Pursuant to current personal Data Protection law, GB s.r.l.s., informs Users of its online Platform of the company’s Privacy and Data Protection Policy which it applies to the treatment of the personal data that the User voluntarily provides to access the Site at  and to the corresponding mobile application.

By providing s.r.l.s. or any of its subsidiaries with their personal information via the electronic forms on the company website or app, the User expressly gives their consent to s.r.l.s. or any of its subsidiaries to handle this data under the terms set forth in this clause of the Confidentiality and Data Protection Policy and for the purposes hereafter expressed.

Before registering into or any of its subsidiaries Users should read this Privacy and Data Protection Policy. By clicking the button “Sign up”, Users manifest that they have read and that accept  the present Privacy and Data Protection Policy.

On registering, the User will be required to provide certain information in order to create their profile. Customers should provide the following information: username, email address, telephone number and credit card details. When authorised by Users, s.r.l.s. shall gather data related to their location, including their geographical location in real time via the Users’ computer or mobile device.

Once registration has been completed, all Users may access their profile and add or edit the information, as they deem appropriate. The information and data provided by the User shall be permanently available in their User Account and may be modified via the edit profile option.

The User agrees to enter real and accurate information. The User shall be solely responsible for any damages which s.r.l.s. or third parties may suffer because of a lack of veracity, inaccuracy, applicability, or authenticity of the information provided.

The information gathered by s.r.l.s. shall only be used for the purpose defined in the General Conditions of Use of the website which can be seen here.

●      Applicable legislation to Users Personal Data (Personal Data Protection)

●      Who is responsible of the Users Data?

●      What personal information about Users does s.r.l.s. gather? 

●      Why s.r.l.s. collects information about Users?

●      Does s.r.l.s. share the information it receives?

●      What rights do Users have?

●      How do we protect personal data from Users?

●      Notifications and modifications

● Applicable legislation to Users Personal Data (Personal Data Protection)

As part of its commitment to comply with the current legislation concerning data protection at all times,  Users are hereby notified that personal information supplied to the website shall be subject to automatic treatment and become part of electronic files belonging to s.r.l.s., under the responsibility of s.r.l.s., a company duly included in the General Register of the Italian Agency for Data Protection, for the purposes set forth on the website: management of the Users registered in the s.r.l.s. Platform.

Basic Information about Data Protection

Identity: GB s.r.l.s. - P.IVA IT11208861002

Purpose: Management and provision of requested services

Legitimacy: Compliance with contractual relationship, legitimate interest and consent of the User

Rights: Access, rectify and delete the data, as well as other rights, as explained in the additional information.

In accordance with the applicable legislation, hereafter is the Privacy Policy that s.r.l.s. uses in the treatment of the data of the Users registered in its Platform. 

●     Who is responsible of the Users Data?

All personal information that is provided or collected by  will be mainly treated by, s.r.l.s. which is the responsible of the treatment, with the followings contact details:

Responsible for the treatment of Personal Data

Identity: GB s.r.l.s. – P. IVA IT15941111005

Postal Address

Legal Address: Via Pilozzo 17 – 00078 Monte Porzio Catone (Rm) - Italy

Telephone: (+39) 069421899

● What personal information about customers does s.r.l.s. gather?

The Platform (which includes the Website and the "App") is used by both the Users and the Suppliers. The Suppliers group includes the Independent Professionals that collaborate with s.r.l.s. and the stores with whom s.r.l.s. maintains a commercial agreement ("Partners"). The information s.r.l.s. receives from its Users is collected as shown below. s.r.l.s. collects information from the user that this contributes directly and another that is contributed indirectly through the use of the s.r.l.s. platform

1. Information that the User facilitates to s.r.l.s. directly 

• Registration data: the information the User provides s.r.l.s. when creating an account in the Platform: the username and the email address.

• Data from the User Profile: the information Users add in the Platform in order to use the services provided by s.r.l.s., that is, the mobile phone and the delivery address of the User. The User can see and edit the personal data of their profile at any time they wish. s.r.l.s. does not store the credit card details of the User, but these are given to providers of electronic payment services with a license, which will receive directly and store the data to facilitate the process of payment to the User and will manage the same on behalf of s.r.l.s.. In no case this data is stored in the servers of s.r.l.s.. The User may, at any time, delete the data of their cards linked to their account. With this action, the service providers will proceed with the deletion of the data and it will be necessary to re-enter or select them in order to place new orders through the Platform.

