Privacy Policy

(Legal Version – compliant with Law No. 124/2024 and GDPR)

Updated on: February 20, 2026

This Privacy Policy explains how BOOST, with address at Bajram Curri Boulevard, Albania, (“Company”, “we”, “provider”), collects, uses, stores, and protects the personal data of users of the Gliterin platform (“Platform”, “Service”).

For any issue related to the protection of personal data, you can contact us at:
📧 [email protected]

1. DEFINITIONS

Personal data: Any information that identifies or can identify a natural person.

Processing: Any operation performed on personal data (collection, storage, analysis, deletion, etc.).

Data Controller: BOOST.

User: Any person or business using the Gliterin Platform.

2. WHAT DATA WE COLLECT

We collect and process only the data necessary for providing the service:

2.1. Identification data

• Name
• Phone number
• Email address

2.2. Account and authentication data

• Data for logging into the account
• Profile data on social platforms when connecting with relevant APIs

2.3. Data received from social networks

If you connect your accounts on:

• Facebook / Instagram
• WhatsApp
• Messenger
• Webchat / API

then the Platform may receive data allowed by the API, including:

• Profile IDs
• Page/profile name
• Incoming and outgoing messages
• Comments
• Communication metadata

2.4. Technical data

• IP Address
• Device and browser data
• Cookies and similar technologies
• System logs

2.5. Financial data (if applicable)

• Payment information (e.g., received from payment providers; we do not store card details)

3. PURPOSES OF PROCESSING

We use your data for:

• Providing the Gliterin service
• Integration with social networks and receiving messages in a unique panel
• Account security and authentication
• Billing and subscription management
• Improving the service
• Technical analysis for performance
• Communication with users (notifications, technical support)

4. LEGAL BASIS FOR PROCESSING

We process your data based on:

• Article 6 of Law No. 124/2024
• Article 6 of GDPR, when applicable

Legal bases include:
✔ Performance of contract (use of platform)
✔ Consent (connections with social networks)
✔ Legitimate interests (security, prevention of abuse)
✔ Legal obligations (billing, document storage)

5. DATA STORAGE

• Data is stored as long as you have an active account.
• Messages are stored according to user settings or standard social platform periods.
• Billing documents are stored for up to 10 years, according to fiscal law.

6. DATA SHARING

We may share your data only with:

• Cloud hosting providers
• Payment providers
• Social networks through APIs (Meta, WhatsApp, etc.)
• Technical subcontracting partners for platform operations

We do not sell personal data.

7. USER RIGHTS

According to Law 124/2024 and GDPR, you have the right:

• To access your data
• To request correction
• To request deletion (“right to be forgotten”)
• To restrict processing
• To object to processing
• To request data portability
• To withdraw consent at any time

These requests can be made at: [email protected]

8. DATA TRANSFER OUTSIDE ALBANIA

In case we use foreign providers (e.g. cloud hosting), data may be transferred outside the territory:

• Within the EU, based on GDPR
• In other countries only when adequate protection measures apply

9. DATA SECURITY

We implement technical and organizational measures, including:

• Encryption
• Access control
• Security monitoring
• Regular backups

10. CHANGES IN THE POLICY

We may update this policy from time to time. The latest public version is always the one that applies.

11. CONTACT

BOOST
Bajram Curri Boulevard, Albania
📧 [email protected]