Privacy Policy

Guess EU General Information Notice (in force since September 2025)
|
|
Who we are |
If you are reading this privacy notice ("Notice"), it is because you have interacted with Guess Europe Sagl ("Guess", "we" or "us"), with registered offices at Strada Regina 44, CH-6934 Bioggio (Switzerland).
We provide this Notice as the Controller of your Personal Data (hereinafter referred to also as "Data") to help you better understand how we process your Personal Data, for what purposes, and how you can exercise control over your information.
At the end of this document, you will find the Definitions, which refer to more detailed explanations of the terms in capital letters.
|
|
What Data we collect and process |
We may collect data from Our Pages, when you visit one of Our Shops, and/or when you complete one of Our Forms. Data collected and the relative purposes of processing depend on how you interact with us, the Services or functionalities you choose to use, and how you manage the settings of your Browser and the Device. Data are collected either directly from you, through your voluntary provision of information, or indirectly, through the automatic collection of technical and behavioral information when you interact with us. Such Data are processed exclusively for specific, explicit and legitimate purposes, as described below:
• Identification Data: includes information such as your name, surname, date of birth and gender. These Data allow us to identify you and provide you with our Services.
• Contact Data: includes your e-mail address, phone/mobile number(s), postal address and shipping address. These Data are used to communicate with you and to deliver our products or Services.
• Purchase Data: includes the information required to process payments and billing information (such as billing address, payment card details, payment method, transaction codes) as well as your preferences (e.g., product purchased, price, size or colours of your purchase history).
• Inferred Data: includes information derived from your online and offline interactions with our Services. For example, when you place an item in your shopping cart, click on a specific section on Our Pages, complete Our Forms, or contact us by email, phone, chat or other channels. We may also keep records of your requests, communications and our responses. If you contact us by telephone, more information will be provided during the call. These Data help us improve our Services and provide you with more relevant content.
• Browser and Device Data: When you use Our Pages, we collect information on the Browser and the Device you are using. This may include your IP Address, the date and time of access, requested URL, Unique Identifiers, operating system, language, network settings, internet provider or telephone operator, installed applications and plug-ins, site of origin, pages visited, and other actions carried out on Our Pages. Some of this information is collected using Cookies, SDKs and Other Tracking Technologies (including Meta Business Tools), in accordance with user preferences" ̶" for further details on how Meta processes Data collected through these tools, please refer to Meta"s Privacy Policy). These technologies help us avoid malfunctions, measure website traffic and optimize advertising campaigns, as well as to provide you with Content that may be useful to you. You can find the complete list of Cookies and SDK we use here.
• Location Data: we process information about your location in order to show you Our Shops near you and to provide you with Content that may be useful to you. Your location can be determined by manually entering an address, city, or zip code, or automatically through your IP Address or Device settings. The level of accuracy depends on your Browser and Device settings.
• Wi-Fi connection Data: when you access the Wi-Fi service provided in Our Shops, we may collect information such as your favorite shop, last store visited, average monthly visits, and average visit time. Depending on your interactions, this may include information about your Device"s presence (e.g., signal strength, manufacturer, pseudonymized MAC address), activity information (such as IP Address, timestamps of connection, hotspot used, traffic volume and logout reason), and, where applicable, registration information you voluntarily provide (e.g., name, e-mail, telephone number, date of birth or gender). Such information is primarily processed to improve the management and security of the Wi-Fi Services and to gain insights into aggregated customer behavior. MAC addresses are promptly pseudonymized to avoid direct identification. Where you have expressly provided your consent at the time of activating the Wi-Fi Services, Wi-Fi connection Data may become Inferred Data and used for the purpose of sending you personalized marketing communications based on your preferences. Wi-Fi connection Data is generally retained for up to 18 months after you stop using the Services, unless shorter or longer retention periods apply as indicated in the tables below.