• Additional information that the User wants to share: information that the User provides to s.r.l.s. with other purposes. For example, a photograph or the billing address, in case the User requests to receive invoices.

• Information about the communications made with s.r.l.s.: s.r.l.s. will have access to information that Users provide for the resolution of doubts or complaints about the use of the platform.

The processing of these data by s.r.l.s. is necessary in order to comply with the contractual relationship established. If the User does not provide them, the services requested may not be available and s.r.l.s. will not be able to provide them.

2.  Information that the User facilitates to s.r.l.s. indirectly

Data from usage: s.r.l.s. collects usage data about the User whenever he/she interacts with the s.r.l.s.  services.

Application and device data: s.r.l.s. collects data from the device and application the User uses to access the services of s.r.l.s.. These are:

• The IP address that the User uses to connect to the Internet with his/her computer or mobile.

• Information about the User computer or mobile, such as his/her Internet connection, browser type, version and operating system, and device type.

• The full clickstream of Uniform Resource Locators (URLs), including date and time.

• Data from the User Account: information of the orders made by the User, as well as, the evaluations and/or comments that the User makes about his/her orders.

• The browsing history and user preferences.

• Source data: if the User arrives at a website from an external source (such as a link on another website or in an email), s.r.l.s. records information about the source that referred the User to

Data derived from the management of incidents: if the User is directed to the Platform through the Contact Form or through the s.r.l.s. telephone, s.r.l.s. will collect the messages received in the format used by the User and may use and store them for manage present or future incidents.

Data derived from "cookies": s.r.l.s. uses its own and Third-Party Cookies to facilitate the navigation of its Users and for statistical purposes (see Cookies Policy).

Information from external parties: s.r.l.s. may collect User personal information or data from third parties if the User gives permission to those third parties to share such information with us.  

Similarly, if the user accesses through the products and services offered by Google, the latter may send user navigation data to, with access to the platform through the links created by Google.

The information provided by the external third party may be controlled by the User according to the third party's own privacy policy.

Geolocation Data: in case Users authorize it, s.r.l.s.  will collect data related to its location, including the real time geographical location of the user's computer or mobile device.

These data are processed to comply with the contractual relationship established with the User, as well as the legitimate interests that s.r.l.s. has for its treatment.

● Why s.r.l.s. collects information about Users?

1. - To use the Platform

1.1. - uses the data collected from Users to enable Users to access and communicate with the platform and to provide the services requested through their account on the Platform, in accordance with the procedure described in the “Terms of Use”. When processing an order the data may be used:

• By the courier who performs the task of collecting and delivering the product.

• By the establishment or venue responsible for selling the product, if the User has requested the purchase of a product.

• By the Customer Services contracted by s.r.l.s. for the purpose of warning the User of any possible incidents or asking why negative feedback has been given for the service. s.r.l.s. may use the data provided in order to manage any incidents that may occur during provision of the service.

• It may also be used to show the User all the orders made through the platform and to enable Users to give their opinion on the service provided by s.r.l.s..

• By the payment Platform so that the amount can be charged to the User’s account.

1.2. - s.r.l.s. may use the personal data provided by Users to communicate via email and/or send SMS to the User relating to the operation of the service. s.r.l.s. will send messages to the User’s mobile phone with information relating to the status of the order requested. When the order is completed, s.r.l.s. will send a summary/receipt of the order and price of the same to the User’s email. By registering on the Platform it shall be understood that the User accepts this Privacy Policy and that, therefore, authorizes s.r.l.s. to make both these communications.

1.3. - s.r.l.s. also uses the information to research and analyze how to improve the services it provides to Users, as well to develop and improve the features of the service it offers. Internally, s.r.l.s. uses the information for statistical purposes in order to analyse User behaviour and trends, to understand how Users use the Platform and to manage and improve the services offered, including the possibility of adding new, different services to the Platform. The processing of the data described above is necessary for execution of the contract that the Users entered into with s.r.l.s. through the Terms and Conditions when registering on the Platform. The execution of this contract is the basis that makes it legitimate for their data to be processed either by s.r.l.s. or by third parties in order to provide the services requested by Users through the Platform.

2. - To ensure security and an appropriate environment for the safe supply of services

2.1. - s.r.l.s. may use the data in order to ensure the correct use of the products requested on its Platform (to ensure the delivery is made to persons over the age of 18...). 

2.2. - s.r.l.s. may also use information on the Users to identify and investigate fraud, as well as any other illegal activity and potential breaches of our “Terms of Use”. For this purpose, s.r.l.s. may share user data with platforms that analyse fraud operations. s.r.l.s. may use the information provided by Users for the data processing described for the legitimate interest consistent with protecting the correct use of the Platform, complying with applicable legislation, as well as ensuring the correct and safe provision of services.

3. - Promotion and commercial offers (on-line and off-line) s.r.l.s. uses third-party technology integrated in its Platform for the purpose of collecting User data and preferences and using this with CRM systems and advanced technology to benefit the Users. Thus, through the information collected, the following processing will be carried out on their data:

3.1. - s.r.l.s. may send to the Users’ email addresses promotional messages and/or offers relating to the service that it offers that may be of interest to the User. s.r.l.s. may adjust and personalize this publicity in accordance with the preferences of the s.r.l.s. Users. If a User of does not wish to receive this information and/or commercial communications, he may opt at any time to “Unsubscribe” in the e-mail, and s.r.l.s. will then immediately stop sending the aforementioned information.

3.2. - s.r.l.s. may also send the User messages and/or offers relating to these services through “push” notifications consisting of sending these promotional messages and/or offers to his mobile phone. If a User of s.r.l.s. does not wish to receive the commercial communications described in this clause and in 3.1 above, he may remove them all by deactivating the privacy preferences on his profile with one click.

3.3. - s.r.l.s. may use the order delivery address entered by the User for the purpose of carrying out promotional activities for the delivery of samples or free products of the service related to s.r.l.s., which may be of interest to the User (i.e. the delivery of free samples or publicity brochures to the home) at the same time as delivering the order.

3.4. - Through using the Platform, Users may also receive commercial communications from third parties associated with the Platform, like Facebook and Google, all this in accordance with the privacy preferences set by the User on these Platforms.

The processing described above shall be performed pursuant to s.r.l.s.’s legitimate interest in carrying out marketing activities for the benefit of Users, as described in the subsequent point. It should be mentioned that Users may use the privacy management center to unsubscribe from online marketing services or to close their account if they are not happy to receive samples with their orders.

4. – To share User data with third parties

4.1.- As is described above in point 3.4, if the User connects his s.r.l.s. account to another social network or third-party platform, s.r.l.s. could use the information provided to this social network or third-party, provided that the aforementioned information has been made available to s.r.l.s. in compliance with the privacy policy of this social network or third-party platform.

4.2.- If the ownership of s.r.l.s. changes or the majority of its shares are acquired by a third party, Users are informed that s.r.l.s. will transfer their data to the acquiring organization in order to continue to provide the services subject to the data processing. The new responsible party will inform Users of their identification data. s.r.l.s. agrees to comply with its duty of information to the relevant Supervisory Authority in the event of the aforementioned circumstances, and it shall communicate to Users the change of responsible party at the time that this happens. This processing shall be done under the contract entered into with s.r.l.s..

4.3. - When a User, enters his card number on the Platform, this is stored directly by our

Payment Platforms, which will allow payment to be charged to the Users account. This process shall be done when it is necessary to be able to execute the contract between the User and s.r.l.s. under the Terms and Conditions of the Platform.

4.4.- With explicit consent, s.r.l.s. may transfer personal data to third parties associated with s.r.l.s., provided that the User has given his informed, unequivocal consent to this transfer of data and is aware of the purpose and destination

●     Does s.r.l.s. share the information it receives?

As indicated in the previous section, the personal data that s.r.l.s. collects will be exclusively used to achieve the object defined in the "Terms of Use".

For the correct development of the contractual relationship and for the excellence in the provision of the service, s.r.l.s. will share certain personal data of the User with:

• Third-Party service providers: s.r.l.s. providers who execute orders, send packages, and execute orders and/or solve incidents with shipments will have access to the personal information of the Users that is required to perform their functions, but they won’t be able to use it for other purposes. These suppliers must treat personal information in accordance with the present Privacy Policy and the applicable legislation in the matter of Data Protection.

