Privacy Policy
BEAM Privacy Policy – Updated January 2026
Introduction
At BEAM, we are committed to safeguarding your privacy. This policy explains how we collect, use, store, and protect your personal data when you use our mobile application (the "App") and related services (the "Services"). It also outlines your privacy rights and how the law protects you.
We encourage you to read this policy in full. However, for ease of access, you’ll find clear summaries and options to explore key areas in more detail.
1. Who We Are
BEAM is operated by Tutto Limited ("we", "us", "our"). We are the data controller responsible for your personal data.
Registered Address: 30 Binley Road, Coventry, CV3 1JA, UK
Email: info@beamandme.com
2. Consent to Install the App
Upon installation, we ask for your consent to collect and process personal data including identity, device data, emotional inputs, precise location data (including background location tracking), financial data, health data, and app usage data.
You can withdraw consent at any time by contacting us at the email above. Withdrawal will not affect lawful processing already undertaken.
3. The Data We Collect
We collect the following categories of personal data:
Identity & Contact Data: Name, email, device ID.
Profile Data: Interests, preferences, behavioural patterns.
Device & Technical Data: OS, mobile device ID, app usage.
Location Data: Precise GPS location, including continuous background location when the App is not actively in use. This includes entry and exit times for geofenced locations you define within the App.
Financial Data: Transaction categories and spending patterns from bank accounts you connect to the App. We do not store your bank login credentials or full account numbers.
Health Data: Activity levels, step counts, sleep patterns, heart rate, and other health metrics from wearable devices and health apps you connect to the App.
App Usage Data: Information about which apps you use and time spent looking at your screen, when you enable this feature and grant the necessary permissions.
Emotional Insight Data: Self-reported moods, app interactions, usage patterns.
Usage Data: Logs, interaction history.
Aggregated Data: De-identified trends for analytics.
We collect limited Special Category Data (e.g. mental wellbeing indicators, health data) only with explicit consent.
4. How We Collect Your Data
Direct input via forms, mood check-ins, or responses.
Automatic collection through use of the App.
Background location tracking via your device’s GPS when you enable geofence features. This occurs even when the App is closed or running in the background, subject to your device permissions.
Financial data via secure connections to bank accounts you authorise through third-party open banking providers.
Health data via integrations with wearable devices and health platforms (e.g. Apple Health, Google Fit, Fitbit) that you connect and authorise.
App usage data via your device’s screen time and usage tracking features, when you enable this and grant the necessary permissions.
5. How We Use Your Data
We only use your data where we have a legal basis. This includes:
Consent – for processing emotional and wellbeing data, background location tracking, financial data, health data, and app usage data.
Contract – to deliver services you’ve requested.
Legitimate interests – to improve BEAM, provide analytics, maintain security.
Purposes include:
Registering you as a user.
Generating personalised insight and emotional feedback.
Tracking your entry and exit from self-defined geofenced locations to provide insights into time spent at each place.
Analysing spending patterns across transaction categories to provide financial wellbeing insights.
Monitoring activity, sleep, and health metrics to provide physical wellbeing insights.
Tracking app usage and screen time to provide digital wellbeing insights.
Monitoring usage trends and performance.
Providing customer support and updates.
Protecting system security and stability.
We do not sell your data or use it for targeted advertising.
5A. Location Data and Geofencing
BEAM uses precise location data, including continuous background location tracking, to monitor when you enter and leave geofenced areas that you configure in the App. This allows us to provide insights into how much time you spend at specific locations.
Background location is only collected when you enable geofence features and grant location permissions.
You can disable background location at any time via your device settings or by removing your geofences within the App.
Location data is stored securely and is never shared with third parties for advertising purposes.
5B. Financial Data
When you connect a bank account, BEAM receives transaction data including transaction categories and amounts to help you understand your spending patterns. We use secure third-party open banking providers to facilitate this connection.
We do not store your bank login credentials.
We do not have the ability to move money or make transactions on your behalf.
You can disconnect your bank account at any time via the App settings.
5C. Health Data
When you connect a wearable device or health app, BEAM receives health metrics such as activity levels, step counts, sleep patterns, and heart rate to help you understand how your physical health relates to your overall wellbeing.
Health data is only collected when you explicitly connect a wearable or health app and grant the necessary permissions.
You can disconnect health integrations at any time via the App settings or through your wearable/health app’s permissions.
Health data is treated as Special Category Data and processed only with your explicit consent.
5D. App Usage Data
When you enable app usage tracking, BEAM receives information about which apps you use and how much time you spend looking at your screen. This helps you understand your digital habits and their relationship to your overall wellbeing.
App usage data is only collected when you enable this feature and grant the necessary device permissions.
You can disable app usage tracking at any time via the App settings or your device’s permission settings.
6. Sharing Your Data
We only share your data where strictly necessary:
Internal partners (technical or support services).
External processors (e.g. AWS, analytics tools, open banking providers) under strict data agreements.
Organisational dashboards: Only aggregated, anonymised data is ever shared with employer or institutional clients.
7. International Data Transfers
Where data is processed outside the UK/EEA, we use approved legal safeguards such as:
Adequacy decisions
Standard Contractual Clauses
UK IDTA (where applicable)
8. Data Security
Your data is stored securely on encrypted infrastructure (AWS). We:
Use HTTPS and SSL encryption for all data transfers
Encrypt all passwords and sensitive fields
Monitor for potential breaches
In case of a breach, we’ll notify regulators and users as required.
9. Data Retention
Active user data: retained while your account is active.
Inactive accounts: deleted after 24 months of inactivity.
Aggregated and anonymised data may be retained indefinitely for research and development.
10. Your Rights
You have the right to:
Access your personal data
Correct inaccurate information
Erase your data
Object to processing based on legitimate interests
Restrict how we use your data
Port your data to another provider
Withdraw consent at any time
You may also request not to be subject to fully automated decisions or insights without explanation or human review.
11. Children’s Data
The BEAM App is not intended for children under 18. We do not knowingly collect data from children without verifiable parental consent. Please report unauthorised use to info@beamresilience.com.
12. Third-Party Services and Integrations
If you connect third-party services (e.g. Apple Health, Google Fit, banking providers, screen time APIs), data sharing is governed by those platforms. We are not responsible for their terms or privacy practices.
13. Marketing and Notifications
We will only send you updates or wellbeing nudges with your consent. You can opt out at any time via in-app settings.
14. Automated Insight Generation
BEAM uses AI and algorithms to generate behavioural and emotional patterns. These are:
Based on aggregated, self-input, and passive data
Designed to empower self-awareness and habit change
Never used to make high-impact decisions without your input or consent
15. Changes to This Policy
We may update this Privacy Policy occasionally. You’ll be notified of significant changes via the App or email. Latest version will always be available in-app.
16. Contact Us or Make a Complaint
If you have any concerns, please contact our Data Protection Officer:
Name: Georgina Magnani
Email: info@beamresilience.com
Address: Tutto Limited, 30 Binley Road, Coventry, CV3 1JA
You also have the right to complain to the UK ICO:
https://www.ico.org.uk / 0303 123 1113
Effective Date: 13 January 2026