§ 1. General Information
This Privacy Policy describes how GagaTrend ("Operator", "we", "us") collects, uses, and protects personal data in connection with the website https://gagatrend.com and the GagaTrend mobile application (collectively, the "Service").
The Operator acts as the data controller within the meaning of applicable data protection laws, including the General Data Protection Regulation (GDPR), where applicable.
§ 2. Categories of Data We Collect
1. Account Data
- Email address
- Name (optional)
- Username (public)
2. Login Data
- Authentication via Google OAuth
- Authentication via Apple Sign In
3. Avatar Data
- Profile photo uploaded by the User
- Images used to generate virtual outfits
4. Technical Data
- IP address
- Browser type
- Device information
- Server logs
§ 3. Public and Private Data
The following information is publicly visible within the Service:
- Username
- Published stylizations
- Profile photo (if uploaded)
The User’s email address is not publicly visible and is not shared with other Users.
§ 4. Purpose of Data Processing
Personal data is processed for the following purposes:
- Creating and maintaining User accounts
- Authentication and secure login
- Providing AI-based outfit generation services
- Displaying publicly shared stylizations and profiles
- Improving the functionality and security of the Service
- Preventing fraud and abuse
- Complying with legal obligations
§ 5. Legal Basis for Processing (GDPR)
Where GDPR applies, personal data is processed based on:
- Performance of a contract (account creation and Service provision)
- User consent (where required)
- Legitimate interests (security, fraud prevention, service improvement)
- Compliance with legal obligations
§ 6. Use of AI and Avatar Images
Profile photos and uploaded images may be processed by automated systems to generate virtual outfits and stylizations.
Such processing is necessary to provide the core functionality of the Service.
Avatar images are not sold to third parties.
§ 7. Data Sharing
We do not sell personal data.
Data may be shared only with:
- Authentication providers (Google, Apple) for login purposes
- Hosting and infrastructure providers
- Legal authorities if required by law
Email addresses are not shared publicly.
§ 8. Data Retention
Personal data is retained for as long as the User maintains an account or as required to provide the Service.
Technical data may be stored for security and fraud prevention purposes.
Upon account deletion, personal data is deleted or anonymized, except where retention is required by law.
§ 9. User Rights
Where applicable under data protection law, Users have the right to:
- Access their personal data
- Correct inaccurate data
- Request deletion of their data
- Restrict processing
- Object to processing
- Data portability
- Withdraw consent at any time (if processing is based on consent)
Requests may be submitted via the contact email provided below.
§ 10. Data Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.
§ 11. International Transfers
If data is transferred outside the European Economic Area, appropriate safeguards will be applied in accordance with applicable law.
§ 12. Children’s Privacy
The Service is not intended for children under the minimum age required by applicable law. If we become aware that data has been collected from a child without proper authorization, we will take steps to delete such information.
§ 13. Changes to this Privacy Policy
We reserve the right to update this Privacy Policy. Changes take effect upon publication within the Service.
§ 14. Contact
For questions regarding this Privacy Policy or data protection matters, please contact: [[email protected]]