Gelo AI Logo
Gelo AIBack to Home

Privacy Policy

Last updated: January 2026

Information on the processing of personal data pursuant to Arts. 13-14 of EU Regulation 2016/679 (GDPR)

1. Data Controller

The Data Controller regarding personal data processing is:
GeloDigital
P.IVA: 18283421008
Email: info@gelodigital.com
Phone: +39 352 063 2069

2. Categories of Data Collected

2.1 Account and Profile Data

When you create an account and use Gelo AI, we collect:

  • Authentication Data: Email address and encrypted password (for email sign-up), or identity information from Apple Sign-In or Google Sign-In
  • Business Profile: Business type (service or product), business role/occupation, business description, website URL
  • Location Data: Geographic targeting preferences for advertising (city, region, or country)
  • Offer Information: Service/product offerings you create within the app

2.2 Data from Meta Platform (Facebook/Instagram)

When you connect your Meta account, we access:

  • Public Profile Information: Name, profile picture, email address associated with your Facebook account
  • Facebook Pages: Pages you manage, including page ID, name, category, and page access tokens
  • Ad Accounts: Advertising accounts you have access to, including account ID, name, and status
  • Lead Data: Contact information submitted through Lead Generation forms (name, email, phone number, custom questions)
  • Campaign Performance Data: Ad metrics including impressions, clicks, reach, leads, spend, and cost per result
  • Ad Creatives: Images and copy used in your advertisements

2.3 Mobile Application Data

  • Device Tokens: Firebase Cloud Messaging tokens for push notifications
  • Session Data: Authentication tokens and session information
  • Device Information: Device type, operating system version, app version
  • Usage Analytics: App interactions, feature usage, and navigation patterns

2.4 Subscription and Payment Data

  • Subscription Status: Whether you have an active subscription and the subscription tier
  • Product ID: Identifier of the purchased subscription product
  • Note: All payment processing is handled securely by Apple through the App Store. We do not store credit card numbers or payment details.

2.5 AI-Generated Content

  • Ad Creatives: Images generated using AI based on your business profile and preferences
  • Ad Copy: Headlines, primary text, and descriptions generated by AI
  • Strategy Analysis: AI-powered insights about your advertising potential and audience reach

3. Purpose of Data Processing

We process your personal data for the following purposes:

  • Service Provision: To create and manage your advertising campaigns on Meta platforms
  • Account Management: To authenticate you and maintain your account
  • Lead Management: To deliver and organize leads from your advertising campaigns
  • AI Services: To generate personalized ad creatives, copy, and strategic recommendations
  • Analytics: To understand app usage and improve our services
  • Communications: To send you notifications about leads, campaign performance, and service updates
  • Subscription Management: To manage your subscription status and provide premium features

4. Legal Basis for Processing

We process your data based on:

  • Contract Performance: Processing necessary to provide the services you've subscribed to
  • Consent: For connecting your Meta account and accessing third-party platform data
  • Legitimate Interest: For analytics, service improvement, and security measures
  • Legal Obligation: Where required by applicable law

5. Third-Party Services

We use the following third-party services that may process your data:

  • Supabase: Authentication and database services (EU data centers available)
  • Meta Platforms: Advertising API integration for campaign management
  • Firebase (Google): Push notification services
  • Amplitude: Analytics and session replay for app improvement
  • Superwall: Subscription and paywall management
  • OpenAI/Google AI: AI content generation services

6. Data Retention

We retain your personal data for the following periods:

  • Account Data: For the duration of your account, plus 30 days after deletion request
  • Lead Data: For 24 months, or until you request deletion
  • Campaign Data: For the duration of your account
  • Analytics Data: Up to 24 months in anonymized form

7. Your Rights

Under GDPR, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your personal data
  • Restriction: Limit how we use your data
  • Portability: Receive your data in a portable format
  • Objection: Object to certain types of processing
  • Withdraw Consent: Revoke previously given consent at any time

8. Data Deletion Instructions

In compliance with Facebook Platform Terms and GDPR, you can request data deletion through any of these methods:

  1. Email Request: Send an email to info@gelodigital.com with subject "Data Deletion Request". We will respond within 30 days.
  2. In-App: Navigate to Profile → Settings → Delete Account to request complete account and data deletion.
  3. Facebook Settings: Remove Gelo AI access via Facebook Settings → Apps and Websites. This will revoke our access to your Meta data.

Upon receiving a deletion request, we will:

  • Delete all personal data from our databases within 30 days
  • Remove your Facebook integration and associated tokens
  • Delete all leads and campaign data associated with your account
  • Anonymize any analytics data that cannot be deleted

9. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • All data is transmitted using TLS/SSL encryption
  • Passwords are hashed and never stored in plain text
  • Facebook tokens are stored securely and never shared with third parties
  • Access to personal data is limited to authorized personnel only
  • Regular security audits and updates are performed

10. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA), including the United States where some of our service providers are located. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.

11. Children's Privacy

Gelo AI is not intended for use by individuals under 18 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app or via email. The "Last updated" date at the top of this page indicates when the policy was last revised.

13. Contact Us

For any questions about this Privacy Policy or to exercise your rights, please contact us at:

This Privacy Policy is governed by Italian law. Any disputes shall be subject to the exclusive jurisdiction of the courts of Rome, Italy.