If you provide us with the Data of third parties (e.g., postal addresses or payment data of third parties for a gift), you will be held responsible for having shared such information with us. You must be legally authorized to share it (i.e., authorized by the third party to share their information or for any other legitimate reason). You must fully indemnify us against any complaints, claims or demands for compensation of damages which may arise from the processing of third-party Personal Data in violation of applicable data protection law.
|
|
Third parties we collect data from |
|
• Data collected by third parties: we may ask third-party business Partners (e.g., social media, co-branding companies, etc.) to send or display our advertisements to their users based on certain criteria/interests. These so-called micro-targeting and/or retargeting activities typically do not lead to the direct collection of Personal Data by us. Instead, they usually allow us to obtain Aggregated Information on the effectiveness of those advertisements or lead to the registration of new users or new followers. In accordance with European legislation, in carrying out these activities both Guess and our business Partners make every possible effort to verify the conformity of the data (including joint controllership agreements) before they are used. In addition, if you choose to log in to our Services (including the Wi-Fi Services) through a third-party provider (such as Facebook Login), we may access the information authorized through that service, such as your name, e-mail address, gender, age or home zip code. Please check your privacy settings on those third-party platforms to control what information you share with us. You can request more information on our list of active commercial Partners and the obligations of the respective parties by writing to [email protected].
• Data collected from public or publicly accessible sources: we may collect or enrich your Personal Data with information obtained from third parties and public sources accessible within the limits of the law applicable to us. These sources may include data brokers, public registers, online newspapers, lists or public directories. Please note that a preliminary check is always carried out on the possibility to use this information, according to the best practices established by the competent Supervisory Authorities to which we are subject.
Your interactions with us determine the categories of information we collect and the purposes of their processing, as specified in the tables below.
|
|
All users (Guess and Rag & Bone) |
Whether you are a Guess or Rag & Bone customer •̶ "regardless of whether registered or not, as of 22/09/2025, if you use our Services, browse Our Pages, make purchases in Our Shops, or interact with us through the available contact channels, we process your Data as set out below:
|
|
|
|
|
|
|
|
|
Purpose |
Data |
Legal basis |
Fully automated means |
Retention period |
Recipients (may include): |
|
|
Analyzing and improving our Services and creating new Services and features |
Inferred Data; Browser and Device Data; Aggregated Information; Purchase Data; Wi-Fi connection Data |
|
Legitimate interest |
No |
Up to 1 year / Aggregated Information may be retained up to 5 years |
Authorized Personnel; Guess Entities; Data Processors; System Administrators |
|
Complying with legal obligations (e.g.,
tax, accounting, consumer protection) |
Identification Data; Contact Data; Purchase Data |
|
Legal obligation |
No |
Up to 10 years (or as long as mandated by applicable law) |
Authorized Personnel; Guess Entities; Data Processors; Public authorities; Law Enforcement; System Administrators |
|
Classifying marketing communications
based on objective and non-inferred criteria (e.g., gender, location,
purchases) |
Identification Data; Inferred Data; Aggregated Information; Location Data; Purchase Data |
|
Legitimate interest |
No |
Up to 5 years or until objection |
Authorized Personnel; Guess Entities; Data Processors; System Administrators |
|
Customizing our Services, including providing Content that may be useful to you (e.g., web push notifications) |
Inferred Data; Wi-Fi connection Data; Browser and Device Data; Location Data |
|
Consent |
No |
Up to 5 years or until consent withdrawal |
Authorized Personnel; Guess Entities; Data Processors; System Administrators |
|
Detecting anomalies and improving our
Services (e.g., avoid bugs,
disruptions, malfunctions) |
Browser and Device Data; Inferred Data; Aggregated Information; Wi-Fi connection Data |
