletters (in paper and electronic form) and to reference the existing or former business relationship.

You can revoke this consent at any time. A revocation will result in us no longer processing your data for the above purposes from that point onwards. To revoke your consent, please contact: contact@beeproduced.com.

The data you provide is also required to fulfill the contract or to carry out pre-contractual measures. Without this data, we cannot conclude the contract with you. We store your data for seven years, starting from the end of the calendar year in which the data was collected. After this period, the data will be deleted.

3. External Services

We work with several external service providers to optimize the functionality and performance of our website. These providers may process personal data on our behalf:

  1. Google Tag Manager: Used for managing website tags. No personal data is collected by Google Tag Manager, but it may trigger other tags that process personal data (e.g., Google Ads). Privacy Policy

  2. Google Ads: Used for advertising purposes, including tracking user interactions and behavior for targeted advertising. Data may be transferred to Google servers outside the EEA, with safeguards such as Standard Contractual Clauses (SCCs) in place. Privacy Policy

  3. Sentry: Utilized for error monitoring and bug tracking. Sentry may collect error reports containing anonymized personal data, such as IP addresses. Data may be transferred to the U.S., where we ensure appropriate safeguards. Privacy Policy

  4. Posthog: We use Posthog for website analytics. It processes anonymized usage data to help us improve our services. No personal data is collected unless you have explicitly consented. Privacy Policy

  5. Brevo (formerly Sendinblue): Manages our transactional and marketing emails. Personal data, such as email addresses, is stored on EU servers in compliance with GDPR. Privacy Policy

  6. AlphaVPS: Provides backup services. Encrypted website backups are stored on servers located within the EEA. Privacy Policy

  7. Netcup: Hosts our main servers. Personal data stored on these servers remains within the EEA. Privacy Policy

We ensure that these service providers process personal data in compliance with GDPR requirements, including entering into Data Processing Agreements (DPAs) with them where necessary.

As the data controller, we process your personal data in accordance with the following legal bases under GDPR:

  • Art. 6(1)(a) GDPR: Your explicit consent, such as when you opt in to receive marketing information.
  • Art. 6(1)(b) GDPR: Processing necessary for the performance of a contract (e.g., order fulfillment).
  • Art. 6(1)(c) GDPR: Compliance with legal obligations, such as retaining order data for tax purposes.
  • Art. 6(1)(f) GDPR: Processing based on our legitimate interests, such as improving website functionality or ensuring network security. You have the right to object to this processing at any time (see "Your Rights").

5. Transmission of Personal Data

We may transmit your personal data to the third-party providers listed above to fulfill the purposes mentioned. Where personal data is transferred outside the European Economic Area (EEA), we ensure that recipients provide an adequate level of data protection, for example, by using Standard Contractual Clauses (SCCs) or other legally recognized transfer mechanisms under GDPR (Art. 46 GDPR).

6. Storage Period

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by statutory retention obligations:

  • Order data: Stored for at least seven years to comply with tax and commercial law obligations.
  • Consent-based data: Stored until you revoke your consent.
  • Other data: Stored for as long as necessary for the specific purposes for which it was collected or for the defense of legal claims.

After the retention period expires, your data will be securely deleted or anonymized.

7. Data Security

We employ appropriate technical and organizational measures to ensure the protection of your personal data against unauthorized access, accidental loss, or unlawful processing. This includes:

  • Encryption of data.
  • Pseudonymization where possible.
  • Access control to limit the handling of personal data to authorized personnel only.
  • Regular security audits and risk assessments.

However, please note that data transmission over the Internet always involves certain risks, and we cannot accept liability for external factors beyond our control.

8. Cookies

Our website uses cookies to provide a more user-friendly experience. Cookies are small text files stored on your device via your browser. They do not cause any harm. We classify cookies as follows:

  • Essential cookies: Necessary for the basic functionality of the website.
  • Non-essential cookies: These include analytics and marketing cookies, which are only set with your explicit consent.

You can manage your cookie preferences through your browser settings or via our cookie consent tool. Disabling cookies may affect website functionality.

9. Your Rights

Under GDPR, you have the following rights concerning your personal data:

  1. Right to access: You have the right to request access to your personal data and to obtain a copy of it.

  2. Right to rectification: You may request that we correct any inaccurate or incomplete personal data.

  3. Right to erasure ("right to be forgotten"): Under certain circumstances, you can request that we delete your personal data, provided it is no longer necessary for the purposes for which it was collected.

  4. Right to restriction of processing: You can request that we limit the processing of your data if you contest its accuracy, the processing is unlawful, or we no longer need the data for the original purpose.

  5. Right to data portability: You may request to receive your personal data in a structured, commonly used, and machine-readable format and transmit that data to another controller.

  6. Right to object: You can object to the processing of your personal data based on our legitimate interests or for direct marketing purposes.

  7. Right to withdraw consent: You can withdraw your consent at any time, without affecting the lawfulness of processing based on your consent before withdrawal.

  8. Right to lodge a complaint: You have the right to file a complaint with the data protection authority if you believe we have violated your data protection rights.

To exercise any of these rights, please contact us using the details provided in the "Who We Are" section.

By using our website and providing your personal data, you acknowledge that you have read this privacy policy and expressly consent to the processing of your personal data as outlined above. You may revoke your consent at any time by contacting us via email.

We may communicate with you electronically, including via unencrypted email, and you acknowledge the associated risks. You can opt out of receiving promotional emails from us at any time by following the unsubscribe instructions in those emails.

spinner
Loading cookies...