Privacy Policy for CothInk

Table of contents

• Collection of personal information
• Use and processing of collected information
• Managing information
• Disclosure of information
• Retention of information
• Privacy of children
• Do Not Track signals
• Email marketing
• Links to other resources
• Information security
• Data breach
• Changes and amendments
• Acceptance of this policy
• Contacting us

1. Collection of personal information

We collect Personal Information that you voluntarily provide when you use the Services and certain information automatically when you access the Services.

Information you provide directly:

• Account information (if you choose to create an account): name, email address, and any other fields you complete.
• Photos and images you upload (for virtual try-on). These include images of yourself and clothing images that you upload or that are uploaded on your behalf.
• Support requests, feedback, and other messages you submit through contact forms or email.

Information collected automatically:

• Device and technical data: IP address, browser type and version, operating system, device identifiers, and connection information.
• Usage data: pages visited, actions taken within the Service, timestamps, session length, and feature usage.
• Analytics and performance data collected via server logs and third-party analytics (see "Links to other resources").

We collect and store images and related metadata when you use the virtual try-on so we can provide the Service and improve your experience.

2. Use and processing of collected information

We use Personal Information for the following primary purposes:

• To provide, operate, and maintain the Service (including generating virtual try-on results).
• To store uploaded images so you can reuse them and avoid re-uploading; to speed up the experience and preserve any saved preferences.
• To develop, improve, and train our AI models and recommendation systems. When used for model training or research, image data and usage data may be aggregated or pseudonymized whenever reasonably possible.
• To personalize your experience, remember preferences, and present relevant content.
• To communicate with you about Service updates, technical notices, and support responses.
• To analyze usage trends and monitor, maintain, and improve performance, security, and capabilities.
• To comply with legal obligations and enforce our Terms of Service.

Where required by law (for example, in the EEA), our lawful basis for processing may include your consent, performance of a contract (providing the Service), and our legitimate interests (improving and securing the Service). You may withdraw consent for data processing that relies solely on consent (see "Managing information").

3. Managing information (access, correction, deletion, portability)

You can manage your Personal Information as follows:

• Access & Correction: You may request access to the Personal Information we hold about you and request correction of inaccurate data.
• Deletion: You may request deletion of your Personal Information and uploaded images. Upon a valid deletion request we will remove your data from active systems and user-accessible areas within a reasonable timeframe (generally within 30 days), subject to any legal obligations requiring longer retention. Some residual copies may remain in backups for a limited period.
• Portability: Where applicable, you may request a copy of your Personal Information in a commonly used, machine-readable format.

How to make requests: Send a request to our privacy contact (see "Contacting us") and include the email address associated with your account and a description of the request. We may require reasonable proof of identity before fulfilling requests.

We will honor requests in accordance with applicable law. If we deny a request, we will explain the reason.

4. Disclosure of information

We do not sell, rent, or trade your Personal Information to third parties for their own marketing purposes.

We may disclose Personal Information:

• To service providers and subprocessors: third-party vendors who perform services on our behalf, such as hosting providers, cloud storage, analytics providers, and email services. These providers are contractually limited to use your Personal Information only to provide services to us.
• For legal reasons: to comply with applicable laws, lawful requests (such as subpoenas), court orders, or other legal processes; to investigate potential violations; or to protect our rights, property, or safety or that of our users or others.
• During business transfers: in connection with a merger, acquisition, reorganization, or sale of our assets, user data may be transferred as part of the transaction (and will remain subject to confidentiality obligations).
• Aggregate or de-identified data: we may share aggregated, anonymized or de-identified information that does not reasonably identify you.

5. Retention of information

We retain Personal Information and images as long as needed to provide the Service, for business purposes (including improving AI and Service quality), to comply with legal obligations, and to resolve disputes. For inactive accounts or unused data we may retain copies for a limited period (for example, up to 2 years) before permanent deletion, unless you request deletion sooner. If you request deletion, we will act in accordance with the "Managing information" section above.

6. Privacy of children

The Service is not directed to children under the age of 13 (or higher minimum age in certain jurisdictions). We do not knowingly collect Personal Information from children under the applicable minimum age. If you believe we have collected such information, contact us and we will take reasonable steps to delete it.

7. Do Not Track signals

Some browsers transmit "Do Not Track" (DNT) signals. Our Website does not currently alter its data collection or processing practices in response to DNT signals. For information on controlling tracking, see "Cookies and tracking technologies" below and your browser settings.

8. Email marketing

If you sign up to receive email updates, promotions, or newsletters, we will only send emails where you have consented to receive them or where permitted by law. You can opt out of marketing emails at any time by following the "unsubscribe" link in the email or by contacting us at the address below.

9. Links to other resources

The Service may contain links to other websites or services that are not operated by us. We are not responsible for the privacy practices or content of those third-party sites. We encourage you to review the privacy policies of any site you visit.

10. Cookies and tracking technologies

We and our service providers use cookies, web beacons, device identifiers, local storage, and similar technologies to collect information about usage and device characteristics. Cookies help us remember preferences, maintain sessions, measure performance, and deliver a better user experience. You can control or delete cookies via your browser settings; however, disabling cookies may reduce or prevent certain features of the Service from working correctly.

11. Information security

We implement reasonable technical, administrative, and physical safeguards designed to protect Personal Information from unauthorized access, use, alteration, or disclosure. These measures include access controls, encryption in transit, secure hosting practices, and periodic security reviews. No method of transmission or storage is 100% secure; despite our efforts, we cannot guarantee absolute security.

12. Data breach

In the event of a security breach that materially affects your Personal Information, we will notify affected users and any applicable regulators as required by law, describing the nature of the breach, the types of information impacted, and steps we are taking in response. We will also provide guidance about actions you can take to protect yourself.

13. International transfers

Your Personal Information may be processed and stored in countries other than your own. If your data is transferred outside your jurisdiction, we will take commercially reasonable steps to ensure an adequate level of protection for the information in accordance with applicable law.

14. Changes and amendments

We may update this Policy from time to time. When we make material changes we will update the "Last updated" date at the top of this page and, when appropriate, provide additional notice (for example, by email or prominent notice on the Website). Your continued use of the Service following notice of changes constitutes acceptance of the updated Policy.

15. Acceptance of this policy

By accessing or using the Website or Services, you acknowledge that you have read, understood, and agree to be bound by this Policy. If you do not agree, you must not use the Website or Services.

16. Contacting us

If you have questions about this Policy or wish to exercise your rights (access, correction, deletion, portability, or objection), please contact:

Email: support@clothink-kappa.vercel.app

Website: https://clothink-kappa.vercel.app/

Include the email address associated with your account (if any) and a clear description of your request. We will respond to verified requests in accordance with applicable law.

Note: This Policy is provided for informational purposes and does not constitute legal advice. Depending on where your users are located (for example, the European Union, United Kingdom, or California), you may need additional clauses or a more detailed compliance program (GDPR, UK GDPR, CCPA/CPRA). If you'd like, I can adapt this Policy into a ready-to-paste HTML page for https://clothink-kappa.vercel.app/privacy or add jurisdiction-specific sections (GDPR / CCPA).