Privacy Policy

Last updated: 19/06/2026

Effective date: 22/06/2026

1. Introduction

BeeVital GmbH ("we", "us", or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website www.beevital.com, use our products and services, or otherwise interact with us.

This Policy is provided in accordance with the EU General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR") and the Austrian Data Protection Act (Datenschutzgesetz, "DSG"). Please read it carefully to understand our practices regarding your personal data.

2. Data Controller

The data controller responsible for your personal data is:

BeeVital GmbH

Goldschlagstraße 40/8

1150 Vienna

AUSTRIA

Email: info@beevital.com

Phone: +43 6219 20645

Commercial register no. (Firmenbuchnummer): FB-Nr. 45773p

Court: Landesgericht Salzburg

VAT / UID No.: AT U486 15404

EORI No.: ATEOS 10000 08179

3. Information We Collect

We may collect and process the following categories of personal data about you:

- Personal Identification Information: name, email address, telephone number, postal address, and similar contact details.

- Technical Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website.

- Usage Data: information about how you use our website, products, and services.

- Marketing and Communications Data: your preferences in receiving marketing from us and your communication preferences.

- Transaction Data: details of products you have purchased and payments to and from you.

We do not intentionally collect any special categories of personal data (such as data revealing health, racial or ethnic origin, or political opinions) through our website.

4. How We Use Your Information and Legal Bases

Under the GDPR, we must have a lawful basis for each processing activity. We use your personal data for the following purposes, relying on the legal bases indicated:

- To provide and improve our services – to deliver our products and services and improve them over time. Legal basis: performance of a contract (Art. 6(1)(b) GDPR) and our legitimate interests (Art. 6(1)(f) GDPR).

- To communicate with you – regarding your account, our services, and any updates or changes. Legal basis: performance of a contract and/or our legitimate interests.

- For marketing purposes – to send you promotional materials and offers where you have consented. Legal basis: your consent (Art. 6(1)(a) GDPR), which you may withdraw at any time.

- To comply with legal obligations – such as tax, accounting, and regulatory requirements. Legal basis: compliance with a legal obligation (Art. 6(1)(c) GDPR).

- For creditworthiness assessment (Bonitätsprüfung) – where necessary prior to or during the performance of a contract, we may assess the creditworthiness of business customers. This may involve transmitting relevant data to credit reference agencies or credit insurers. Legal basis: our legitimate interests in minimising credit risk (Art. 6(1)(f) GDPR) and, where applicable, performance of a contract (Art. 6(1)(b) GDPR).

5. Cookies and Similar Technologies

Our website may use cookies and similar technologies to function correctly, analyze traffic, and (with your consent) for marketing. Non-essential cookies are only set after you provide consent through our cookie banner. You can withdraw or change your consent at any time via the cookie settings on our website.

For full details on the cookies we use, please see our separate Cookie Policy: https://www.beevital.com/cookie-policy

6. How We Share Your Information

We do not sell or trade your personal data. We may share your personal data with the following categories of recipients:

- Service providers (processors): third parties who perform services on our behalf, such as hosting, payment processing, logistics/shipping, IT support, and marketing platforms. These act under written data processing agreements.

- Professional advisers: such as lawyers, accountants, and auditors.

- Public authorities: where we are required to disclose data by law or in response to valid requests by competent authorities.

- Trade credit insurers: where we use trade credit insurance to cover trade credit risks (e.g. with R+V Allgemeine Versicherung AG or a comparable insurer), it may be necessary to transmit personal data of debtors (such as name, address, and credit information) to the insurer. Affected debtors will be informed of such processing in accordance with the GDPR. Further information on the data processing practices of R+V Allgemeine Versicherung AG in this context is available at www.ruv.de/datenschutz/wkvdatenschutzinfo.

7. International Data Transfers

Where we transfer your personal data to recipients outside the European Economic Area (EEA), we ensure an adequate level of protection through one of the safeguards permitted under the GDPR, such as an adequacy decision of the European Commission or the use of Standard Contractual Clauses. You may request a copy of the relevant safeguards using the contact details above.

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. The criteria used to determine retention periods include the nature of the data, the purpose of processing, and applicable statutory retention obligations (for example, Austrian commercial and tax law generally require certain records to be kept for seven years).

Specific retention periods:

Transaction and contract data (orders, invoices, payment records): 7 years from the end of the calendar year in which the transaction occurred, in accordance with Austrian commercial and tax law (§ 212 UGB, § 132 BAO).
Contact and identification data collected in connection with a contractual relationship: retained for the duration of the business relationship and deleted no later than 7 years after its termination, in line with applicable statutory limitation and record-keeping obligations.
Customer service and complaint data: 3 years from the date of the inquiry or complaint, in accordance with the general limitation period under Austrian civil law (§ 1489 ABGB).
Marketing and communications data (e.g. newsletter subscriptions): retained until you withdraw your consent or object to processing, after which it will be deleted without undue delay.
Technical data (e.g. server logs, IP addresses): up to 6 months from collection, unless a longer retention period is required for the investigation of a specific security incident.
Creditworthiness assessment data: deleted upon conclusion of the relevant credit assessment, or upon termination of the underlying business relationship, whichever is later.

9. Data Security

We use appropriate technical and organizational measures to protect the personal data we collect and process about you. However, please be aware that no security measures are perfect or impenetrable, and we cannot guarantee that unauthorized access, hacking, data loss, or other breaches will never occur. In the event of a personal data breach likely to result in a risk to your rights and freedoms, we will notify the competent supervisory authority and, where required, affected individuals in accordance with the GDPR.

10. Your Data Protection Rights

Subject to the conditions set out in the GDPR, you have the following rights regarding your personal data:

- Right of access – to request copies of your personal data.

- Right to rectification – to request correction of inaccurate or incomplete data.

- Right to erasure – to request deletion of your personal data ("right to be forgotten") in certain circumstances.

- Right to restriction of processing – to request that we limit the processing of your data in certain circumstances.

- Right to data portability – to receive your data in a structured, commonly used, machine-readable format and to have it transmitted to another controller.

- Right to object – to object to processing based on legitimate interests or to direct marketing at any time.

- Right to withdraw consent – where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal.

- Rights related to automated decision-making – we do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects.

To exercise any of these rights, please contact us at info@beevital.com. We will respond within one month, as required by the GDPR.

11. Right to Lodge a Complaint

If you believe that our processing of your personal data infringes data protection law, you have the right to lodge a complaint with the Austrian Data Protection Authority:

Österreichische Datenschutzbehörde

Barichgasse 40–42, 1030 Vienna, Austria

Website: www.dsb.gv.at

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last updated" date. Where changes are significant, we will provide a more prominent notice.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

BeeVital GmbH

Goldschlagstraße 40/8

1150 Vienna

AUSTRIA

Email: info@beevital.com

Varroa MANAGEMENT

Bee NUTRITION

VelutinA CONTROL

Follow us

Privacy Policy