Privacy Policy

Last updated: 15 May 2026

This Privacy Policy explains how dresslife, Inc. (“dresslife”, “we”, “us”) collects, uses, and protects your personal information when you visit dresslife.com or interact with us through this website.

1. Who we are

We are dresslife, Inc., a Delaware corporation based in San Francisco, California. Full contact details are in our Imprint.

For users in the European Economic Area (EEA), the United Kingdom, and Switzerland, our EU representative under GDPR Article 27 is dresslife GmbH (Walderseestr. 7, 30163 Hannover, Germany).

2. What information we collect

2.1 Information you provide

When you submit our contact form, we collect:

  • Your name
  • Your company (optional)
  • Your email address
  • The content of your message

2.2 Information collected automatically

Our hosting provider records standard server logs when you visit the site. These typically include your IP address, browser type and version, operating system, referring URL, pages visited, and the date and time of each request. This information is used to operate and secure the website.

2.3 Cookies and analytics

This site does not use cookies. We use Vercel Web Analytics to understand aggregate traffic (such as page views and referrers). It is privacy-friendly by design: it sets no cookies, stores no information on your device, and does not create cross-site or cross-session identifiers or any profile of you. We do not use advertising cookies, social media pixels, or cross-site tracking. Legal basis: Art. 6(1)(f) (our legitimate interest in understanding and improving website usage). If we add anything that requires consent in the future, we will update this policy and ask for it.

3. How we use your information

We use the information we collect for the following purposes, relying on the following legal bases under the GDPR:

  • To respond to your inquiry and follow up about a potential business relationship, using your contact form data. Legal basis: Art. 6(1)(b) (steps prior to entering a contract at your request) or Art. 6(1)(f) (our legitimate interest in responding to B2B inquiries).
  • To operate, secure, and improve the website, using server logs. Legal basis: Art. 6(1)(f) (legitimate interest in a secure and functional website).
  • To comply with legal obligations where applicable. Legal basis: Art. 6(1)(c).

4. Who we share information with

We share personal information only with service providers acting as processors on our behalf, under written agreements that require them to protect your data. Our current processors are:

  • Vercel, Inc. (USA) - website hosting, infrastructure, and cookieless web analytics
  • Attio Ltd. (UK/USA) - customer relationship management, used to handle contact form submissions

We do not sell your personal information and we do not share it for cross-context behavioral advertising. We may disclose information when required by law, valid legal process, or to establish, exercise, or defend legal claims.

5. International data transfers

We are based in the United States. When you contact us from outside the US, your personal information will be transferred to and processed in the US and in other countries where our service providers operate.

For transfers from the EEA, the UK, or Switzerland to countries without an adequacy decision, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses (SCCs) or equivalent transfer mechanisms.

6. How long we keep your information

  • Contact form submissions: up to 24 months from your last interaction, unless an ongoing business relationship requires longer retention.
  • Server logs: typically up to 30 days, in line with our hosting provider’s default retention.

We may retain information longer where required by law (for example, tax or accounting obligations) or where necessary to establish, exercise, or defend legal claims.

7. How we protect your information

We use appropriate technical and organizational measures to protect personal information, including encryption in transit (TLS), access controls, and contractual obligations on our processors. No security measure is perfect, and we cannot guarantee absolute security.

8. Your rights

8.1 If you are in the EEA, UK, or Switzerland (GDPR / UK GDPR)

You have the following rights regarding your personal data:

  • Access - obtain a copy of the personal data we hold about you
  • Rectification - correct inaccurate or incomplete data
  • Erasure - request deletion of your data
  • Restriction - limit how we process your data
  • Portability - receive your data in a structured, commonly used format
  • Objection - object to processing based on legitimate interests
  • Withdraw consent - where processing is based on consent, with no effect on prior lawful processing

You also have the right to lodge a complaint with a data protection supervisory authority. In Germany, the competent authority for our EU representative is the State Commissioner for Data Protection of Lower Saxony.

To exercise any of these rights, contact us at the address in Section 11.

8.2 If you are a California resident (CCPA / CPRA)

You have the following rights regarding your personal information:

  • Right to know - what categories of personal information we collect, the sources, the purposes, and the categories of recipients
  • Right to access - obtain a copy of your personal information
  • Right to delete - request deletion of your personal information
  • Right to correct - inaccurate personal information
  • Right to opt out of sale or sharing - we do not sell personal information or share it for cross-context behavioral advertising, so no opt out is needed
  • Right to limit use of sensitive personal information - we do not collect sensitive personal information beyond what is necessary to respond to your inquiry
  • Right to non-discrimination - we will not discriminate against you for exercising your rights

In the preceding 12 months, the categories of personal information we have collected, under the CCPA’s definitions, are:

  • Identifiers (name, email address)
  • Commercial information (the content of your inquiry and your company affiliation)
  • Internet or other network activity (server log information)

We have not “sold” or “shared” personal information as those terms are defined under the CCPA / CPRA in the preceding 12 months.

To exercise your rights, contact us at the address in Section 11. We will verify your identity before responding. You may use an authorized agent to submit a request on your behalf.

9. Children’s privacy

This website is not directed to children under 16, and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, contact us and we will delete it.

10. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. For material changes, we will provide more prominent notice where appropriate.

11. Contact

If you have questions about this Privacy Policy or want to exercise any of the rights described above, contact us at:

dresslife, Inc.

58 West Portal Ave PMB 723

San Francisco, CA 94127, USA

privacy@dresslife.com

EU representative under GDPR Article 27:

dresslife GmbH

Walderseestr. 7

30163 Hannover, Germany

privacy@dresslife.com

← Back to home