Privacy Policy

Privacy Policy

1. Introduction

Welcome to B-Green, we are committed to protecting your privacy and personal data. This policy explains:

  • which data we collect,
  • how we use it,
  • with whom we share it,
  • your rights regarding it,
  • how it is protected.

By using the website (https://www.bgreenconsulting.com/) you accept the terms of this policy.

2. Data Controller

The Data Controller is B-GREEN CONSULTING SRL, with registered office at Ruga degli Orlandi 31 – 51017 – Pescia (PT), Fiscal Code / VAT number 01864200470.

For any request regarding personal data, you can contact us at:

  • email: info@bgreenconsulting.com
  • postal address: Ruga degli Orlandi 31 – 51017 – Pescia (PT)

3. Data we collect

We may collect and process the following categories of data:

  • Identification / contact data: name, surname, email address, telephone number.
  • Browsing data: IP address, browser type, pages viewed, time spent on the site, traffic sources, and originating URL.
  • Data provided voluntarily: for example in contact forms, registration, newsletters, comments, quote requests.
  • Technical and usage data: cookies and similar data (see Cookie Policy).

4. Purposes and legal bases of processing

We process your data for the following purposes:

PurposeLegal BasisNotes / further information
Provision of the requested service (e.g., subscription, contact)Execution of the contract or fulfillment of pre-contractual measuresif you request it from us
Sending newsletters / promotional communicationsYour consent (Art. 6 paragraph 1 letter a GDPR)you can withdraw it at any time
Management and improvement of the siteLegitimate interest of the controllere.g., functionality, security, statistical analysis
Fulfillment of legal obligationsObligation provided for by lawe.g., accounting, requests from authorities
Protection of rights in judicial proceedingsLegitimate interest / fulfillment of obligationsin case of disputes

5. Processing methods and retention

The data is processed in both automated and manual ways, with adequate security tools to prevent unauthorized access, loss, or destruction of data.

We keep your data only for the time necessary for the purposes for which it was collected:

  • contact and identification data until consent is revoked or the relationship ends;
  • browsing data for a limited time (e.g., 6–24 months, except for legal obligations);
  • data relating to accounting obligations within the terms of the law (e.g., 10 years).

6. Communication and dissemination of data

Your data may be communicated to:

  • external parties who perform services on our behalf (e.g., hosting, maintenance, IT services, email marketing),
  • competent authorities for legal obligations,
  • consultants and professionals, where necessary,
  • any transferees of the business in case of merger, sale, or reorganization.

We do not sell your data to third parties.

7. International data transfers

If we use suppliers located outside the European Union, we guarantee that data transfer takes place only to countries with adequate protection or through standard contractual clauses or other instruments compliant with the GDPR.

8. Rights of the data subject

As a data subject, you have the following rights:

  • right of access — to obtain confirmation that we are processing your data and receive a copy;
  • right to rectification — to correct inaccurate data;
  • right to erasure (“right to be forgotten”) — in cases provided for by law;
  • right to restriction of processing — in foreseen cases (e.g., litigation contexts);
  • right to data portability — to receive the data in a structured format and transmit it to another controller;
  • right to object — to object to processing for legitimate reasons, unless the legitimate interests of the controller prevail;
  • right to withdraw consent — when processing is based on consent, you can withdraw it at any time, without prejudice to the lawfulness of the previous processing;
  • right to lodge a complaint with the Supervisory Authority for data protection (www.garanteprivacy.it).

To exercise these rights, contact us via email at the address indicated above.

9. Data security

We adopt suitable technical and organizational measures to protect personal data from loss, unauthorized disclosure, unauthorized access, alterations, and destruction. These include:

  • encryption (where possible),
  • access limitation,
  • regular backups,
  • staff training,
  • use of secure protocols (e.g., HTTPS).

10. Changes to the policy

We may update this policy periodically, also due to regulatory changes or the evolution of our services. The updated version will be published on this page with an indication of the revision date.

Version Date: 08/10/2025