Site Privacy Policy


This information applies to the processing of Users’ Personal Data collected through this Site.

  1. Owner of the data processing

The Data Controller of Personal Data is Byom S.r.l. with headquarters in Rome, Via Sardegna n. 40, in the person of its pro tempore legal representative, who can be contacted at email: (hereinafter “Byom” or “We” or “Owner”)

  1. Type of Data and collection methods

Among the Personal Data collected on this Site there are: name, surname, company, position and Usage Data.

Complete details on each type of Data are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data are collected.

Personal Data can be freely provided by the User through the contact forms on this Site, collected automatically while browsing this Site in the case of Usage Data, or collected through Cookies or other tracking and profiling tools.

For more information on the use of Cookies please consult the Cookie Policy

  1. Purpose of data processing

The Personal Data provided by Users or collected through third parties will be processed within the limits and in the manner established by the GDPR for the following purposes:

  1. a) to receive and process requests for information and/or contacts and for any responses to such requests;
  2. b) for the possible provision of consultancy services offered by Byom;

c)for statistical purposes, subject to anonymisation.

  1. Mandatory or optional nature of providing data – Consequences of any refusal.

Il conferimento dei Dati per la finalità di cui ai punti a) e b) che precedono è obbligatorio in quanto necessario per evadere le richieste degli Utenti di informazioni e/o contatto e per l’erogazione dei servizi di consulenza. Il mancato conferimento da parte dell’Utente di alcuni Dati Personali può impedire il corretto funzionamento di questo Sito.

L’Utente si assume la responsabilità dei Dati Personali di terzi ottenuti, pubblicati o condivisi mediante questo Sito e garantisce di avere il diritto di comunicarli o diffonderli, liberando il Titolare da qualsiasi responsabilità verso terzi.

  1. Treatment methods

Byom, as Data Controller pursuant to art. 4, no. 7) of the GDPR, is responsible for the legitimate and correct processing of Users’ Personal Data and adopts technical and organizational security measures suitable to guarantee their protection and prevent unauthorized access, disclosure, modification or destruction of Personal Data. .

The processing is carried out using IT and/or telematic tools as well as in paper form, with organizational methods and logic strictly related to the purposes indicated and in any case in such a way as to guarantee the security and confidentiality of the Data itself.

In addition to the Data Controller, in some cases, categories of internal subjects in charge of processing may have access to the Data, including Byom employees and collaborators in other capacities, or external subjects by virtue of prior appointment as Data Processors and required to an appropriate obligation of confidentiality, including IT service providers, analytics service providers, management service providers, external professionals and consultants, communication agencies, postal couriers.

The updated list of data controllers will be made available upon simple request to the interested party by email to the following address:

  1. Legal basis of the processing

Personal Data is processed on the basis of the legitimate interest of the Owner in carrying out its business activity, including the provision of services, the improvement and development of communication towards Users and Customers, the improvement of its operational management and the increase the security of the Site; the processing may also take place to perform a contract or to fulfill a legal obligation or if the User has given consent for one or more specific purposes, until the User revokes his consent.

  1. Data retention time.

The Data is processed for the time necessary to carry out the service requested by the User or otherwise necessary in relation to the purposes set out in this Policy. In any case, once the maximum data retention period has expired, they will be automatically deleted or made anonymous.

  1. Data Recipients – Transfer of Data to Third Countries or international organizations

In some cases your Personal Data may be processed outside the European Economic Area (“EEA”), for example in the United States. Even in such cases, Byom guarantees that the Data, processed outside the EEA, will be protected in the same way as it would be if it were processed within the EEA. To this end, Byom guarantees that an adequate level of protection is offered during the processing, and ensures that at least one of the following security measures is implemented:

  1. i) the Data will be transferred to countries that have been judged to provide an adequate level of protection of personal data by the European Commission;
  2. ii) standard data protection clauses will be used as provided for in Chapter V – Section 5 of the GDPR; And

iii) where Personal Data is transferred to third party providers established in the United States, the data may be transferred to them if they have self-certified under the Privacy Shield.