|
Legitimate interest |
No |
Up to 10 years (or as long as mandated by applicable law) |
Authorized Personnel; Guess Entities; Data Processors; System Administrators |
|
Providing our Services and related support (e.g.,
purchases in store/online, invoicing, contests, customer support) |
Identification Data; Contact Data; Purchase Data; Inferred Data |
|
Contract / pre-contractual measures |
No |
Authorized Personnel; Guess Entities; Data Processors; System Administrators; Payment and Shipping Providers |
|
|
Protecting our interests and your
interests (e.g., fraud prevention, security, audits, compliance checks) |
Identification Data; Contact Data; Purchase Data; Browser and Device Data |
|
Legitimate interest / Legal obligation |
No |
Up to 10 years (or as long as mandated by applicable law) |
Authorized Personnel; Guess Entities; Data Processors; Public authorities; Law Enforcement; System Administrators |
|
Reminding you to complete your
purchase when you have added items to the cart but have not finalized the
checkout (abandoned cart reminders) |
Identification Data; Contact Data; Inferred Data |
|
No |
Up to 30 days from when the item is added to the cart |
Authorized Personnel; Guess Entities; Data Processors; System Administrators |
|
|
Retargeting you on social media and
other display platforms |
Contact Data; Browser and Device Data |
|
Consent |
No |
Authorized Personnel; Guess Entities; Data Processors; Meta Platforms Inc.; Programmatic Advertising; System Administrators • |
|
|
Sending you customized promotional
communications (e.g., newsletter, offers, reminders, co-branded campaigns) |
Identification Data; Contact Data; Inferred Data; Browser and Device Data; Location Data; Wi-Fi connection Data |
|
Consent |
No |
Up to 5 years or until consent withdrawal |
Authorized Personnel; Guess Entities; Data Processors; Partners (e.g., for co-branded campaigns); System Administrators
|
|
Sending you promotional
communications relating to products or Services similar to those already purchased ("soft spam") |
Identification Data; Contact Data; Purchase Data; Inferred Data |
|
Legitimate interest |
No |
Until objection |
Authorized Personnel; Guess Entities; Data Processors; System Administrators |
|
|
Guess users (Loyalty Program) |
|
If you are a Guess user enrolled in the Loyalty Program, in addition to the processing activities described in the table above for "All users (Guess and Rag & Bone)", we also process your Data for the following additional purposes:
|
|
|
|
|
|
|
|||
|
Purpose |
Data |
Legal basis |
Fully automated means |
Retention period |
Recipients (may include): |
|||
|
Loyalty Program profile creation and management (e.g., registration, account
management, allocation of points, benefits and status) |
Identification Data; Contact Data; Purchase Data; Inferred Data |
|
Contract |
No |
Until contract termination |
Authorized Personnel; Guess Entities; Data Processors; Partners; System Administrators |
|
|
|
Sending you communications relating
to the Loyalty program (e.g., updates on points, benefits, exclusive promotions for
members) |
Identification Data; Contact Data; Inferred Data; Purchase Data; Location Data |
|
Contract |
No |
Until contract termination |
Authorized Personnel; Guess Entities; Data Processors; System Administrators |
|
|
|
|
Where your Personal Data are |
|
Guess is a global brand, and Our Shops are available in multiple jurisdictions worldwide. This means that your Data may be stored, accessed, used, processed, and disclosed outside your jurisdiction, including within the European Union, the United States of America, or any other country where our Entities, Our Shops, service providers, Data Processors and sub-processors are located, or where their server or cloud computing infrastructures may be hosted. We take steps to ensure that the processing of your Data by our Recipients is compliant with the applicable data protection laws, including the Swiss laws to which we are subject. Where required by EU and/or Swiss data protection law, transfers of your Data to recipients outside of the EU and/or Switzerland will be subject to adequate safeguards (such as the EU standard contractual clauses for data transfers between EU and non-EU countries), and/or other legal basis according to the EU and the Swiss legislations. For more information on the adequate safeguards that we have implemented with regard to Data that is transferred to third countries, please write to: [email protected].
