Privacy Policy & Cookies Policy - gbo-il

Privacy Policy & Cookies Policy

Last Updated: March, 2022

By using the Services, You consent to GBO International Financial Services Ltd.’s use, processing, and sharing of Your information in accordance with this Privacy Policy, which meets our duties under GDPR (General Data Protection Regulation). Your personal information will not be shared by Us with any third party except as described in this Privacy Policy.

This Privacy Policy will prevail, despite everything else stated in other documents, or other parts of Our Website.

For Our detailed Terms of Service, please visit

Who We Are and How to Contact Us?

GBO International Financial Services Ltd. (hereinafter: “GBO”, “Website”, “Site”, “We”, “Us”, “Our”) is a service provider company. We offer Our clients and users with B2B assistance in setting up international businesses, eCommerce, online businesses, and more.

We offer assistance to our users and clients in relation to external processes, such as company formation, opening of bank accounts, and locating company nominee services and payment services (hereinafter: “Services”.) Please take note that Our Services are not available for the industries dealing with binary options. Also, be known that We are not a bank or a payment provider.

GBO is a Data Collector. In its capacity as Data Collector, GBO will determine how the data is collected, used, protected, and shared by Us.

Registered Office and Contact Details

Our registered office is located at:

65 Yigal Alon Street, Tel Aviv, Israel 6744316.

If You want any clarifications on how Your data is used by Us, or want to exercise your data subject rights, you can write to us at [email protected].

Alternatively, you can also contact Us at our global HQ in Tel Aviv, Israel, at Our below postal address:

GDPR Compliance Manager

65 Yigal Alon Street, Tel Aviv, Israel 6744316.

Telephone: +97255104257

Fax: +97235104250

Companies and Websites Within Scope

The following companies and websites are within the scope of this Privacy Policy

This Privacy Policy applies only to GBO. The Services may contain links to third websites which are not operated or controlled by GBO. Please be aware that when you decide to leave the GBO Website by clicking on these third-party websites, Our Privacy Policy does not apply to them. Your browsing and interaction with these outside websites that you visit by clicking on the links on Services, the services of these websites are governed by their own rules and policies. Such third parties may have their own rules and policies to collect, process, and share your data. GBO is not responsible for the data collection method and policies of these websites.

Collection of Personal Data

Your personal data is collected by Us for one or more of the reasons provided below:

To provide You with the required information, or to provide You with the information that We may consider would be useful and of interest to You.

For the purpose of facilitating commercial transactions with You, or the entity that You represent, for the purpose of Services.

For fulfilling a contract that We have entered into with You or the entity represented by You.

To ensure the safety and security of the Website, its operations, and the underlying business infrastructure.

In order to manage any communication between You and GBO.

The table provided below provides you with more details about the data We collect for these purposes, the lawful basis for doing so, and the period for which each type of data will be retained by Us for processing and sharing purposes.

Lawful Basis for the Processing of Personal Data

The table below provides details on the various forms of personal data collected by Us, and for the lawful basis for collecting, processing and sharing the same. We have established, and implemented procedures to share Your data with the people in our organization on a need-to-know basis. GBO collects a number of data elements for various reasons and purposes, which may be shared with third parties also. Whenever this sharing is done, the process and reasons thereof are also described below.

GBO does not collect any “Special Categories of Personal Data” that may reveal below information about the Users:

Racial or ethnic origin

Religious or philosophical beliefs

Political opinions

Sexual orientation and sex life

Current health status and health history

Generic or biometric data

Membership of trade unions

Information about criminal convictions and offences

Our Services are not intended for use by the persons below 18 years of age. We do not knowingly or collect or solicit any person below the age of 18 years to register with Our Services.

