Privacy Policy

The controller of the personal data described in this notice is GAGI SA, Viale Castagnola 16, CH – 6900 Lugano, telephone +41 91 924 00 77, email info@gagimmobiliare.ch, commercial register number CH-501.3.006.725-4.

This Privacy Policy applies to the use of the Shopelink.ch website, any related apps, user accounts, listings, business stores, payments, communications, cookies, and support or moderation tools connected to the service.

Depending on the services used, Shopelink may process:

• account data, such as name, surname, email, phone, preferred language, and credentials;
• profile data and visibility settings;
• business/dealer data, including company data, verticals, store details, and commercial contacts;
• KYC and Business KYC data, including identification documents and verification material;
• listing data, uploaded content, and media;
• messages, chats, contact requests, leads, and reports;
• technical and security data such as IP, device, browser, logs, and session identifiers;
• limited data relating to orders, subscriptions, or payments handled by third-party providers;
• privacy, marketing, notification, and cookie preferences.

We process personal data, in particular, to:

• create and manage accounts;
• publish, display, moderate, and maintain listings and business stores;
• enable user contacts, messaging, and lead generation;
• perform security checks, moderation, fraud prevention, and Trust & Safety controls;
• manage KYC and Business KYC verification workflows;
• activate payments, subscriptions, boosts, and premium services;
• provide customer assistance and operational support;
• send service, security, billing, or moderation notifications;
• perform analytics, improve the service, and comply with legal or regulatory obligations.

Processing may be based, depending on the case, on:

• performance of pre-contractual measures or the service relationship;
• user consent, where required;
• the controller legitimate interest, in particular for security, abuse prevention, service improvement, and protection of rights;
• compliance with legal obligations;
• verification, operational security, and fraud-prevention needs.

For users in the EU/EEA, where applicable, processing may also be assessed in light of the GDPR, in addition to the Swiss nFADP/FADP principles.

Some data may become public when a user publishes a listing, a store, or expressly chooses to show contact information.

Listings, business stores, profile names, locations, and other marketplace-related elements may therefore be publicly accessible. Sensitive data or verification documents are not intentionally published as part of the ordinary operation of the service.

Data may be shared, to the extent necessary, with categories of suppliers and recipients such as:

• hosting, cloud infrastructure, and IT providers;
• email, SMS, or notification providers;
• payment providers such as Stripe and PayPal;
• analytics, security, mapping, or geolocation providers;
• storage, media processing, or anti-fraud services;
• customer support or operational support tools;
• authorities, public bodies, or advisers where required by law or necessary to protect the controller rights.

We do not sell personal data as a standard commercial activity of the portal.

Some suppliers or subprocessors may process data outside Switzerland or the EU/EEA. In such cases we seek to adopt appropriate contractual and organizational safeguards, where required, to ensure an adequate level of protection.

Personal data is retained for as long as necessary for the purposes for which it was collected, including:

• account and profile data, for as long as the account remains active or as required for legal obligations or the defense of rights;
• listings, media, leads, messages, and logs, for the time needed to manage the service, security, or compliance;
• tax, order, and payment data, in accordance with applicable legal retention periods;
• KYC and Business KYC data, for the period required by verification, platform security, and any applicable retention obligations.

Users may, within the limits of applicable law, request:

• access to their data;
• correction of inaccurate data;
• deletion of data where applicable;
• restriction of or objection to certain processing;
• data portability, where applicable;
• withdrawal of consent for processing based on consent.

To exercise these rights or for privacy-related questions, users may contact info@gagimmobiliare.ch. Users may also contact the competent authority if they believe processing violates applicable law.

Shopelink adopts reasonable technical and organizational measures to protect personal data, including access limitations, application controls, backups, security logging, and safeguards appropriate to the context.

No system can, however, guarantee absolute security.

The service is not intended for minors who do not meet the legal age or legal capacity required under applicable law to validly commit to or use the service. If we become aware of non-compliant processing relating to minors, we may restrict or remove the relevant data.

Marketing communications may be sent within the limits of the consent given or the applicable legal basis. Users may object or withdraw consent at any time.

Strictly operational, security, billing, or moderation communications may remain necessary for proper use of the service and may not always be disabled.

Shopelink uses cookies and similar tools for technical, functional, analytics, and, if enabled, marketing purposes. More information is available in the Cookie Policy, where users may also manage their consent preferences.

We may update this Privacy Policy for legal, technical, organizational, or service-evolution reasons. The updated version is published on the website together with its latest update date.

This Privacy Policy is provided for informational and operational purposes and does not replace specific legal advice for individual situations.