Privacy Policy – Cookie Law

Website Privacy Policy

This Policy applies to the processing of Users’ Personal data that will be collected by this Website.

1. Data Controller

The Data Controller of Personal Data is Byom S.r.l., established in Roma, Via Sardegna no. 40, in person of its legal representative pro tempore, that can be reached at the email: (hereinafter “Byom” or “us” or “Data Controller”).

2. Personal Data in scope and collection procedure

Personal Data collected through this Website include: name, surname, company, position and usage Data.

Full details on each type of Data are provided in the dedicated sections of this privacy policy or through specific information texts displayed before data are collected.

Personal Data may be freely provided by the User through the contact forms on this Website, collected automatically when browsing this Website in the case of usage Data, or collected through Cookies or other tracking and profiling tools.

For more information on the use of Cookies, please see the Cookie Policy (link)

3. The purposes of Personal Data Processing

The Data provided by Users or collected by third parties shall be processed by us subject to the limits, and according to the modalities, provided by the GDPR for the following purposes:

a) to process requests of information and/or contacts and to respond to such requests;

b) for the possible provision of the consulting services offered by Byom;

c) for statistical purposes, subject to anonymisation.

4. Mandatory or optional provision of Data – Consequences of the possible refusal

The provision of Data for the purposes referred to in points a) and b) above is mandatory as necessary to process Users’ requests for information and/or contact and to provide the consulting services. The Users’ failure to provide some Personal Data may prevent the correct functioning of this Site.

The User assumes responsibility for the Personal Data of third parties obtained, published or shared through this Website and guarantees to have the right to communicate or disseminate them, thus releasing the Data Controller from any liability towards third parties.

5. Modalities of processing

Byom, as Data Controller pursuant to Article 4, no. 7) of the GDPR, is responsible for the legitimate and correct processing of Users’ Personal Data and adopts technical and organizational security measures appropriate to ensure their protection and to prevent unauthorized access, disclosure, alteration or destruction of Personal Data.

The processing is carried out through electronic and/or telematic systems as well as in paper means, with organizational modalities and with logics strictly related to the purposes indicated and in any case such to ensure the security and confidentiality of the same Data.

In addition to the Data Controller, in some cases, Data may be accessed by internal data processors, including Byom employees and otherwise cooperating with it, or external persons by virtue of a prior appointment as Data Processors and required to an appropriate confidentiality obligation, including IT service providers, analytics service providers, management service providers, external professionals and consultants, communication agencies, mail carriers.

The updated list of Data Processors shall be made available on request to the data subject and shall be sent by email to the following address:

6. Legal basis of the processing

Personal Data are processed on the basis of the legitimate interest of the Data Controller in carrying out his business activity, including the provision of services, the improvement and development of communication to Users and Customers, the improvement of its operational management and the increase of the security of the Site; the processing can also be carried out to execute a contract or to fulfill a legal obligation or if the User has given consent for one or more specific purposes, until the User withdraws his consent.

7. Data retention time

Your Data will be processed for the period of time necessary to perform the service requested by the User or otherwise necessary in relation to the purposes set out in this Policy. In any case, once the maximum Data retention period has elapsed, they will be automatically deleted or rendered anonymous.

8. Data recipients – Transfer of Data to Third Countries or International Organizations

In some cases, the Users’ Personal Data might be processed outside of the European Economic Area (“EEA”), such as the United States. Also in such cases, Byom warrants that Data, processed outside of the EEA, shall be protected in the same way as it would be if they were processed within the EEA. For this purpose, Byom also guarantees that during the processing an adequate level of protection is afforded, and ensures that at least one of the following safeguards is implemented:

i) Data is transferred to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission;

ii) data protection standard contractual clauses as provided by Chapter V – Section 5 of GDPR shall be used; and

iii) where personal Data is transferred to third party providers based in the US, data may be transferred to them if they have self-certified under the Privacy Shield framework.