You can ask Us to stop sending You marketing messages, or modify your email preferences at any time using any of the below methods:

By following opt-out links provided in the marketing messages sent to you

By contacting Us at any time on the contact details provided above

Purpose of Collection Information Category Data Collected Purpose for Collection Lawful Basis for Processing Data Shared With Retention Period
1. To provide You with information Subject matter information Personal name, company name, geographic location, business sector, and email ID To provide appropriate category of online or email information about the requested products and Services Contractual fulfillment Internally Only Retention Period
To provide further, related online or email To provide further related online or email information and ongoing updates related to the identified area of interest Legitimate Interest Internally Only 06 months in case a markeing email is not opened
Telephone Number To provide appropriate telephonic information related to the requested products and Services, and follow-ups, in order to ensure that the requested information meets the requirements, and also identify further requirements Contractual Fulfilment and Legitimate Interest
Personal contact information as provided in the website forms, or collected through trade shows, marketing, or other events, or means General Mailing List Subscription Consent Internally Only
2.  Transactional Information Transactional Details Personal name, name of company, email address, postal address, bank account details for credit card accounts, telephone number, ID numbers of certifications, and all other details and personal data required for fulfiling the provisions of contractual agreements To process our Services as mentioned in the contractual agreements between Us Contractual Performance Internally Only For a maximum period of 08 years from the date of the performance of the contract
For the purpose of accounting and taxation Statutory Obligation Internally and other third parties, as mentioned in the contract between Us For a period of 06 months from the date the data subject has input personal information but has not been processed with a transaction
Documentation in case of legal claim Legitimate Interest Internally and other third parties, as mentioned in the contract between Us For a period of 07 years for the purpose of VAT records, effective from the date of the performance of the contract
3. Security Security Information Technical information, as described above, as well as any other information that may be needed for this purpose For protecting Our Websites and infrastructure from cyber attacks, or other threats, and also for the purpose of reporting and dealing with illegal activities and acts Legitimate Interest For internal use, and also for use of forensic and other organizations with whom We might contract for this purpose Relevant Statutes of Limitation
4. Communications Contract Information Personal name,  business name, contact and identification details To communicate with You on any issues raised with Us, or which follows from an interaction between Us Legitimate Interest Internally, and whenever required, with professional advisors Relevant Statutes of Limitation

Storage of Personal Data

GBO is an Israel-domiciled organization whose primary offices are located in Israel.

The majority of Our Websites and web applications are hosted in Israel or the European Union (EU).

Our Customer Relationship Management (CRM), marketing, and accounting systems are based in Israel.

GBO uses Cloud Service Providers (CSPs) for its processing environment. Unless specifically stated, GBO is Data Controller for all these CSPs.

CSPs used by GBO for processing purposes are located in Our Israeli facilities unless stated otherwise.

Our data retention policy with respect to personal data, be it in digital, paper-based, or other forms, is governed and operated as detailed in the table above.

Security Measures

GBO has put appropriate and robust security controls to protect and ensure the safety of Your personal data. Risk assessment, including risks to the rights and freedoms of the data subject, is at the core of Our Information Security Management System (ISMS). The access to your personal data is limited to Our employees based on the business need, All Our employees accessing Your personal data are bound by the Contractual Duty of Confidentiality.

Please be known that GBO has no control over how your data is dealt with between Your device and the boundary of Our information architecture. You should be aware that information security risks for your personal data and information may exist in this arena. We do not accept any responsibility for the way your data is used or data breaches happening in this sphere which is beyond our control.

GBO has put robust procedures in place to deal with any actual or suspected breach of Your Personal Data and personal information. Be known that GBO is obligated to inform You and the supervisory authority within the European Union of any discovered or suspected breach of Your personal information within 72 hours of knowing about such a breach.

Your Rights Relating to Your Personal Data

As a data subject whose personal information is held by GBO, you have certain rights related to your personal data which are briefly described below. You can exercise any of these rights using the Contact Us details provided above. To process Your information, You may be required to provide Us with two valid forms of identification for verification purposes. Following rights are available to the Users within the European Union.

Right to be Informed: As a Data Controller, We are obliged to provide You with clear and transparent information about our processing activities related to Your personal data. This information is provided by this Privacy Policy, and any related communication that We may send to You.

