WOWME Privacy Policy

Effective Date: April 1, 2025
WOWME respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, share, and protect your information when you interact with our services.


1. Scope of this Policy
This Privacy Policy applies to all personal data collected and processed by WOWME from clients, website visitors, and third-party partners in connection with:

• Dress rental and try-on services
• Client dress consignment and rental on our platform
• Dress sourcing and acquisition requests
• Communications via email, phone, WhatsApp, or Instagram (until full website functionality is launched)
• Marketing and promotional campaigns, including newsletters, social media ads, and influencer programs
• Event participation, client satisfaction surveys, and referral programs
• Accessing, registering for, or using WOWME’s digital platforms or any physical services (fittings, pick-ups, drop-offs, or showrooms)
• Applying for or engaging in business collaborations or partnerships with WOWME

This Policy governs both online and offline interactions with WOWME and applies to the processing of personal data regardless of whether it was collected through automated means (e.g. website forms) or manually (e.g. rental agreements, service calls).
WOWME as Data Controller:
WOWME, based in Zagreb, Croatia, is the data controller of your personal data for the purposes of applicable EU and Croatian data protection legislation, including the General Data Protection Regulation (GDPR) and Croatian Personal Data Protection Act (ZZOP).
This Policy does not apply to:

• Third-party websites or services that may be linked on our website or communicated via social media;
• Services or content not controlled by WOWME.

We encourage users to review the privacy practices of such third-party services independently.
For any questions about this Policy or your data, please contact us at info.wowme.hr@gmail.com.


2. What Data We Collect
We may collect the following categories of personal data:

• Identity Data: Full name, date of birth, gender
• Contact Data: Email address, phone number, billing and delivery addresses
• Rental Information: Dress selection, sizing, rental period, fitting notes
• Financial Information: Payment method details (processed securely via third-party providers)
• Client Preferences: Size preferences, fit feedback, favorite styles
• Communication Data: Messages via WhatsApp, Instagram, emails, contact forms
• Technical Data: IP address, browser type, device information, usage data (when the website is available)
• Visual Data: Photos submitted by client for styling/fitting purposes (only with consent)

We do not intentionally collect sensitive personal data (e.g. health, political views, religion).


3. How We Use Your Data
We use your personal data for the following purposes:

• To manage your orders and rentals: including booking, confirmation, scheduling, and fulfilment of rental services.
• To arrange fittings, deliveries, and returns: coordinating logistics via our courier network or in-person appointments.
• To process payments and refunds: ensuring secure transactions for rentals, deposits, cleaning fees, and other services.
• To contact you regarding your rental or customer service needs: providing updates, answering inquiries, managing disputes, and facilitating assistance.
• To personalise style recommendations: using prior preferences, sizing, and order history to suggest suitable options.
• To improve our services and website experience: analysing usage patterns, user feedback, and operational data.
• To send promotional emails or messages (with your consent): informing you of new arrivals, promotions, events, or surveys.
• To comply with legal and financial obligations: including tax, accounting, and lawful data access or disclosure requests by authorities.

We ensure your data is only used when there is a legal basis such as contractual necessity, legitimate interest, legal requirement, or explicit consent.


4. How Long We Store Your Data
We retain personal data only for as long as necessary to:

• Fulfil the purposes for which it was collected
• Meet legal, accounting or reporting requirements
• Resolve potential disputes or protect legal rights

Typical retention periods:

• Client and order data: 5 years after last transaction
• Financial records: 11 years in accordance with Croatian tax law
• Communication records: 2 years

5. With Whom We Share Your Data
We may share your personal data with:

• Service providers: Couriers, dry cleaning partners, IT and cloud hosting services
• Payment processors: For secure billing and transactions
• CRM and email marketing tools: Used with data protection-compliant providers
• Professional advisors: Legal, accounting, and compliance partners
• Government authorities: If required by law or court order

We never sell your data. Data is only shared on a need-to-know basis and under a data processing agreement when required.


6. Your Rights Under GDPR
As a data subject, you have the right to:

• Access your data: Request a copy of the personal data we hold about you.
• Rectify inaccurate or incomplete data: Ask us to correct any incomplete or inaccurate information.
• Request deletion (right to be forgotten): Ask for your data to be deleted where it is no longer necessary or you withdraw consent.
• Restrict or object to processing: In certain circumstances, you can ask us to suspend or stop using your data.
• Data portability: Request to receive your personal data in a structured, commonly used format or for it to be transferred to a third party.
• Withdraw consent at any time: Where we rely on consent, you can withdraw it at any point.
• Lodge a complaint with the Croatian Data Protection Authority (AZOP): If you believe your rights have been violated.

To exercise any of these rights, contact us at info.wowme.hr@gmail.com. We will respond to all legitimate requests within one month.


7. Cookies and Tracking Tools
When the WOWME website is launched, it may use cookies and similar tracking technologies. These may include first- and third-party cookies that help us:

• Enable core website functionality such as page navigation, secure login, and shopping cart access.
• Measure and analyse website traffic and performance to understand user behavior and improve the user experience.
• Remember your preferences such as preferred sizes, saved favorites, and selected language.
• Serve targeted advertisements and content, based on browsing behavior and previous interactions (only with explicit consent).

You will be provided with a cookie banner when you visit our website. This allows you to:

• Accept all cookies
• Reject non-essential cookies
• Customise your cookie preferences (e.g. enable only performance or analytics cookies)

You can also manage or delete cookies via your browser settings at any time.
For more information on the cookies we use and to adjust your preferences, please refer to our Cookie Policy once the website is live.


8. Security Measures
We implement a combination of technical, administrative, and physical measures to safeguard your personal data. These include:

• Secure infrastructure: All data is hosted on servers with up-to-date firewall protection and intrusion detection systems.
• Encrypted backups: Data is backed up regularly with encryption and stored in secure, access-controlled environments.
• Internal access controls: Staff access to data is granted on a role-based, need-to-know basis only.
• Password-protected systems: All internal databases and CRMs require unique staff credentials with regular password rotation.
• Third-party confidentiality: All vendors and processors we engage must sign binding confidentiality and data processing agreements.
• Ongoing training and policy reviews: Our team receives regular training on GDPR compliance and secure data handling.
• Incident response protocols: In the unlikely event of a data breach, we have procedures to notify the Croatian regulator (AZOP) and affected users within the legally required timeframe.

Despite our efforts, no security system is completely foolproof. We monitor our practices continuously and update our safeguards regularly to respond to new threats and maintain the integrity of your information.


9. How to Contact Us
For any questions, access requests, corrections, or complaints regarding your data or this policy, please contact:
WOWME Data Protection Officer
Email: info.wowme.hr@gmail.com
Address: Zagreb, Croatia
You also have the right to lodge a complaint with AZOP (Croatian Personal Data Protection Agency).


This Privacy Policy may be updated periodically. Material changes will be communicated via email or on our website once available.