This Privacy Policy is intended to inform you of how Beepiz processes your personal data under the General Data Protection Regulation (GDPR).
The Beepiz application is a Lone Worker Alert Device and is designed to send alerts to a monitoring person in the following cases:
Alerts can be sent automatically using the phone's technologies (gyroscope, accelerometer, GPS), or through manual actions performed by the user of the application (SOS and aggression).
It is important to specify that depending on your use of Beepiz (private or professional), as well as the subscription offer you have chosen, the purposes, the data collected, and the recipients of this information may vary.
Beepiz is a registered trademark of the company SETIPP, a company with a capital of 1,000,000 euros, registered with the R.C.S. of Tours under number Tours B 334 427 044.
Beepiz reserves the right to modify this Privacy Policy. Any modification will take effect immediately. We invite you to consult it regularly to stay informed of the latest applicable version online.
The use of your data by Beepiz may vary according to the different purposes associated with the offer you have subscribed to.
It should be noted that, depending on the specific version of Beepiz you use, data processing may be carried out as a processor in accordance with Article 28 of the GDPR, concerning the implementation of the Lone Worker Alert Device. This involvement as a processor denotes a specific relationship where Beepiz acts on instruction and within the framework defined by the data controller, in compliance with the requirements of the General Data Protection Regulation (GDPR).
If you are a Beepiz user with an Individual Offer (private use):
| Purposes | Legal Basis |
| Creation and management of your user account | Consent |
| Sending informational mailings on the use of Beepiz and its features | Legitimate interest |
| Alert notifications via SMS | Consent |
| Hosting of Beepiz data | Consent |
| Application maintenance and support management | Consent |
| Emailing on Beepiz and its associated commercial offers | Consent |
If you are a Beepiz Standard/Premium/Enterprise user: In this case, your company is the Data Controller.
The processing activities carried out by Beepiz as a processor for the Data Controller subscribed to our solution are listed below.
It is important to remember that the Data Controller must respect the fundamental principles set out by the GDPR. This notably includes defining the legal basis for the processing implemented as part of the management of the Lone Worker Alert Device, the relevance of the data processed for this purpose, in accordance with the principle of data minimisation, as well as the data retention period.
If you are a Beepiz user with an Individual Offer (private use):
If you are a Beepiz Standard/Premium/Enterprise user:
Beepiz will never process your personal data for purposes incompatible with those previously stated without having informed you beforehand and, if necessary, collected your explicit consent.
Depending on the subscribed offer, Beepiz may collect personal data about you. This information is also linked to the different permissions you grant in the application (heart rate, geolocation, voice recording, etc.).
This information will only be processed under the following conditions:
Beepiz does not collect any geolocation data in the background; the user must expressly activate a monitoring session in the application for this. Furthermore, the collection of certain data such as heart rate or voice is only processed if the user triggers an alert in the application.
| Data Collected | Individual Offer | Standard, Premium, Enterprise Offers |
| Last Name | x | x |
| First Name | x | x |
| Username | x | |
| x | x | |
| Licence association or QR code | x | |
| Phone number | x | x |
| Phone operating system (IOS, Android) | x | x |
| Phone IMEI | x | |
| User Group | x | |
| Type of use (private or professional) | x | x |
| Permissions granted by the user in the application | x | x |
| User Geolocation | x | |
| Voice recordings in a white zone (no network) | x | |
| Voice recordings (telephone doubt removal) | x | |
| Voice recordings for reports | x | |
| Heart rate (for Apple Watch owners) | x | |
| Portal navigation statistics | x | |
| Event logging on the portal | x |
As part of your use of the DATI, your data will be for the attention of the authorised services of Beepiz and its various service providers (located in the European Union).
It will also be for the attention of your company, as Data Controller.
| Beepiz Subcontractors | Object of the service | Data Location |
| OVH | Data hosting and backup management | France |
| AWS | Data hosting and backup management | France |
| SOTEL | Remote monitoring (if offer subscribed) | France |
| G4S | Remote monitoring (if offer subscribed, customers based in Belgium) | Belgium |
| Protectas | Remote monitoring (if offer subscribed, customers based in Switzerland) | Switzerland |
| SIRMAD | Remote monitoring (if offer subscribed) | France |
| Sarbacane | Sending emails to portal users | France |
| Message Bird | Sending SMS for alerts | EU |
In compliance with the provisions of the General Data Protection Regulation, your personal information is processed only within the territory of the European Union. We pay particular attention to the selection of our subcontractors to ensure that they comply with the requirements of the GDPR.