For information on the countries to which the Data may be transferred, please contact the following address

The Data may also be communicated to other subjects in order to fulfill a legal obligation or for the assessment, exercise or defense in court of a right of Byom, of our Customers or of others. This may include disclosure to public authorities, or authorized third parties as part of investigations into violations of law or fraudulent use of our services that may expose Byom or others to legal liability.

  1. Rights of the interested party

The interested party to whom the Personal Data refers may exercise the following rights:

  • the right to obtain confirmation of the processing of personal data concerning him and in this case, to access the data and information concerning the purposes of the processing, the type of data, the recipients or categories of recipients to whom the personal data may be communicated, the retention period or the criteria used to determine this period;
  • the right to request rectification of inaccurate data;
  • the right to object to processing when it occurs on a legal basis other than consent;
  • the right to revoke consent previously given;
  • the right to request the deletion of personal data or the limitation of processing or transformation into anonymous form;
  • the right to lodge a complaint with a supervisory authority;
  • the right to request information on the origin of the data if they have not been collected from the interested party;
  • the right to know the existence of an automated decision-making process, including profiling;
  • the right to data portability;

The exercise of the above rights is not subject to any formal constraints and is free. To this end, the interested party can contact the Data Controller by sending a registered letter with return receipt to the addresses indicated in point 1 above, or by e-mail using the following address:

Website Cookie Policy


This Site uses the so-called. Cookies and other tracking technologies and for the collection of Personal Data.

This information therefore aims to illustrate:

  • the use of Cookies on this Site;
  • the User’s rights in relation to the Data collected through Cookies.


  1. What are Cookies

Cookies are small text files installed by sites visited by a User within the browser where they are stored and then transmitted to the same sites on the next visit by the same User.

On this Site, Cookies assist the Owner to provide a service requested by the User based on the purposes described in the Privacy Policy.

The Cookies used on this Site are installed by the Owner and third parties and can be:

(i) Session cookies: they store the information necessary during the browsing session and are deleted immediately after the session expires, i.e. when the browser is closed;

(ii) Persistent cookies: they are stored on the hard disk and the Site reads them at each new visit. Persistent Cookies cease to function on their pre-determined expiry date.

(iii) Technical cookies: they are used to allow the User to visit the Site, save the session, carry out preferences saving activities and benefit from a better service by browsing according to the criteria selected by the User. By blocking the installation of technical Cookies, or deleting them subsequently, the possibility of accessing the Site, using it in whole or in part, enabling or disabling certain functions or receiving certain services could be totally or partially compromised.

(iv) Analytics cookies: they are used to collect statistical information, in aggregate or non-aggregated form, on the number of users who access the Site and how they visit the Site itself. For the installation of third-party analytics cookies, the User’s prior consent is required by closing the banner that appears when accessing the Site; this consent can be freely revoked at any time by following the instructions contained in this document. The installation of analytics cookies can be blocked at any time, without the possibility of visiting the site and using its contents being compromised in any way.

This site uses the following third-party analytics cookies: Google Analytics

(v) Profiling cookies

  1. How to manage cookies

The User can manage, disable and delete Cookies:

Warning: indiscriminately blocking the receipt of all Cookies, including technical ones, the functionality of the Site may be compromised;

  • through the methods provided in the privacy policies of third parties who install analytics (or profiling) cookies.

Warning: by disabling third-party cookies, their use will no longer be possible even on other sites on which they are used, but the functionality of this site is not compromised.

  • Through the website which provides information on behavioral advertising based on profiling cookies and allows Users to oppose the installation of the main profiling cookies installed by advertising operators and used on websites: your-choices (opt-out).
  1. Data Controller

The Data Controller of Personal Data is Byom S.r.l. with headquarters in Rome, Via Sardegna n. 40, in the person of its pro tempore legal representative, contactable at email:

  1. User Rights

For more information, to know your rights and how to exercise them, please consult the Privacy Policy (above)