Guololó
Guololó
Sign in
ESEN
Apply now

1. Identification of the data controller

Last updated: [16/12/2025]

In accordance with Regulation (EU) 2016/679 (General Data Protection Regulation - GDPR) and Spanish Organic Law 3/2018 (LOPDGDD), users are informed that the personal data processed through the Guololo platform will be processed by:

  • Data controller: RedBlueCode S.L.
  • Trade name: Guololo
  • Tax ID: B70992698
  • Registered address: Calle Rioja, 13, Piso 1, Puerta C, 41001, Seville, Spain
  • Contact email: info@guololo.com

2. Service description

Guololo is a web-based booking management application that allows businesses to offer their services and manage appointments, and allows end users to register and make bookings with those businesses.

Guololo acts as a technology platform intermediary and does not intervene in the contractual relationship between the business and the end customer.

3. Guololo's role in data processing

Depending on the context, RedBlueCode S.L. (Guololo) acts as:

Data controller, regarding:

  • Business account registration and management data.
  • Data of end users registered on the platform.
  • Technical, security, and analytics data.
  • Service-related communications required for platform operation.

Data processor, regarding:

  • End customer data processed by each business for booking management, appointments, and reminders.

In these cases, the business acts as the data controller and Guololo as the data processor, formalizing the corresponding Data Processing Agreement in accordance with Article 28 of the GDPR.

4. Personal data processed

a) Businesses

  • Identification and contact data.
  • Tax and administrative data.
  • Business commercial information.
  • Employee or collaborator data (if the business chooses to include it).

b) End users

  • First and last name.
  • Email address.
  • Phone number.
  • Booking history and related preferences.

c) Technical data

  • IP address.
  • Session identifiers.
  • Activity logs.
  • Cookies (see Cookie Policy).

Guololo does not require or encourage the processing of special categories of data (Art. 9 GDPR). If a business introduces such data, it does so under its sole responsibility.

5. Purposes of processing

Personal data will be processed to:

  • Manage the registration and maintenance of business and user accounts.
  • Enable the creation, modification, and cancellation of bookings.
  • Send appointment confirmations and reminders (email, SMS, or WhatsApp, where the user has consented).
  • Ensure the security and proper operation of the platform.
  • Handle support requests and communications with users.
  • Comply with applicable legal obligations.
  • Analyze platform usage and improve the service using web analytics tools (with prior consent).

6. Legal bases for processing

PurposeLegal basis
Service provision and account managementPerformance of a contract (Art. 6(1)(b) GDPR)
Compliance with legal obligationsLegal obligation (Art. 6(1)(c) GDPR)
Security, support, and service improvementLegitimate interest (Art. 6(1)(f) GDPR)
Sending reminders via WhatsApp or other channelsUser consent (Art. 6(1)(a) GDPR)
Web analytics and non-essential cookiesUser consent (Art. 6(1)(a) GDPR)

7. Data retention

Personal data will be retained for 18 months from the user's last interaction with the platform or from account cancellation.

After that period, the data may remain blocked for the legally required periods to address potential legal liabilities.

8. Recipients and data processors

Personal data may be processed by external providers strictly necessary for service delivery, all of which operate under data processing agreements:

  • Hostinger International Ltd. - hosting of servers and databases.
  • Google Ireland Limited - web analytics services and user authentication.
  • Meta Platforms Ireland Limited - instant messaging services (WhatsApp) for sending reminders.
  • Microsoft Corporation (potential future provider) - infrastructure services or technical integrations.

Personal data will not be disclosed to third parties, except where required by law.

9. International data transfers

If any provider processes data outside the European Economic Area, such transfers will be carried out in accordance with Standard Contractual Clauses approved by the European Commission or other valid legal mechanisms.

10. Data subject rights

Users may exercise the following rights at any time:

  • Access
  • Rectification
  • Erasure
  • Restriction of processing
  • Data portability
  • Objection
  • Withdrawal of consent

By written request to info@guololo.com, providing proof of identity.

Users may also file a complaint with the Spanish Data Protection Agency (AEPD) or the competent authority in their country.

11. Data security

RedBlueCode S.L. applies appropriate technical and organizational measures to protect personal data, including access controls, communications encryption, backups, and incident management procedures.

12. Minors

Use of Guololo is limited to persons over 16 years of age.

Each business may set a different minimum age for the provision of its services and is responsible for compliance.

13. Changes

RedBlueCode S.L. reserves the right to modify this Privacy Policy.

Changes will be published on this page indicating the date of the last update.