Privacy Policy
YourStyled — AI Wardrobe Stylist
Last Updated: March 2, 2026 · Effective Date: March 2, 2026
1. Who We Are
YourStyled is a mobile application developed and operated by YourStyled (“we”, “us”, “our”). We are based in Hungary and operate under EU data protection law.
Data Controller: YourStyled
Website: https://your-styled.com
Privacy Contact Email: support@your-styled.com
General Contact: https://your-styled.com/contact
If you have any questions about how we handle your personal data, please contact us at support@your-styled.com or via our website.
2. What This Policy Covers
This Privacy Policy explains what personal data we collect when you use the YourStyled iOS app (“the App”) and the your-styled.com website (“the Website”), why we collect it, how we use and protect it, and what rights you have. It applies to all users of the App, regardless of subscription tier (Free, Plus, or Premium) and regardless of your country of residence.
This Privacy Policy complies with the EU General Data Protection Regulation (GDPR), the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018, the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA), the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA), the Australian Privacy Act 1988, the Hungarian Information Act (Infotv. — Act CXII of 2011), and Apple App Store Review Guidelines.
3. What Data We Collect
3.1 Data You Provide Directly
| Data Type | When Collected | Purpose |
|---|---|---|
| Email address | Account registration or Sign in with Apple | Account creation, authentication, account recovery |
| Name (optional) | Profile setup | Personalization |
| Style preferences | Style quiz during onboarding | AI outfit suggestions tailored to your taste |
| Body measurements (optional) | Profile setup | More accurate outfit and virtual try-on suggestions |
| Photos of your clothing | When you add items to your wardrobe | Wardrobe management, AI outfit generation |
| Body/face photos | When you use the virtual try-on feature | AI-powered virtual try-on image generation (see Section 5A) |
| Contact form messages | When you contact us via the website | Responding to your inquiries |
3.2 Data We Collect Automatically
| Data Type | Purpose | Legal Basis |
|---|---|---|
| Device information (device model, OS version) | App compatibility, crash reporting | Legitimate interest |
| App usage data (screens viewed, features used, session duration) | Improving the app experience | Consent (via analytics opt-in) |
| Crash logs and error reports | Identifying and fixing bugs | Legitimate interest |
| Approximate location (city-level) | Weather-based outfit suggestions | Consent (location permission) |
| IP address (collected automatically by Google AdMob SDK on Free tier) | Ad serving, fraud prevention | Legitimate interest / Consent (via ATT) |
| Device identifiers (IDFV; IDFA only with ATT consent) | Analytics, advertising (Free tier only) | Consent (via ATT for IDFA) |
3.3 Data from Third-Party Services
| Source | Data | Purpose |
|---|---|---|
| Apple Sign In | Email (may be relay), user identifier | Authentication |
| Apple WeatherKit | Local weather conditions | Weather-appropriate outfit suggestions |
| Apple EventKit | Calendar event names and dates (read-only) | Occasion-appropriate outfit suggestions |
3.4 Data We Do NOT Collect
We do not collect or store:
- Payment card details (all payments are processed by Apple through the App Store)
- Precise GPS coordinates (we only use city-level location for weather)
- Contacts, phone call logs, or browsing history
- Health or fitness data
- Data from children under 16 (see Section 10)
4. How We Use Your Data
| Purpose | Data Used | Legal Basis (GDPR / UK GDPR) |
|---|---|---|
| Providing the app service — wardrobe management, outfit suggestions, virtual try-on | Account data, wardrobe photos, style preferences, body photos | Contract (necessary to deliver the service you signed up for) |
| Weather-aware outfits | Approximate location | Consent (iOS location permission) |
| Calendar-aware outfits | Calendar event data | Consent (iOS calendar permission) |
| Improving the app | Anonymized usage analytics | Consent (analytics opt-in) |
| Fixing bugs and crashes | Crash reports, device info | Legitimate interest (maintaining service quality) |
| Managing your subscription | Account identifier, subscription status | Contract |
| Sending outfit reminders and delivery notifications | Device push notification token | Consent (notification permission) |
| Affiliate shopping recommendations | Wardrobe data (analyzed on-device and via AI) | Contract / Legitimate interest |
| Displaying advertisements (Free tier only) | IP address, device identifiers, ad interaction data | Legitimate interest (contextual ads) / Consent (personalized ads via ATT) |
| Responding to your requests | Contact form data | Consent / Legitimate interest |
We will never sell your personal data. We do not sell, rent, or share your personal information with third parties for their own marketing purposes. We do not use your photos for any purpose other than providing the App’s features to you.
