Privacy Policy

1. Information We Collect

1.1 Information You Provide Directly

We collect information you voluntarily provide when you:

• Create an account (email address, username, profile information)
• Make fashion searches and save preferences
• Contact our support team or submit feedback
• Subscribe to our newsletter or marketing communications
• Participate in surveys, contests, or promotional activities
• Upload images or content to our platform

1.2 Information Collected Automatically

When you use our service, we automatically collect:

• Device information (IP address, browser type, operating system, device identifiers)
• Usage data (pages visited, time spent, clicks, search queries)
• Location data (approximate location based on IP address)
• Referral information (how you found our website)
• Performance data (page load times, error reports)

1.3 Information from Third Parties

We may receive information from:

• Social media platforms when you connect your accounts
• Authentication services (Google, Apple, Facebook)
• Fashion retailers and brands for product information
• Analytics and advertising partners

2. How We Use Your Information

2.1 Core Service Provision

• Process and respond to your fashion searches
• Provide personalized fashion recommendations
• Create and maintain your user account
• Enable social features and user interactions
• Process transactions and manage subscriptions

2.2 Service Improvement and Analytics

• Analyze usage patterns to improve our algorithms
• Conduct A/B testing and feature optimization
• Generate statistical insights about fashion trends
• Develop new features and services
• Monitor and improve system performance

2.3 Communication and Marketing

• Send service-related notifications and updates
• Deliver personalized content and recommendations
• Send marketing communications (with your consent)
• Respond to your inquiries and provide customer support

2.4 Legal and Security Purposes

• Detect and prevent fraud, abuse, and security threats
• Comply with legal obligations and law enforcement requests
• Enforce our Terms of Service and other policies
• Protect the safety and rights of our users and third parties

3. Information Sharing and Disclosure

3.1 We Do Not Sell Your Personal Information

We do not and will not sell your personal information to third parties for monetary or other valuable consideration.

3.2 Service Providers and Partners

We may share your information with trusted third parties who assist us in:

• Cloud hosting and data storage (AWS, Google Cloud, Microsoft Azure)
• Analytics and performance monitoring (Google Analytics, Mixpanel)
• Email and communication services (SendGrid, Mailchimp)
• Payment processing (Stripe, PayPal)
• Customer support and chat services
• Content delivery networks and security services

3.3 Legal Requirements

We may disclose your information when required by law or in response to:

• Valid legal process (subpoenas, court orders)
• Government investigations or regulatory requests
• Threats to public safety or national security
• Protection of our legal rights and property

3.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction. We will notify you of any such change in ownership or control of your personal information.

4. Data Security and Protection

4.1 Technical Safeguards

• End-to-end encryption for data transmission (TLS 1.3)
• AES-256 encryption for data at rest
• Multi-factor authentication for administrative access
• Regular security audits and penetration testing
• Automated threat detection and response systems

4.2 Organizational Measures

• Employee training on data protection and privacy
• Strict access controls and need-to-know basis
• Regular security awareness programs
• Incident response and breach notification procedures
• Third-party security assessments for vendors

4.3 Data Breach Response

In the unlikely event of a data breach, we will notify affected users within 72 hours and provide detailed information about the incident, potential impact, and steps we're taking to address it.

5. Your Privacy Rights and Choices

5.1 Access and Portability

• Request a copy of all personal information we hold about you
• Download your data in a machine-readable format
• Receive detailed information about how your data is processed

5.2 Correction and Updates

• Update your profile information and preferences
• Correct inaccurate or incomplete data
• Add missing information to your account

5.3 Deletion and Erasure

• Delete your account and associated data
• Request removal of specific information
• Exercise your "right to be forgotten" under applicable laws

5.4 Consent Management

• Withdraw consent for data processing activities
• Opt-out of marketing communications
• Manage cookie preferences and tracking settings
• Control third-party data sharing

5.5 How to Exercise Your Rights

To exercise any of these rights, please contact us at privacy@w2c.com or use the privacy controls in your account settings. We will respond to your request within 30 days and may require identity verification for security purposes.

6. Cookies and Tracking Technologies

6.1 Types of Cookies We Use

6.2 Managing Cookies

You can control cookies through your browser settings or our cookie preference center. Note that disabling certain cookies may affect website functionality and your user experience.

7. International Data Transfers

We operate globally and may transfer your personal information to countries outside your jurisdiction. When we do so, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions for countries with equivalent privacy protections
• Binding Corporate Rules for intra-group transfers
• Certification schemes and codes of conduct

8. Data Retention

We retain your personal information for as long as necessary to:

• Provide our services and support your account
• Comply with legal and regulatory requirements
• Resolve disputes and enforce our agreements
• Prevent fraud and ensure platform security

Account information is typically retained for 7 years after account closure, while anonymized analytics data may be retained indefinitely for business intelligence purposes.

9. Children's Privacy

Our service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such information, we will take immediate steps to delete it.

Parents and guardians who believe their child has provided personal information to us should contact us immediately at privacy@w2c.com.

10. Regional Privacy Laws

10.1 European Union (GDPR)

If you are located in the EU, you have additional rights under the General Data Protection Regulation, including the right to lodge complaints with your local data protection authority.

10.2 California (CCPA/CPRA)

California residents have specific rights under the California Consumer Privacy Act, including rights to know, delete, and opt-out of the sale of personal information.

10.3 Other Jurisdictions

We comply with applicable privacy laws in all jurisdictions where we operate, including Canada (PIPEDA), Brazil (LGPD), and other regional regulations.

11. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Notify you by email (if you have an account with us)
• Display a prominent notice on our website
• Update the "Last Updated" date at the top of this page
• Provide a summary of key changes

Your continued use of our service after the effective date of changes constitutes acceptance of the updated Privacy Policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us: