We value your privacy and are committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, the legal basis for processing, and your rights under the General Data Protection Regulation (GDPR).
1. What We Collect
- Your name and email address
- Order-related data parsed from connected emails (e.g. items, order status, delivery updates)
- App usage data (e.g. log files, errors) to improve service reliability
We do not access the contents of unrelated emails or any personal information not required for our service.
2. Why We Collect It
- Display your order and shipping information in one place
- Send you updates related to your orders
- Improve and maintain the FOLO.shop experience
- Ensure account security and prevent fraud
3. Legal Basis for Processing (GDPR Art. 6)
We process your personal data based on the following legal grounds:
- Consent – for accessing and parsing your Gmail inbox (you can revoke this at any time)
- Performance of a contract – to deliver the FOLO.shop service
- Legitimate interest – to improve the app, ensure security, and analyze anonymized usage data
- Legal obligations – when required by law
4. How We Store and Protect Your Data
- Data is transmitted securely using HTTPS
- Stored using industry-standard encryption
- Access is restricted to authorized personnel and systems
- Gmail access uses passwordless authentication — we never store your password
5. Data Sharing
- We do not sell your personal data
- We do not share your data with third parties for advertising or marketing
- We may share anonymized usage statistics to improve the service
- We may disclose data when legally required, in compliance with due process
6. International Data Transfers (GDPR Art. 44–50)
If your data is processed outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses approved by the European Commission
- Vendors with strong privacy and security practices
7. Your Rights Under (GDPR Art. 12–23)
You have the right to:
To exercise any of these rights, contact us at [email protected]
8. Data Retention
- We retain your data only as long as necessary to provide the service or as required by law
- If you delete your account, your data is permanently removed within 30 days
- You can reactivate your account with all data restored within 30 days
- After 30 days, reactivation creates a new account with no previous data
9. Automated Decision-Making
We do not use automated decision-making that has legal or significant effects on you.
10. Updates to this Policy
We may update this Privacy Policy periodically. If significant changes are made, we will notify you via the app or by email. The latest version will always be available at our website.
11. Contact Us
If you have any questions or concerns about this Privacy Policy or how we handle your data, we're here to help.
📧 Email: [email protected]