Policies
This page applies only to BeeBuzz, the service we operate at beebuzz.app. It covers how BeeBuzz handles personal data, account access, device registration, push delivery, and the limited cookies required to run the service.
Last updated: April 23, 2026
Questions? Contact us or email support@beebuzz.app
Privacy Policy
Who we are
BeeBuzz is operated by Luca Corbo, an individual developer based in the EU. For data protection purposes, Luca Corbo is the controller of personal data processed through the BeeBuzz service operated at beebuzz.app. In this page, "BeeBuzz", "we", "us", and "our" refer to Luca Corbo as the operator of that service.
You can reach us at support@beebuzz.app for any privacy or data protection questions.
Our approach
BeeBuzz is built to keep data collection narrow. We do not sell personal data. We do not use advertising trackers on BeeBuzz. We only keep the account, device, and delivery data needed to run the service.
Information we collect
Depending on how you use BeeBuzz, we may store:
- your email address for sign-in, account access, and support
- basic account records such as your user ID, account status, signup reason (when provided), and paired devices
- session records and essential cookies used to keep you signed in securely
- device names you choose and Web Push subscription details used to deliver notifications
- public encryption keys used for end-to-end delivery on paired devices
- delivery metadata needed to route messages, remove invalid subscriptions, and enforce limits
- limited operational logs and IP-based security data used for abuse prevention and debugging
Why we process your data
We process personal data for the following purposes and legal bases:
- Contract / service delivery: account creation, sign-in, device pairing, push delivery, and related service functionality. This processing is necessary to provide BeeBuzz to you.
- Legitimate interests: abuse prevention, rate limiting, security logging, and debugging. These activities protect the hosted service and its users.
We do not currently rely on consent as a legal basis. If that changes in the future (for example, if we add optional analytics or marketing emails), we will update this policy and request your consent before processing.
Messages and delivery
BeeBuzz supports two delivery models. In server-trusted delivery, BeeBuzz can process notification payloads and attachments in order to send them to your paired devices. In end-to-end encrypted delivery, BeeBuzz stores and forwards only ciphertext, not plaintext message bodies.
Even in end-to-end encrypted mode, BeeBuzz still processes metadata needed to operate the service, such as account records, device registrations, public encryption keys, delivery state, and temporary attachment or envelope records.
Third-party services
BeeBuzz uses third-party services where needed to operate. The following third parties may process personal data on our behalf:
- Web Push providers operated by browser and platform vendors (such as Google, Mozilla, and Apple) handle the technical delivery step required to transport push notifications to your devices.
- GlitchTip is used for error monitoring and debugging of unexpected service failures. It may process limited technical metadata related to requests and server errors. BeeBuzz is configured not to intentionally send message contents, email addresses, tokens, or other sensitive data to this service.
- Resend is used to send account emails such as sign-in or access-related messages. Your email address and basic email delivery metadata are processed by Resend when those messages are sent.
International transfers
Some third-party services used by BeeBuzz, such as Resend and browser push providers, may process data outside the European Economic Area. Where applicable, these transfers rely on the safeguards provided by those services, such as Standard Contractual Clauses or adequacy decisions.
Data retention
We keep data for as long as it is needed to operate BeeBuzz. Account and device data are kept while your account is active. We also keep per-account daily usage summaries to provide usage history and operate the service. Session data, temporary delivery records, raw event records, and operational logs are retained for shorter periods and removed as they expire or are no longer needed. If you request account deletion, we will delete the personal data associated with your account unless we must retain limited information for legal compliance, security, abuse prevention, or the establishment, exercise, or defense of legal claims.
Your rights
Under applicable data protection law, you have the right to:
- access the personal data we hold about you
- request correction of inaccurate data
- request deletion of your account and associated data
- request restriction of processing
- request data portability
- object to processing based on legitimate interests
- lodge a complaint with your local data protection supervisory authority
To exercise any of these rights, visit our contact page. BeeBuzz does not currently provide a self-service account deletion button. We may need to verify your identity before acting on a request, and we will respond within the time required by applicable law.
Required data
A valid email address is required to create and access a BeeBuzz account. Without it, we cannot provide the hosted service.
Automated decision-making
BeeBuzz does not use automated decision-making or profiling with legal or similarly significant effects.
Your choices
Beyond formal data rights, you also have practical options:
- you can remove paired devices from your account
- you can contact us to request deletion of your account and associated data
- you can self-host BeeBuzz if you want full control over storage and retention
Changes to this policy
We may update this Privacy Policy as BeeBuzz evolves. Changes will be posted on this page with an updated "Last updated" date.
Terms of Service
Scope
These terms apply only to the BeeBuzz service we operate at beebuzz.app. The BeeBuzz source code is separately licensed under AGPL-3.0-only for self-hosted use.
Acceptance
These terms apply to BeeBuzz as served by us through the public BeeBuzz site and Hive app at beebuzz.app. By requesting access, signing in, or using the service, you agree to these terms.
Your responsibilities
- You must provide a valid email address that you control in order to access your account.
- You are responsible for activity performed with your account, API tokens, and paired devices.
- You may not use BeeBuzz for abusive traffic, unlawful content, credential abuse, or attempts to disrupt the service or other users.
Our rights
- We may rate-limit, suspend, or block access when needed to protect the service, enforce beta access rules, or respond to misuse.
- We may change, limit, or discontinue beta features while the product is still evolving.
Termination
You may stop using BeeBuzz at any time. If you want your account deleted, contact us to request deletion. We may suspend or terminate your access if you violate these terms or if continued access would harm the service or other users.
Disclaimers
BeeBuzz is provided on an as-available basis during its beta period with no uptime guarantee. Delivery depends on third-party browser and push infrastructure, so uninterrupted or error-free operation cannot be guaranteed.
BeeBuzz is not intended for emergency, life-safety, medical, or other time-critical notifications.
You remain responsible for the notification content you send through the service and for complying with the laws and policies that apply to that content.
Liability
To the extent permitted by applicable law, we are not liable for indirect, incidental, or consequential damages arising from your use of BeeBuzz.
Governing law and disputes
These terms are governed by the laws of Italy. Any dispute arising from or relating to these terms or your use of BeeBuzz shall be submitted to the exclusive jurisdiction of the courts of Italy, unless mandatory consumer protection rules in your country of residence provide otherwise.