|
|
How you can control your Data and manage your choices |
At any time, you can exercise your right to:
• Access your Data: you may request access to the Personal Data we hold about you, such as your name, age, IP Address, Unique Identifiers, e-mail address and expressed preferences. We will also provide the Notice you received when the Data was collected and, where applicable, the source of the Data (e.g., when provided by one of our business Partners);
• Data portability: you may exercise your right to data portability and request an interoperable file containing your Personal Data, according to your use of our Services;
• Rectification: you may ask us to correct your Personal Data if it is inaccurate or incomplete (e.g., an incorrect e-mail address or phone number);
• Restriction of processing: you may request the limitation of processing in certain circumstances, for example, if you believe the processing is unlawful or that processing based on our legitimate interest is not appropriate;
• Erasure: you may ask us to delete your Personal Data, for example, when you no longer wish to use our Services and do not want us to retain your Data;
• Consent management: according to your use of our Services, you may request us to not send you promotional communications and/or to not personalize our Services including any Content that may be useful to you. Please note that, even if in the opt-in phase we collect only one consent for both "Sending you customized promotional communications" and "Customizing our Services including any Content that may be useful to you" purposes, then in the opt-out process the data subject is entitled to revoke even only one of the given consents.
• Object: you may object at any time to the processing of your Data for soft spam (promotional communications relating to products or Services similar to those already purchased) as well as to the processing of your Data for the classification of marketing communications based on objective and non-inferred criteria (e.g., gender, location, purchases).
In accordance with EU and Swiss data protection law, we will reply to your request within one month of its receipt (extendable for two further months in case of particular complexity). Please mind that some of your rights may be subject to restrictions if the applicable law allows to do so.
You can exercise any of the rights listed above towards:
• Guess by writing to [email protected] or via letter mail to Guess Europe Sagl with registered offices at Strada Regina 44, CH-6934 Bioggio, Switzerland;
• one or more Entities, which processed your Data by sending a communication to the contact details you will find in their communications;
• third parties who shared your Data with us (e.g., business Partners, data brokers) via their e-mail address or your account settings on their platforms.
|
|
Contact the competent Supervisory Authorities or the one of your country whose contact details are available here. |
• Revoke your consent for the purposes for which we have collected it through the settings of Our Pages or by writing to [email protected];
• Stop the sending of promotional communications by clicking on the link at the bottom of each e-mail and/or clicking on the "STOP" link to any text or other message you receive notification;
• Set up your preferences regarding Data collected by the Browser and the Device by clicking https://www.rag-bone.eu/-/accountprivacy.
• If you want to opt out from the web push notification, you can withdraw your consent at any time, depending on the Browser you are using and according to the following instructions.
Main Browsers:
- Chrome
- Firefox
- Safari
You can also withdraw your consent to receiving notifications directly from the communications that you receive by following the instructions below:
Desktop: Right-click on the notification > disable notifications from guess.eu
Mobile: Access the notification centre > Site settings > Notifications > Block notifications from guess
• Block" the sharing of some of your Data within the Programmatic Advertising platforms that allow us to send you Content that may be useful to you, by using the AdChoices tool; the ones provided by the Digital Advertising Alliance; the DAA AppChoices in the United States; the Digital Advertising Alliance of Canada in Canada or the European Interactive Digital Advertising Alliance in Europe.
• Block the sharing of some of Unique Identifiers via your Device. For iOS Devices: you can turn on the "Limit Ad Tracking" setting by going to Settings>Privacy>Advertising and select/toggle on "Limit Ad Tracking". "On the same page, you can also reset your advertising ID (so-called IDFA). For Android Devices:" turn on the "Opt out of Ads Personalization" setting by going to Settings > Privacy > Advanced > Ads and select/toggle on Opt out of Ads Personalization.
• Limit the processing of Information about your location from your Device by choosing to enable the tracking of your location only for a short period of time or by providing us only with your address or zip code;
• Block the processing of Other Tracking Technologies (e.g., pixels) in our e-mail communications via your e-mail application. For example, on Outlook, the blocking of such tracking is turned off by design unless you press "Download images".
|
|
What is not covered by this Notice |
This Notice explains and covers the processing operations we carry out both as autonomous Data Controller and, in specific cases, as Joint Data Controller with third-party providers (for example, when we use social media platforms to retarget our users).
