Privacy Policy
Lestis Privacy Policy (EU Regulation 2016/679 - GDPR)
This policy describes the methods of processing personal data of users (whether private individuals or company representatives) who visit the website Lestis, located at https://lestis.homes ("Site"), to request information or quotes about our software services (SaaS).
Note on Roles: Binary Chronicles (operating under the Lestis brand) acts as the Data Controller for the data collected on this Site. The data of guests of the Accommodation Facilities using our platform are managed by the Facility itself, where Binary Chronicles acts solely as the Data Processor.
1. Identity of the Data Controller
The Data Controller is:
| Detail | Information |
|---|---|
| Data Controller Legal Name | Binary Chronicles N° 302220120 |
| Registered Office | Chitaia street, N 38, Apartment 1 Chugureti district, Tbilisi, Georgia |
| Privacy Email Contact | Contatti |
| EU Representative (Art. 27 GDPR) | Not applicable - Company under the small-sized regime Art. 3.2 GDPR. |
2. Data Collected, Purposes, and Legal Basis
Binary Chronicles processes personal data only for the following essential purposes:
| Purpose of Processing | Examples of Data Processed | Legal Basis (Art. 6 GDPR) |
|---|---|---|
| Responding to contact and quote requests | Name, email, phone number, optional data provided in forms (e.g., facility name, size). | Performance of pre-contractual measures requested by the data subject (Art. 6.1.b). |
| Execution of the SaaS Contract (Actual Customers) | Tax data, billing data, login data, and technical data for support. | Performance of a contract (Art. 6.1.b) and Compliance with legal and tax obligations (Art. 6.1.c). |
| System Security and Functional Analysis | IP address, access logs, technical navigation data. | Legitimate interest of the Controller in ensuring the security and functionality of the platform (Art. 6.1.f). |
3. Processing Methods and Retention
Your personal data is stored for the time strictly necessary in relation to the purposes described:
- Contact and Quote Data (Purpose A): Stored for 6 months from the end of the negotiation or quote request.
- Contractual, Tax, and Accounting Data (Purpose B): Stored for the period required by law (usually 10 years in Italy/EU, for tax and civil obligations).
- Log and Security Data (Purpose C): Stored up to 6 months.
At the end of the retention period, the data is deleted or irreversibly anonymized.
4. Data Transfer Outside the EU
Since Binary Chronicles has its registered office in Georgia (a Non-EU State), your personal data is also processed in that country.
This transfer is legitimized by the necessity to execute the SaaS contract signed with you and/or to comply with pre-contractual measures requested by you. Binary Chronicles also adopts appropriate safeguards under Art. 46 of the GDPR, such as the use of Standard Contractual Clauses (SCCs) where necessary for sub-processors.
The hosting and database infrastructure is provided through Google Cloud Platform (GCP), with data centers located in Belgio.
5. Recipients of Data (Sub-Processors)
Your data may be communicated to the following entities acting as Data Processors (Sub-Processors) of Binary Chronicles:
- Tax and legal consultants of Binary Chronicles.
- Hosting and cloud service providers (Google Cloud Platform).
- Web analysis services (exclusively for functional and security analysis of the Site).
These entities will process the data as Data Processors, Autonomous Controllers, or Persons Authorised to Process, depending on the case.
6. Reference to Cookie Policy and User Rights
Legal Basis of Processing: The processing of data is based on the necessity to fulfill your pre-contractual requests or to comply with an existing contract or legal obligations (Art. 6.1.b and 6.1.c GDPR).
Cookie Policy: For all details relating to cookies (only technical and functional analytical) and trackers implemented by the Site, please consult our specific Cookie Policy.
Data Subject Rights: You have the right to access, rectify, erase, restrict processing, exercise data portability, and object to processing (Art. 15-22 GDPR).
To exercise these rights, please send a request to the Data Controller's email address. You also have the right to lodge a complaint with a Supervisory Authority (Privacy Guarantor) in your country of residence.
Last updated: 22 October 2025