Your Privacy

Privacy Policy

We take the privacy of our customers seriously. This policy explains what we collect, why, and the rights you have over your personal data.

GDPR & UK compliant We never sell your data You stay in control

The short version

Plain and simple.

Here's the essence, before the detail. The full policy below explains each point and your rights under the GDPR and UK GDPR.

  • We collect only what we need to process your order, run your account, and improve your experience.
  • We never sell your personal data, and we only share it with the partners that help us run the shop.
  • You can opt out of marketing at any time, and you can ask to see, correct, or delete your data.
  • We protect your information with appropriate security measures and only keep it as long as necessary.

Effective July 2026. Controller: Lio (VanLierGroup FZCO).

Who we are

This policy applies to purchases made through breathelio.com and related Lio channels. The data controller is Lio (VanLierGroup FZCO).

For anything relating to your personal data, contact us at privacy@breathelio.com.

Information we collect

We collect only what we need to serve you:

  • Order & account details — name, shipping and billing address, email, phone, and order history.
  • Payment information — processed securely by our payment providers; we do not store full card numbers.
  • Usage & device data — pages viewed, referring links, and similar information collected via cookies and analytics.
  • Communications — messages you send us and your marketing preferences.

How & why we use it

We use your information to:

  • Process and deliver your orders and manage your account — to perform our contract with you.
  • Send marketing you've asked for — based on your consent, which you can withdraw anytime.
  • Prevent fraud, secure the store, and improve our products — our legitimate interests.
  • Meet tax and accounting duties — to comply with our legal obligations.

Who we share it with

We never sell your personal data. We share it only with providers that help us run the shop, under agreements that keep it protected:

  • Our store platform and hosting (Shopify).
  • Payment providers who process your payment securely.
  • Shipping and fulfilment partners, including our EU fulfilment partner and carriers, to deliver your order.
  • Email and subscription tools that send the messages you've opted into and manage your plan.
  • Advertising and analytics partners (such as Meta) where you've consented to those cookies.

International transfers

Some of our providers operate outside the EEA and the UK. Where your data is transferred internationally, we rely on appropriate safeguards — such as adequacy decisions or Standard Contractual Clauses — to keep it protected to the same standard.

Marketing communications

With your consent, we may email you about new products and offers. You can opt out at any time using the unsubscribe link in any message, or by updating your preferences. Opting out of marketing won't affect the service emails we need to send about your orders.

Cookies & tracking

We use cookies and similar technologies to run the store, remember your cart, understand how the site is used, and — with your consent — measure and improve our advertising. You can manage non-essential cookies through our cookie banner or your browser settings.

How long we keep it

We keep your personal data only as long as needed for the purposes above. Order and invoice records are retained to meet tax and accounting obligations; marketing data is kept until you opt out. When data is no longer needed, we securely delete or anonymise it.

Your rights

Under the GDPR and UK GDPR you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate or incomplete data.
  • Erase your data ("right to be forgotten").
  • Restrict or object to certain processing.
  • Port your data to another provider.
  • Withdraw consent at any time, where we rely on it.

To exercise any of these, email privacy@breathelio.com. You also have the right to lodge a complaint with your local supervisory authority (in the Netherlands, the Autoriteit Persoonsgegevens; in the UK, the ICO).

Data security

We take appropriate technical and organisational measures to protect against unauthorised access, alteration, disclosure, or destruction of your data. No method of transmission is ever completely secure, but we work continuously to safeguard your information.

Children's privacy

Lio products and this website are intended for adults 18 and over. We do not knowingly collect personal data from anyone under 18. If you believe a minor has provided us with data, please contact us so we can remove it.

Changes to this policy

We may update this policy from time to time. Any changes will be posted on this page with a revised effective date, so please check back periodically. Significant changes will be communicated where required.

Questions about your data?

We're always here to help. Reach our team any time at privacy@breathelio.com.

European representative

Fresh@Work BV
Jelle Zijlstraweg 128
1689 ZX Zwaag
The Netherlands