The Notice does not cover processing carried out by parties other than Guess and in particular does not cover:
• the processing carried out by our business Partners as autonomous Data Controllers including those carried out by social media platforms within Our Pages;
• the further processing carried out by our Entities as autonomous Data Controllers for purposes other than those described in this Notice.
With respect to such hypotheses, we do not assume any responsibility for the processing of your Data not covered by this Notice.
|
|
Changes to the Notice |
This Notice entered into force on the date indicated at the beginning of this document. We reserve the right to modify or update this Notice, in full or in part, at our discretion or as a consequence of changes in applicable regulations. We will inform you of substantial changes to this Notice via your contact details.
License
The icons illustrated in this Notice are "Data Protection Icons" by Maastricht University European Centre on Privacy and Cybersecurity (ECPC) CC BY 4.0.
|
|
Definitions |
Guess Entities or Entities: Guess Europe BV; Guess Global Holding GmbH; GUESS Italia Srl; GUESS UK Limited; GUESS Retail (Ireland) Limited; GUESS Retail Denmark ApS; GUESS Retail Sweden AB; GUESS Norge AS; GUESS France SAS; GUESS Luxembourg SARL; GUESS Belgium SRL; GUESS Finland OY; GUESS Poland Sp. Zoo; GUESS Service Poland Sp. Zoo; GUESS Retail Czech Rep. Sro; GUESS Hungary KFT; GUESS Apparel Spain SL; GUESS Apparel Andorra SLU; GUESS Deutschland GmbH; GUESS Austria GmbH; Guess Turkey Perakende Satis Magazacilik Ve Ticaret Limited Sirketi Ltd; GUESS TURKEY GİYİM İTHALAT VE DAĞITIM LİMİTED ŞİRKETİ (distribution) Ltd; GUESS Retail Hellas Single Member Private Company Ltd; GUESS Retail Cyprus Ltd; Guess CIS, LLC (Russia); GUESS Kazakhstan LLP; GUESS San Marino S.r.l. More information is available by writing to: [email protected].
Aggregated Information: refers to statistical information about you that does not contain your Personal Data. We use this information for analysing and improving our Services and creating new Services and features and to create statistical reports for Our Shops.
Authorized Personnel: refers to our employees and collaborators who are authorized to carry out data-related activities as described in this Notice and who are bound by confidentiality obligations as well as by specific internal rules on the processing of Personal Data.
Browser: refers to programs used to access the internet (e.g., Safari, Chrome, Firefox, etc.).
Combination and/or Crossing: this is the set of fully automated and non-automated operations which we combine with the Information about your location, the Data inferred by" your activity, the Data collected by the Browser and the Device, the Data you provide used to provide the Services, analysing and improving our Services and creating new Services and features, as well as to offer Content that may be useful to you. We may also combine and/or cross information from different sources, such as information collected from Our Pages, Data collected from public or publicly accessible sources and Data collected by third parties.
Content that may be useful to you: for example, if you search for a particular product, we may display similar products on Our Pages or through Programmatic Advertising. Customization of the content may occur through the Combination and/or Crossing of Data.
Cookie: a Cookie is a small text file that is downloaded onto your Device (e.g., smartphone, computer, iPad) when you access Our Pages. It allows websites to recognize your Device and store information about your preferences or past actions (e.g., the fact that you visited the site, your language and other information). The information collected via Cookies may be about you, your preferences or your Device and is mostly used to make Our Pages work as you expect it to. Information collection via Cookies does not usually directly identify you, but it can give you a more personalized experience on Our Pages you are visiting, as they might be used to record your preferences regarding the use of Cookies (technical Cookies), analyse and improve our Services and create new Services and features or Customizing our Services, including Content that may be useful to you.
Data Controller or Joint Data Controller: refers to the legal person, public authority, service or other entity which, individually or jointly, determines the purposes and means for processing your Personal Data. In other cases, it may be preceded by the word "autonomous" (e.g., "autonomous Data Controller") to indicate that your Personal Data is processed by a subject other than us.
Data Processor: refers to an entity that we engage to process your Personal Data solely on behalf of and pursuant to the written instructions provided by us.
