PRIVACY POLICY

Effective Date:  25/03/2026

Controller: Bee Health Ltd, Lancaster Road, Carnaby, Bridlington,

East Yorkshire, YO15 3QY, United Kingdom,  privacy@beehealth.com

1. Introduction

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website www.beehealth.com. We are committed to protecting your privacy and complying with applicable data protection laws, including the EU General Data Protection Regulation and the UK General Data Protection Regulation (together, the “GDPR”).2. What Data We Collect

We may collect and process the following categories of personal data:

  • Identity Data: Name, username, or similar identifier.
  • Contact Data: Email address, phone number.
  • Technical Data: IP address, browser type, operating system, device information.
  • Usage Data: Information about how you use our website.
  • Marketing Data: Preferences in receiving marketing communications.
  • Communication Data: Content of messages sent via forms or email.

2. How We Collect Your Data

We collect data through:

  • Direct interactions (e.g., contact forms, newsletter sign-ups)
  • Automated technologies (e.g., cookies, server logs)
  • Third-party services (e.g., analytics providers)

Any third parties that process your data on our behalf act as data processors under written agreements consistent with applicable regulations.

3. Purpose and Legal Basis for Processing

We process your personal data for the following purposes:

Purpose

Legal Basis

To provide and maintain our website

Legitimate interests to operate and secure our online services

To respond to inquiries

Consent (opt-in and right to opt out at any time) or contractual necessity

To improve user experience

Legitimate interests to analyze and enhance site performance

To send marketing communications

Consent (opt-in and right to opt out at any time)

To comply with legal obligations

Legal obligation

To maintain security and prevent fraud

Legitimate interests to ensure network and information security

4. Data Sharing

We may share your data with:
• IT service providers
• Analytics and marketing platforms
• Legal and regulatory authorities (if required)
We ensure all third parties respect the security of your data and comply with GDPR. All processors act under written contracts that require them to process data only on our instructions and implement appropriate security measures.

5. International Transfers

If we transfer your data outside the European Economic Area (EEA) or the United Kingdom, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) and the UK International Data Transfer Agreement (IDTA).

Bee Health Ltd currently does transfer personal data internationally.

If data is transferred, this may include transfers to the United States, where our IT service providers and group entities are located.

You can request a copy of these safeguards or further details by contacting Privacy@beehealth.com.

6. Data Retention

We retain your personal data only as long as necessary for the purposes stated above or as required by law. Retention periods are determined based on the type of data, the purpose for which it was collected, legal requirements, and our legitimate business needs.8. Your Rights

Under the GDPR, you have the right to:
• Access your personal data
• Rectify inaccurate data
• Erase your data (“right to be forgotten”)
• Restrict or object to processing
• Data portability
• Withdraw consent at any time (where processing is based on consent)
To exercise your rights, contact us at Privacy@beehealth.com. You have the right to make a complaint at any time to the relevant data protection authority if you believe we have not handled your data properly. Exercising these rights is free of charge.

Providing your personal data through this website is voluntary, but some features (such as contact forms or newsletter subscriptions) may not function without it.

7. Security

We implement appropriate technical and organizational measures to protect your data, including encryption, access controls, and regular audits. We limit access to personal data to those employees and service providers who need it for legitimate business purposes and ensure they are bound by confidentiality obligations.

8. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal or similarly significant effects for individuals.

8. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website. We will indicate the date of the most recent update and, if substantial changes are made, notify you via a banner or email (if appropriate).

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on our website, analyze traffic, and personalize content.

What Are Cookies?

Cookies are small text files stored on your device when you visit a website. They help us remember your preferences and understand how you interact with our site.

Types of Cookies We Use

  • Essential Cookies: Necessary for the website to function properly (e.g., session management, security).
    • Analytics Cookies: Help us understand website usage and improve performance.
    • Marketing Cookies: Used to deliver relevant ads and track campaign effectiveness.
    • Preference Cookies: Remember your settings and choices (e.g., language, region).

Cookie Consent

When you first visit our website, you will be presented with a cookie banner asking for your consent to use non-essential cookies. You can:
• Accept all cookies
• Reject non-essential cookies
• Customize your preferences
You can change your cookie settings at any time via our [Cookie Settings page] or your browser settings.

Legal Basis for Cookies

  • Essential cookies: Legitimate interests (Article 6(1)(f) GDPR)
    • Non-essential cookies: Consent (Article 6(1)(a) GDPR)

Third-Party Cookies

We may use third-party services (e.g., Google Analytics, Meta Pixel) that place cookies on your device. These providers may process your data outside the UK or EEA under appropriate safeguards.

Cookie Retention Periods

Cookies are stored on your device for different lengths of time depending on their purpose:

  • Session cookies are temporary and expire once you close your browser.
  • Persistent cookies remain on your device for a defined period, which typically ranges from a few days up to 12 months (for example, analytics and preference cookies), or until you delete them manually.

We retain cookie-related data only as long as necessary for the purpose for which it was collected and in accordance with applicable data-protection laws.

10. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at:

[Responsible Person]

Email: Privacy@beehealth.com

Address: East Yorkshire, YO15 3QY, United Kingdom