If you are a Beepiz user with an Individual Offer (private use):
Your data is kept for as long as you use Beepiz with the Individual Offer, and up to one year after a period of inactivity on your part before their definitive deletion.
| Data Collected | Retention Period |
| Last Name | One year after the last use of Beepiz |
| First Name | One year after the last use of Beepiz |
| Username | One year after the last use of Beepiz |
| One year after the last use of Beepiz | |
| Phone number | One year after the last use of Beepiz |
| Phone operating system | One year after the last use of Beepiz |
| Type of use (private or professional) | One year after the last use of Beepiz |
If you are a Beepiz Standard/Premium/Enterprise user:
Your data is kept for the entire duration of your employer's Beepiz subscription and according to the legal retention periods to which the latter may be subject.
Some of your data benefits from specific retention periods:
| Data Collected | Retention Period |
| User Geolocation | 18 months |
| User Voice | White zone: 90 days. Doubt removal in case of alert (Remote Monitoring): 60 days by our provider SOTEL. Reporting: 6 months after the report is closed. |
| Heart rate (for Apple Watch owners) | No retention |
| Event Logging | 18 months of retention by Beepiz. 90 days in case of remote monitoring by the provider SOTEL. |
| Reports (photos, videos, location) | 5 years after the report is closed by the manager |
If you have agreed to receive commercial offers from Beepiz, you can, at any time, change your choice by clicking on the unsubscribe link at the bottom of our emails.
In application and within the limits of the applicable provisions on personal data protection, you have the following rights:
| Right | Description |
| Right of Access to your data | You can obtain confirmation from Beepiz as to whether or not your data is being processed and, when it is, access to all data and information held by Beepiz. |
| Right to Rectification of your data | You can obtain from Beepiz, as soon as possible, the rectification of data concerning you that is inaccurate or erroneous. You can also request that your data be completed, if necessary. |
| Right to Erasure of your data | Except for legal exceptions, you can ask Beepiz for the erasure of your data, if, for example, you consider that the processing of your data is no longer necessary for the purposes for which they were collected. |
| Right to Data Portability | You have the possibility to recover part of your data in an open and machine-readable format or to ask Beepiz to transmit it to another organisation. Only data that you have actively and consciously provided to Beepiz (for example, the data you entered in an online form) or data generated during the use of a service or device in the context of the conclusion or management of your contract, and which are processed automatically, based on consent or the performance of a contract, are concerned by this right. |
| Right to Object | You can object to your data being used for a specific purpose, provided you state the reasons relating to your particular situation. However, in the case of commercial prospecting, you can object without reason and at any time (see right to withdraw consent below). |
| Right to Restriction of Processing of your data | In the event that you dispute the accuracy of the data used by the data controller or that you object to your data being processed, the data controller may proceed with a verification or examination of your request for a certain period. During this period, you have the option of asking them to no longer use your data; they must, however, keep it. Conversely, if the data controller plans to erase your data, you can ask them, under this right, to keep the data to exercise a legal right, for example. |
| Right not to be subject to Automated Decision-Making | You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. |
| Right to Withdraw Consent | When the processing of your personal data is based on your consent (sending our electronic commercial offers, for example), you have the possibility to withdraw your consent at any time. |
| Right to give Post-mortem Instructions | You have the possibility to define instructions relating to the retention, erasure, and communication of your data after your death. These instructions define how you wish your rights over your data to be exercised after your death. You can modify or revoke your instructions at any time. |
For more information on your rights, you can consult the CNIL website: https://www.cnil.fr/fr/les-droits-pour-maitriser-vos-donnees-personnelles.
To exercise any of your rights, you can send your request to the following contacts:
Any request must specify the reason for the request in the subject line (exercise of the right of access, objection, etc.) and be accompanied by any element justifying your identity.
Beepiz will send you its response within a maximum period of one (1) month from the date of receipt of your request. This period may, however, be extended by two (2) months due to the complexity and number of requests.
If you believe, after having contacted us, that your "Informatique et Libertés" (Data Protection and Liberties) rights are not being respected, you can submit a complaint to the CNIL, directly on the CNIL Website or by post to: CNIL - 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07.2.