Device: refers to the electronic device (e.g., iPhone) which you use to visit Our Pages. •
IP Address: is a unique number used by your Browser or your Device in order to connect to the internet. The internet service provider provides this number allowing identification of the provider and/or the approximate area where you are located. Without this data, you cannot connect to the internet and use our Services or use Content that may be useful to you.
Law Enforcement: refers to any authority (e.g., courts, governmental, administrative or regulatory bodies, including Law Enforcement agencies) whose provisions are legally binding on us, and which may require us to disclose your Data in order to comply with applicable laws or legal proceedings.
Loyalty Program: the customer Loyalty Program organized and managed by Guess Europe SAGL, designed to reward customers for purchases and specific engagement activities by granting points that can be redeemed for rewards and benefits.
Other Tracking Technologies: pixel tags (tracers used with Cookies and embedded in images on web pages to track certain activities, such as the viewing of Content that may be useful to you, or to see if an e-mail has been read) or Unique Identifiers embedded in links to promotional communications that send us information when clicked on.
Our Forms: any form through which we can collect your Data (e.g., account sign-up etc.).
Our Pages: includes our Sites (https://www.guess.eu / www.rag-bone.eu)and our social network pages.
Our Shops: includes our e-commerce channels and physical stores of Guess Entities, including Rag & Bone stores.
Partners: means third-party entities who may communicate your Personal Data to us only after they have contractually assured us that they have obtained your consent or that they have another legal basis that legitimizes their communication/sharing of such data with us. This definition also includes the selected Partners with whom we may share your Data.
Payment and Shipping Providers: refers to external providers involved in the execution of your purchases, such as payment service providers and international carriers, which act as autonomous Data Controllers when processing your Personal Data for their own purposes (e.g., payment authorization, transaction management, shipment and delivery).
Personal Data: means any information relating to an identified or identifiable natural person whether directly or indirectly, as well as any information that is linked or reasonably linkable to a particular individual or household. For example, an e-mail address (if it refers to one or more aspects of an individual), IP addresses, and Unique Identifiers are considered Personal Data.
Programmatic Advertising: these are platforms that share the information they collect about you, such as your IP Address and the data collected by Cookies, SDKs and Other Tracking Technologies, with entities who have an interest in showing you Content that may be useful to you. In our case, if you visualize a particular product on Our Pages, we will ask participants in Programmatic Advertising to grant us an advertising space on one of the websites you visit in order to display Content that may be useful to you. On this point, we would like to reiterate that the communication of your Data to participants in Programmatic Advertising is based on your prior and specific consent provided on the banner when the first visiting Our Pages. If you want to know how you can object to such communications, please follow the instructions in the "How you can control your Data and manage your choices" section above.
SDK: are software libraries that are installed together with a mobile application. They allow the collection of data in the same way as the Cookies do on the Browser. Depending on the settings of your Device, SDKs can collect Information about your location, Unique Identifiers, and Data inferred by your activity.
Sensitive Data: means Personal Data that reveal racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership and the processing of genetic data, biometric data aimed at uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.
Services: collectively, this means all the Services available on Our Pages and Our Shops including sales, booking an appointment with our stylists and aftersales Services.
System Administrators: refers to our employees, as well as those of our Data Processors, who assist us in the management of our IT systems and who may therefore access, modify, suspend or limit the processing of your Personal Data. These individuals are specifically selected, adequately trained, and their activities are logged and monitored through systems that they cannot alter. •
Unique Identifiers: consist of information that can uniquely identify you through your Browser and Device. On the Browser, your IP Address and Cookies are considered Unique Identifiers. On your Device, advertising identifiers provided by manufacturers, such as Apple's IDFA and Android"s AAIG, which we use for analysing and improving our Services and creating new Services and features including Content that may be useful to you, are considered Unique Identifiers. Please note that for these purposes and in line with the opinions of the European Supervisory Authorities, we do not use other Unique Identifiers such as MAC Addresses and IMEIs as they are not resettable by you.