We use cookies and similar technologies to enhance your experience, analyze site traffic, and provide personalized content. By continuing to use this site, you consent to our use of cookies. You can manage your preferences or withdraw consent at any time in the privacy settings.

B-wareness

© 2025 B-wareness

Privacy Policy

Last updated: 30/09/2025

Introduction

B-wareness takes personal data protection seriously and processes personal data in accordance with the General Data Protection Regulation (GDPR) and applicable EU/Austrian laws when the website and services are used.

This Privacy Policy explains what data is collected, why it is collected, how it is used, how long it is retained, with whom it may be shared, and the rights of data subjects.

Services are intended for adults; data from persons under 16 is not knowingly collected and such submissions will be deleted once identified.

Data Controller and Contact

Controller: B-wareness (company incorporation pending; the current operator is the named natural person below until registration is completed)

  • Name: [full name]
  • Address: [Address]
  • Email: info@b-wareness.com
  • Phone: [phone number]
  • Website: www.b-wareness.com

Privacy contact: same as above for all data subject requests and privacy inquiries.

Data Collected

Data Provided Directly

  • Contact form submissions: name, email, phone, company, free-text message, and consent checkbox for communications.
  • Newsletter sign-up: name and email collected via double opt-in consent. Unsubscribe any time.
  • Assessment quizzes: name, email, quiz responses, explicit consent for processing results/follow-up; no health data collected.
  • Downloadable resources: name and email required with consent for processing and communications.

Data Collected Automatically

  • When visiting the site: IP address, date/time, browser type/version, operating system, referrer URL, pages visited (used for security and operation).

Cookies and Similar Technologies

  • Essential cookies for site functionality; analytics/marketing technologies activated only per consent rules.
  • Privacy-first, cookie-less analytics (e.g., Plausible) may be used; otherwise GA4/Matomo only with prior consent and IP anonymization.
  • Social media embeds and future marketing pixels load only after consent and may set third-party cookies.
  • Cookie consent banner/platform implemented before non-essential cookies or pixels are activated; this section will be updated as tooling is finalized.

Purposes of Processing

  • Respond to inquiries
  • Deliver and administer services/communications
  • Operate and secure the website
  • Provide newsletters
  • Distribute resources
  • Perform high-level analytics to improve services

Only data necessary for the stated purposes is collected, in line with GDPR principles of minimization and limitation.

Legal Bases for Processing

  • Contact form inquiries: Legitimate interests (Art. 6(1)(f) GDPR) to respond; consent (Art. 6(1)(a) GDPR) for marketing.
  • Newsletter: Consent (Art. 6(1)(a) GDPR), double opt-in; withdraw consent any time.
  • Assessment quizzes/interactions: Consent (Art. 6(1)(a) GDPR).
  • Contracted services: Performance of contract (Art. 6(1)(b) GDPR).

Data Sharing and Processors

Personal data is not sold. Data may be shared only with service providers (“processors”)—hosting, email delivery, analytics—under GDPR-compliant contracts and appropriate safeguards.

Transfers outside the EU/EEA require safeguards like Standard Contractual Clauses, or EU data residency where available.

Retention

Data is retained for 3 years unless a different period is required by law, then deleted/anonymized after periodic review. May be retained longer to establish, exercise, or defend legal claims, or comply with statutory requirements.

Security

  • HTTPS/TLS
  • Access controls
  • Least-privilege administration
  • Secure hosting
  • Vendor due diligence

Security measures are reviewed and improved as needed to protect confidentiality, integrity, and availability.

Data Subject Rights

  • Access (Art. 15 GDPR)
  • Rectification (Art. 16 GDPR)
  • Erasure (“right to be forgotten”, Art. 17 GDPR)
  • Restriction (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Objection (Art. 21 GDPR)
  • Withdraw consent (Art. 7(3) GDPR)

Requests handled by the privacy contact, responded to within 30 days (may be extended for complex cases).

Identity Verification for Rights Requests

A flexible, risk-based verification approach ensures data is disclosed only to the correct individual, starting with known contact details and escalating only if necessary and proportionate.

Children’s Data

Services are for adults; data from persons under 16 is not knowingly collected and will be erased if identified.

If future offerings target minors, age verification and parental consent workflows per EU law will be implemented before processing.

International Transfers

No current transfers outside EU/EEA. If introduced, only with appropriate safeguards and updated disclosures. EU/EEA data residency prioritized to minimize cross-border transfers.

Cookies and Tracking (see Cookie Policy)

We use cookies and similar technologies to operate and improve our website. Non-essential cookies, pixels, and third‑party embeds are blocked until consent is provided via our cookie banner. Your choices are recorded and honored, and you can update them at any time through the cookie settings.

Essential vs. non-essential cookies

  • Essential cookies are required for basic site functionality (e.g., security, page navigation) and do not require consent.
  • Non-essential cookies (e.g., analytics, marketing, social media) are only activated after consent.

Analytics

We may use privacy‑first, cookieless analytics solutions that do not store personal data and may operate without consent. When using Google Analytics (GA4) or Matomo in a way that involves cookies or personal data, we obtain your consent before activation and apply IP anonymization and appropriate retention controls.

Google Analytics

When enabled by your consent, Google Analytics (GA4) uses cookies to collect usage information such as pages visited, session duration, and interactions. We enable IP anonymization so your full IP address is not stored. This helps us understand and improve how our website is used.

You can withdraw consent at any time via the cookie settings. You can also opt out of Google Analytics by adjusting your browser settings to block cookies or by installing the Google Analytics Opt‑out Browser Add‑on available from Google.

Managing your choices

You can manage or withdraw your cookie consent at any time using the cookie settings link or your browser’s controls. Disabling non‑essential cookies may affect certain features but the site will remain functional for core operations.

Complaints

Data subjects may lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde), or any EU/EEA supervisory authority. Consult the authority’s website for latest contacts.

Changes to This Policy

Privacy Policy may be updated for legal, technical, or business changes; latest version always on this page with an “updated” date. Material changes communicated through reasonable channels as needed.

Contact

For privacy questions or to exercise rights:
B-wareness, [full name], [Address], Email: info@b-wareness.com, Phone: [phone number].
Privacy contact handles all data subject requests and policy inquiries.

Quick Links

Legal links

B-wareness

© 2025 B-wareness