Privacy Policy Last updated: September 1, 2025
1. Introduction
This Policy explains how BeOpen processes your personal data when you use our application (the “App”) and related services (the “Services”). We apply data minimisation and transparency: we collect only what is necessary, for specific purposes, and for limited periods.
By using BeOpen, you accept this Policy. If you disagree with any part of it, please do not use the App. We comply with applicable law, including the GDPR and guidance from supervisory authorities.
2. Controller & DPO
The controller is the BeOpen publisher (the “Company”). For questions about personal data or this Policy, please contact us (see section 16).
3. Data we process
We collect the bare minimum. Specifically:
- Email address (required) — the only identity data we store.
When you sign in via an identity provider (Google, Facebook, etc.), we may receive items such as your name and profile photo, but we do not store them in our databases. They are not required to access the Services.
Minimal technical data (e.g., anonymised error logs and non-identifying diagnostics) may be generated to ensure stability and security.
Payments/subscriptions: handled by the App Stores (Apple/Google). We do not process card details; we only receive subscription status (active/expired) to deliver related benefits.
4. Data sources
- You (when creating and using the account).
- Identity providers (Google, Facebook) on sign-in — without us storing name/photo.
- App Stores for subscription status.
- Systems (minimal, anonymised technical logs).
5. Purposes
- Authentication & account management (via email).
- Security (abuse prevention, service integrity, anti-fraud/spam).
- Operation & improvement (non-identifying diagnostics).
- Support (responding to requests via the Contact page or specific forms).
- Compliance (legal/regulatory obligations).
6. Legal basis (GDPR Art. 6)
- Contract performance (providing the Services, account management, access to the App).
- Legitimate interests (security, technical improvement, fraud prevention).
- Legal obligation (limited retention where required by law).
- Consent (where necessary for a specific feature or optional form).
7. Sharing & processors
We do not sell or rent your data. We do not share your data for targeted advertising. We use processors strictly necessary to operate the Services (hosting, technical email, App Stores). They act under our instructions and provide adequate security and confidentiality safeguards.
8. Retention
- Email address: retained while your account is active, then deleted within 30 days after a deletion request.
- Technical logs: limited retention, up to 12 months, then deletion or anonymisation.
- Subscription status: retained as needed to manage related entitlements and accounting obligations.
9. Location & transfers
Data is hosted within the European Union. If a transfer outside the EU is necessary (by a processor), it occurs only with appropriate safeguards (standard contractual clauses, adequacy decision, additional measures).
10. Security
We implement appropriate technical and organisational measures (in-transit encryption, access controls, segregation, monitoring). No system is infallible; please keep your device and email account secure.
11. Your rights
Under the GDPR you have rights to access, rectification, erasure, restriction, objection and portability. You may also set post-mortem instructions. To exercise your rights, contact us (see section 16). You may lodge a complaint with your supervisory authority.
12. Minors (minimum age)
The Services are not intended for persons under 18. If we learn that an account was created by someone under 18, we will delete it and erase related data as soon as practicable.
13. Cookies & trackers
The BeOpen app does not use advertising trackers or targeting SDKs. On the website, we avoid non-essential cookies. If a feature requires a cookie, we will inform you and, where required, obtain your consent.
14. Automated decisions
We do not make decisions producing legal effects based solely on automated processing (GDPR Art. 22). We do not exploit conversation content for advertising or targeting.
15. Changes to this Policy
We may update this Policy to reflect changes to the Services or legal framework. The current version is published on this page. In case of material changes, we may notify you in the App or by email.
16. Contact
For questions about your data or to exercise your rights: support@beopen.app
To delete your account, use the in-app options or write to us at the address above. Deletion occurs within 30 days (subject to limited legal retention).