Privacy policy

Last updated: 15. April, 2026

This Privacy Policy explains how Glaadly AS (org. no. 930 646 822) (“Glaadly”, “we”,“us”, “our”) processes personal data when you use our mobile application and related services (the “Platform”).

Glaadly is the data controller for personal data processed in connection with the Platform, except where otherwise specified.

1. Categories of Personal Data We Collect

1.1 Information You Provide

When you create an account or use the Platform, we may collect:

  • Full name

  • Email address

  • Telephone number

  • Profile information

  • Service descriptions

  • Messages exchanged through the Platform

  • Location information you provide

  • Identity verification information is required where applicable

1.2 Location Data

If you enable location services on your device, we may process real-time or approximate location data to connect users within relevant geographic areas. Location data is used solely for matching and service functionality purposes. You may disable location sharing at any time via your device settings.

1.3 Payment and Transaction Data

Payments are processed exclusively through our designated payment provider (currently Stripe). In connection with transactions, we may process:

  • Transaction identifiers

  • Payment status

  • Amounts paid

  • Refund and chargeback information

  • Payment session identifiers

We do not store full payment card details. The payment provider carries out payment processing. The payment provider may act as an independent data controller for payment processing and related regulatory compliance under its own privacy policy.

1.4 Automatically Collected Technical Data

When you use the Platform, we may automatically collect:

  • IP address

  • Device identifiers

  • Operating system and device type

  • Application usage data

  • Log data

  • Session data

  • Interaction data

Analytics data (subject to consent where required)

1.5 Security and Monitoring Data

To protect users and ensure compliance with our Terms of Service, we may process data relating to:

  • Transaction patterns

  • Device information

  • IP addresses

  • Behavioural indicators

  • Communication metadata

Such processing is undertaken to detect fraud, prevent circumvention of payment systems, enforce platform rules, and safeguard platform integrity.

2. Legal Basis for Processing

We process personal data under the following legal grounds pursuant to Article 6 GDPR:2.1 Performance of Contract

  • To create and manage accounts

  • To facilitate communication between users

  • To enable booking and transactions

  • To provide customer support

  • To process payments

2.2 Legitimate Interests

  • To improve platform functionality

  • To ensure platform security

  • To prevent fraud and unlawful activity

  • To enforce our Terms of Service

  • To facilitate voluntary dispute mediation

  • To protect users and the integrity of the Platform

Where processing is based on legitimate interests, we have conducted an assessment to ensure such interests are not overridden by your rights and freedoms.

2.3 Legal Obligation

To comply with applicable laws, including accounting obligations, regulatory requirements, and lawful requests from public authorities.

2.4 Consent

Where required, including for certain analytics or optional features. Consent may be withdrawn at any time.

3. How We Use Personal Data

We use personal data to:

  • Register and manage user accounts

  • Enable connections between Customers and Service Providers

  • Facilitate secure payment transactions

  • Process refunds and respond to chargebacks

  • Improve and optimise the Platform

  • Provide customer support

  • Send service-related notifications

  • Detect and prevent fraud or abuse

  • Enforce our contractual terms

  • Facilitate voluntary mediation between users

  • Comply with legal obligations

We do not engage in automated decision-making that produces legal or similarly significant effects within the meaning of Article 22 GDPR.

4. Data Sharing

We may share personal data with:

4.1 Other Users

Information necessary to perform services is shared between Customers and Service Providers.

4.2 Payment Provider

Personal data necessary to process payments is shared with our designated payment provider. The payment provider may act as an independent controller for payment-related processing.

4.3 Service Providers and Processors

We use third-party providers for hosting, infrastructure, analytics, security monitoring, and customer support. These providers process data on our behalf under data processing agreements pursuant to Article 28 GDPR.

4.4 Public Authorities

We may disclose personal data where required by law or in response to valid legal requests. We do not sell personal data.

5. International Transfers

Where personal data is transferred outside the EU/EEA, appropriate safeguards are implemented, including:

  • Standard Contractual Clauses

  • Transfers to countries subject to adequacy decisions

  • Equivalent lawful safeguards6. Data Retention

We retain personal data:

  • For as long as your account remains active

  • As required to comply with legal and accounting obligations

  • As necessary to resolve disputes or enforce agreements

Transaction records may be retained in accordance with applicable accounting and regulatory retention requirements. Inactive accounts may be deleted after a reasonable period of inactivity, subject to legal retention obligations.

7. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Access controls

  • Encryption where appropriate

  • Secure hosting environments

  • Internal access restrictions

  • Monitoring for unauthorised activity

However, no system can guarantee absolute security.

8. Your Rights

Under GDPR and Norwegian data protection law, you have the right to:

  • Access your personal data

  • Rectify inaccurate or incomplete data

  • Request erasure of data

  • Restrict processing

  • Object to processing based on legitimate interests

  • Data portability

  • Withdraw consent where processing is based on consent

  • You also have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet).

Requests may be submitted to support@glaadly.com.

9. Children

The Platform is not intended for individuals under 18 years of age. We do not knowingly collect personal data from minors.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via the Platform or by email.

Continued use of the Platform following such changes constitutes acceptance of the updated Policy.

11. Contact Information

Glaadly AS
Org. no. 930 646 822
Email: support@glaadly.com

For privacy-related inquiries, you may contact us at the above address