Privacy Policy
Last updated: March 2026
GLPique (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and purchase our products, in compliance with the EU General Data Protection Regulation (GDPR).
1. Information We Collect
Personal Information
We collect information you provide directly, including:
- Name, email address, phone number, and shipping address
- Account credentials
Health Information
- Responses to wellness questionnaires (if applicable)
- Product preferences and health goals shared voluntarily
Payment Information
- Credit/debit card numbers, billing address, and transaction history
- Payment information is processed by PCI-compliant third-party processors and is not stored on our servers
Usage Information
- IP address, browser type, device identifiers, and operating system
- Pages visited, time spent, and interactions with our website
- Referring URLs and search terms
2. Legal Basis for Processing
Under the GDPR, we process your data based on the following legal grounds:
- Contract performance — To fulfill your orders and manage your account
- Legitimate interests — To improve our services, prevent fraud, and communicate with you
- Consent — For marketing communications and non-essential cookies
- Legal obligation — To comply with tax, accounting, and regulatory requirements
3. How We Use Your Information
We use your information to:
- Process and fulfill your orders
- Manage your account and subscriptions
- Process payments securely
- Communicate with you about your orders and our products
- Improve our website, products, and customer experience
- Comply with legal and regulatory obligations
- Detect and prevent fraud or unauthorized access
4. Data Sharing
We do not sell your personal information. We may share your information with:
- Shipping providers — To deliver your orders
- Payment processors — PCI-compliant services that process your transactions
- Analytics providers — To help us understand usage patterns and improve our services (using anonymized data where possible)
- Legal authorities — When required by law or court order
All third-party processors are GDPR-compliant and bound by data processing agreements. We do not transfer personal data outside the European Economic Area (EEA) without appropriate safeguards in place.
5. Cookies and Tracking
We use cookies and similar tracking technologies to operate our website, remember your preferences, and analyze usage patterns. These include:
- Essential cookies — Required for the website to function (session management, cart, security)
- Analytics cookies — Help us understand how visitors interact with our website
- Marketing cookies — Used to deliver relevant advertisements and measure campaign effectiveness
Non-essential cookies are only set with your consent. You can manage your cookie preferences at any time through your browser settings or our cookie consent banner.
6. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes described in this policy:
- Order and transaction records are retained for 7 years for tax and compliance purposes
- Account information is retained while your account is active and for 3 years after closure
- Marketing consent records are retained for the duration of consent plus 1 year
- Usage data is retained for up to 2 years
7. Your Rights Under GDPR
As an EU resident, you have the right to:
- Access — Request a copy of the personal data we hold about you
- Rectification — Request correction of inaccurate or incomplete data
- Erasure — Request deletion of your personal data (“right to be forgotten”)
- Restriction — Request restriction of processing in certain circumstances
- Data portability — Receive your data in a structured, machine-readable format
- Objection — Object to processing based on legitimate interests or for direct marketing
- Withdraw consent — Withdraw consent at any time where processing is based on consent
To exercise any of these rights, contact us at support@glpique.com. We will respond within 30 days as required by the GDPR. You also have the right to lodge a complaint with your local data protection authority.
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These include encryption of data in transit and at rest, access controls, and regular security assessments.
9. Contact Information
If you have questions or concerns about this Privacy Policy, please contact us:
- Email: support@glpique.com