• Providers with whom s.r.l.s.  maintains a commercial agreement: through its website and mobile application, s.r.l.s.  can be used to facilitate acquisition of products and/or services  in physical stores which have an agreement with s.r.l.s. . In such cases, the User's name will be shared with the store for the sole purpose of facilitating the transaction.

• The User may also receive emails from s.r.l.s.  and/or the store to confirm the order, arrange a return or ask for the User's opinion of the transaction. Stores will never receive nor be authorized to request credit card information pertaining to s.r.l.s.  Users. All information provided to stores outside s.r.l.s. 's control shall not be covered by this Confidentiality Policy.

• In the choice of service providers, s.r.l.s. can transfer user data outside the borders of the European Economic Area. In these cases, and prior to shipping, s.r.l.s. will ensure that these service providers comply with the minimum-security standards established by the European Commission and that they always process the data according to the instructions provided s.r.l.s.. s.r.l.s. may have a contractual relationship with them where the service providers agree to comply with the instructions of s.r.l.s. and to incorporate the necessary security measures to protect the data of the Users. s.r.l.s. guarantees that all commercial technical partners, providers, and relevant third parties are bound by contractually binding promises to process information that s.r.l.s. shares with them following its indications, the present Privacy Policy and all applicable Data Protection legislation.

• Security Companies and Security Forces and Bodies: s.r.l.s. may disclose personal information and account data of its customers when it is believed that disclosure is necessary for compliance with the law, to enforce or apply the "Terms of Use" or to protect the rights, property or security of s.r.l.s., its users or third parties. This includes, therefore, the exchange of information with other societies and organizations, as well as the Security Forces and Bodies, for the protection against fraud and the reduction of credit risk.

• Payment gateway: s.r.l.s. does not store the credit cards data of the Users. However, the identification data of the credit / debit card (number and expiration date) are stored by the payment service provider chosen by s.r.l.s., whose security measures are high as long as it is PC1 Compliant according to the Data Security Standard for the Payment Card Industry or PCI DSS. If the User requests to delete the data corresponding to the means of payment that he has entered in his profile, the third payment service provider will delete said data from his servers.

• s.r.l.s. may share information with law enforcement agencies and/or third parties regarding requirements of information related to criminal investigations and alleged illegal activities.

• In order to provide the services of, s.r.l.s.  depending on the geographical area from which users request services, s.r.l.s. may transfer certain personal data of the Users to its subsidiaries Users are informed that when they register in the Platform in any country in which s.r.l.s. operates, the User’s data will be stored in the database of s.r.l.s. located in Italy.

The data will be communicated, in the case of subsidiaries outside the EEA, through the systems enabled by the European Commission and the Regulation, to countries that have an adequate level of protection of personal data or through contracts approved by the European Commission that establish and guarantee the rights of the interested parties and will be communicated once the approval of the pertinent control authority is obtained.

• Providers of services for the control of fraud: s.r.l.s. will share the data of the Users with suppliers that offer fraud control services, to study the risk of the operations that are carried out.

• Service providers for the anonymization of some data: to avoid the improper use of the data of the Users by third party service providers, s.r.l.s. may assign the data of the Users so that they can be anonymized and used only for the provision of the service to the Users. For example, s.r.l.s.  may assign to third parties the telephone number of the Users to anonymize them and provide them in this format to the providers used to comply with the services contracted by the Users.

• The data of the s.r.l.s. Users are stored in the servers of Seeweb S.r.l., located in Italy contracted by GB s.r.l.s.. GB s.r.l.s. states that said servers comply with the applicable legislation on Data Protection and with the commitments set out in the Present Data Privacy Policy. The s.r.l.s. Users expressly authorize s.r.l.s. to access their personal data from any territory in order to provide the service requested by the User.

• The data of the s.r.l.s. Users will not be transmitted to any third party, except that (i) it is necessary for the services requested, in case s.r.l.s. collaborates with third parties (ii) when s.r.l.s. has express and unequivocal authorization from the User, (iii) when requested by the competent authority in the exercise of its functions (to investigate, prevent or take actions related to illegal actions) or (iv) finally, if required by law.

• With the User consent: apart from what above mentioned, s.r.l.s. will inform the User in case some information about the User is shared with s.r.l.s.’s commercial partners or third parties with a different purpose of the ones expressed in the present document (i.e. commercial purposes). The information will be given to the User in order to give him/ her the chance to oppose to the share of information.