For information on the countries to which the Data may be transferred, please contact the following address

The Data may also be disclosed to other parties in order to fulfill a legal obligation or for the assessment, exercise or defense before judicial courts of a Byom’s, our Clients’ or others’ right. This may include transmission to public authorities, or third parties authorized in connection with investigations for infringements of law or fraudulent use of our services that may expose Byom or others to legal liabilities.

9. Data Subject’s rights

The data subject is granted the exercise of the following rights:

a) the right to obtain confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the information concerning the purposes of the processing, the categories of personal data concerned, the recipients or categories of recipient to whom the personal data may be disclosed, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;

b) the right to request the rectification of inaccurate personal data;

c) the right to object the processing where carried out on a legal basis other than consent;

d) the right to withdraw the consent previously given;

e) the right to request for the deletion of personal data or the restriction of processing or its anonymisation;

f) the right to lodge a complaint with a supervisory authority;

g) the right to request information on which source the personal data originate, whether they have not been collected by the data subject;

h) the right to know the existence of an automated decision-making, including profiling;

i) the right to data portability.

The exercise of such rights is not subject to any form constraint and is free of charge. For this purpose, the data subject may contact the Data Controller by sending a registered letter to the address in point 1 above, or by e-mail using the following address:

Website Cookie Policy

This Website uses the so-called Cookies and other tracking technologies for the collection of Personal Data.

This policy has therefore the purpose to illustrate:

  • the usage of the Cookies on this Website;
  • the User’s rights in relation to the Data collected through Cookies.

1. What are Cookies

Cookies are small text files installed by the sites browsed by a User in the browser, where they are stored, and then transmitted to the same sites at the following browsing session on the same site.

On this Website Cookies help the Data Controller to provide a service requested by the User based on the purposes described in the Privacy Policy.

Cookies used on this Website are installed by the Data Controller and by third parties and may be:

(i) Session Cookies: they store the necessary information during the browsing session and are deleted immediately after the session expires, or by closing the browser;

(ii) Permanent Cookies: they are stored on the hard disk and this Website reads them at each new browsing. Permanent Cookies cease to function on the pre-determined expiration date.

(iii) Technical Cookies: they are used to enable the User to browse this Website, save the session, save preferences and enjoy a better service by browsing according to the criteria selected by the User. By blocking the installation of technical Cookies, or deleting them afterwards, the ability to access this Website, to use it in whole or in part, to enable or disable certain functions or to receive certain services may be fully or partially impaired.

(iv) Analytics Cookies: they are used to collect statistical information, in an aggregate or non-aggregated form, concerning the number of users accessing this Website and how they browse it. For the installation of third-parties’ analytics Cookies the prior consent of the User is required by closing the banner that appears when accessing the Website; this consent can be freely withdrawn at any time by following the instructions contained in this document. The installation of analytics Cookies can be blocked at any time, without compromising in any way the chance to browse this Website and enjoy its contents.

This Site uses the following third-parties’ analytics Cookies: Google Analytics

(v) Profyling Cookies[from the site it is not clear: confirm that the Byom site does not use profiling cookies].

2. How to manage Cookies

The User can manage, disable and delete Cookies:

Warning: by indiscriminately blocking the reception of all Cookies, including technical ones, the functionality of this Website might be compromised;

  • through the modalities provided in the privacy policies of third parties who install analytics (or profiling) Cookies.

Warning: by disabling third parties’ Cookies, their usage shall no longer be possible even on other sites on which they are used, but the functionality of this site is not compromised.

  • Through the website youronlinechoice which provides information on behavioural advertising based on profiling cookies and allows Users to object the installation of the main profiling cookies installed by advertising operators and used on websites: (opt-out).

3. Data Controller

The Data Controller of Personal Data is Byom S.r.l. established in Rome, Via Sardegna no. 40, in person its legal representative pro tempore, that can be reached at the email:

4. User’s rights

To get more information, to know your rights and how to exercise them, please consult the Privacy Policy (link)

Byom S.r.l.
Via Sardegna 40 – 00187 Rome (Italy)
Ph: +39 06 68882327
Fax: +39 06 68882336

This function has been disabled for Byom.