Right of Access: You may request Us to provide You with a copy of the personal data that We hold about You. Once Your identity is verified, and if relevant, the authority of any third-party requestor, the information about Your personal data related to the below will be provided:

The purpose of data processing.

The categories of the personal data processed.

The recipients to whom the personal data has been disclosed.

The retention period and the envisioned retention period for the personal data.

When Your personal data has been collected from the third parties, the source thereof.

The above information about Your personal data will be provided to you free of any charge. However, if any extra costs are involved or extra time is required to provide You with the requested information, You will be informed about it. You will have to bear this extra cost.

In exceptional circumstances, regulatory, legal-based, or other reasons, We may refuse You the required information. However, the reason for such refusal will be explained to You. In case Your requests are found to be frivolous or vexatious, We reserve the right to refusal.

Right to Rectification: If You believe for any reason that the information held about You by Us is inaccurate or incomplete, You may exercise Your right to correct or complete this information. This right may be used in conjunction with the Right to Restrict Processing, in order to ensure that the incorrect or incomplete information is not processed.

Right to Restrict Processing: You may ask Us to stop processing Your personal data. Be known that Your personal data may still be held by Us, but it will no longer be processed. Instead of the Right to Restrict Processing, You may want to use Your Right to Erasure, which is considered an alternative to the Right to Restrict Processing. The Right to Restrict Processing may be exercised in the below conditions:

The accuracy of personal data is contested.

Personal data is processed unlawfully.

Your personal data is no longer required for processing but it is required for the part of legal processes.

The Right to Object has been exercised, and the processing of personal data is restricted pending a decision on the status of processing.

Right to Object: You can exercise this right in the below conditions:

The processing of your personal data is based on the legitimate interests

Processing is performed for the purpose of direct marketing

Processing is done for historic and scientific research

Data processing involves automated decision-making and profiling

Right to Data Portability: You may request for a set of Your personal data to be transferred to another controller or processor, in a commonly used and machine-readable format. This right is only available to You in case the original processing of data was based on consent, the processing is performed by automated means, and if case the processing is based on the fulfillment of a contractual obligation.

Right to Erasure: Also sometimes called the Right To Be Forgotten, You may request Us to delete Your personal data, including any data that may have been unlawfully processed. Your personal data will be erased provided there is no overriding legal basis or legitimate reason to continue processing your personal data.

Withdrawal of Consent: This right only exists where We are relying on consent to process Your personal data. In case you decide to withdraw consent, We may not be able to provide You with access to certain specific functionalities of Our Website and Services. You will be advised about this implication when You inform Us about withdrawing your consent.

Please note that We may also collect, use and share “Aggregated Data”, such as statistical or demographic data for any purpose. This Aggregated Data may be derived from your Personal Data, but once in aggregated form, it will not constitute Personal Data for the purposes of the GDPR as this data does not reveal your identity, directly or indirectly. However, if Your Aggregated Data is combined or connected with Your Personal Data in order to reveal Your identity directly or indirectly, the combined data will be treated as Personal Data, and will be governed as per the provisions of the Privacy and Cookies Policy.

Use of Cookies

We use cookies technology to identify the Users’ IPs in order to customize and enhance your online experience on Our platform. Read more about Our Cookies Policy here.

Changes to This Policy

GBO will occasionally update this Privacy Policy. When We do, the Last Updated date on top of this Privacy and Cookies Policy will be updated. In case some material changes are made to this Privacy and Cookies Policy, the changes will be posted here so that you are aware of how Your personal data and information is collected, processed, and shared by Us, under what circumstances, and how Your information may be disclosed.


If you would like to submit a complaint to Us regarding this Privacy and Cookies Policy, or our practices in relation to Your personal data, You may Contact Us using the details provided above. All complaints will be treated confidentially by Us.

Your complaints will be replied to as soon as We can.

Should you feel unsatisfied with our handling of your personal data, or have any complaints related to your personal data and information, You can escalate the issue with the appropriate supervisory authority within the European Union.

© ‫Copyright - gbo-il