• With the consent of the User too: to third parties not commercial partners, without a link with s.r.l.s., as long as there is prior and unequivocal authorization by the User.

None of the above data communications will include selling, renting, sharing or otherwise disclosing personal customer information for commercial purposes in a manner contrary to the commitments made in this Privacy Policy. s.r.l.s. shares the information of the Users as described to comply with the applicable regulations, to help s.r.l.s. improve the provision of its services, to comply with the contractual relationship with the User, as well as the legitimate interest of s.r.l.s..

●     What rights do Users have?

-    How long will s.r.l.s. keep the data?

 The personal data provided will be kept as long as the User does not request its suppression for a period of 24 months since his/her last interaction with the Platform.

In case of withdrawing the consent or opposing the treatment, the data will be blocked and will stop being treated and will be kept for a period of 4 years in order to be able to claim or defend us from possible claims.

-    Right to withdraw the consent 

At any time, the User may withdraw their consent for the processing of data by s.r.l.s..

For its withdrawal, it will be enough for the User to fill in and send the contact form available at   The withdrawal of consent may be carried out at any time by the interested party. The Users accept and consent that the withdrawal of consent implies that s.r.l.s. can not provide the services of its Platform. 

-     What information can access the Users? s.r.l.s. gives the User access to a large amount of information about his/her account and his/ her orders at so that he/she can see, and in certain cases, update that information.

 All Users may access their profile and add or edit the information, as they deem appropriate. The information and data provided by the User shall be permanently available in their User Account and may be modified via the edit profile option.

 - Rights of access, rectification, deletion, limitation of the treatment, opposition and right to the portability of the data:

The right of access is conceived as the right that the user has to request s.r.l.s. if it deals with any personal data, together with the information established in article 15 of the Regulation.

As established in Article 16 of the Regulation, the User may request s.r.l.s. to rectify the data present in its database if they were incomplete.

The right of suppression empowers the User to request s.r.l.s. the deletion of their personal data in the cases provided in Article 17 of the Regulation.

If the User requests it, based on the conditions of article 18 of the Regulation, s.r.l.s. will limit the use of the data to that established in that article.

Article 20 of the Regulation regulates the Users' right to portability, which will allow them to request s.r.l.s. to send all the data they have in a structured and automatic reading format, requesting that they be transmitted to another responsible person, that the same User request.

The User also has the right to oppose the treatment of personal data held by s.r.l.s. in its possession as established in Article 21 of the same Regulation.

The exercising of these rights is strictly personal and thus the affected party will be required to accredit their identity. The exercising of these rights should be undertaken by the owner of the data, indicating their address and providing a copy of their National Identity card, passport or other such supporting document, contacting s.r.l.s. by email:  

-     What options do Users have?

As indicated above, if the User wishes to stop receiving emails from s.r.l.s., the User can adjust their subscription options in the email tray and press the "Cancel Subscription" button.

In addition, Users may choose that s.r.l.s. does not know its Geolocation. Most mobile devices give its Users the ability to disable location services. Most likely, this possibility is found in the configuration menu of the device. If Users have questions about how to disable the location services of their device, s.r.l.s. recommends to the Users that they contact the manufacturer or their mobile service provider.

Apart from the exercise of the rights described above, Users have the right to submit a claim to the control authority for the knowledge of their claim.  

●      How do we protect personal data from Users? s.r.l.s. has adopted all necessary measures, recommended by the European Commission and the competent authority, to ensure the required level of security, based on the nature of the personal data and the circumstances of its treatment, in order to prevent, as far as possible and where so permitted by current technology, its alteration, loss, treatment or unauthorized access. The personal information supplied to s.r.l.s. will not be ceded to any third party without the prior authorization of the owner of said data.

●     Notifications and modifications

As stated before, all users may exercise their rights to access, rectification, cancellation or opposition to the treatment of their personal data. Users can exercise these rights or ask about the present Privacy Policy through the Contact Form.

As s.r.l.s. business changes constantly, our Privacy Policy, Cookies Policy and Terms of Use change accordingly. s.r.l.s. will send Users the notifications related to important changes and modifications of those documents via email or any other means that ensures receipt of them.  Nevertheless, s.r.l.s. will never materially change its policies and security practices to make them less protective of customer information collected in the past.

In case of discrepancy between this Privacy Policy versions and the Italian version, the latter will prevail.