5. AI-Generated Content
YourStyled uses artificial intelligence to generate outfit suggestions, wardrobe analysis, virtual try-on images, and shopping recommendations. Specifically:
- Outfit suggestions are generated using Anthropic’s Claude AI. Your wardrobe data (item descriptions, colors, categories — not raw photos) is sent to the AI to generate personalized outfits.
- Virtual try-on images are generated using Kling AI. Your body photo and a garment image are sent to generate the try-on preview. These images are processed and not retained by the AI provider beyond the time needed to generate the result (see Section 5A for details).
- All AI-generated content is clearly labeled within the App as AI-generated.
No automated decisions with legal or similarly significant effects are made about you. AI suggestions are recommendations only — you always choose what to wear.
5A. Biometric and Body Photo Data
This section applies to the virtual try-on feature, which processes body and face photographs.
What We Collect
When you use the virtual try-on feature, you provide body and/or face photographs. These photographs may contain biometric information such as facial geometry and body proportions.
Purpose
Your body/face photos are used solely for the purpose of generating AI virtual try-on images — showing you how a garment might look on you. We do not use these photos for identification, surveillance, facial recognition, or any purpose other than virtual try-on image generation.
How It Works
- Your body/face photo is stored locally on your device (encrypted at rest via iOS Data Protection).
- When you request a virtual try-on, your photo and the garment image are sent securely (via TLS 1.2+) to our Firebase Cloud Function, which forwards them to Kling AI for processing.
- Kling AI generates the composite image and returns it. Kling AI does not retain your photos beyond the time necessary to generate the result.
- The generated image is saved to your device.
Consent
Before your first virtual try-on, the App will ask for your explicit consent. This consent is separate from your general agreement to these terms. You may decline and continue using all other features of the App without using virtual try-on.
Retention and Deletion
- On your device: Body/face photos are stored locally until you delete them from your profile or delete your account.
- On our servers: Body/face photos are transmitted to Kling AI for processing and are not stored on our servers or Kling AI’s servers after the try-on image is generated.
- On account deletion: All locally stored body/face photos are removed when you delete the App or your account.
Your Rights
You may withdraw your consent for virtual try-on processing at any time by deleting your body photos from the App’s profile settings. Withdrawing consent does not affect the lawfulness of processing performed before withdrawal.
Data Protection Impact Assessment
We have conducted a Data Protection Impact Assessment (DPIA) for the virtual try-on feature in accordance with GDPR Article 35, given that this processing involves biometric data. The DPIA concluded that appropriate safeguards are in place, including explicit consent, data minimisation, encryption, and limited retention.
6. Who We Share Data With
We share your data only with the following categories of service providers, all of whom act as data processors on our behalf:
| Service Provider | Purpose | Data Shared | Location |
|---|---|---|---|
| Firebase (Google) | Authentication, cloud storage, push notifications | Account data, wardrobe photos (Plus/Premium), device tokens | EU/US (covered by Standard Contractual Clauses) |
| Anthropic (Claude AI) | Outfit generation, wardrobe analysis, shopping advice | Wardrobe item descriptions, style preferences (no raw photos) | US (covered by SCCs) |
| Kling AI | Virtual try-on image generation | Body photo, garment image (processed and not retained) | Processing location per provider terms (covered by SCCs) |
| PostHog | App analytics (opt-in only) | Anonymized usage events, device type | EU |
| Apple | Subscriptions, App Store | Transaction data (managed entirely by Apple) | US/EU |
| Google AdMob | Advertising (Free tier only) | IP address, device identifiers (IDFA only with ATT consent), ad interaction data | US/EU (covered by SCCs) |
| AWIN / CJ Affiliate | Affiliate link tracking (shopping feature) | No personal data — only anonymized click/conversion tracking | EU/US |
We do not share your data with advertisers for profiling purposes. Free tier banner ads are served by Google AdMob using contextual targeting, not behavioral tracking (unless you opt in via App Tracking Transparency).
We require all processors to maintain appropriate security measures and to process your data only according to our documented instructions, in compliance with GDPR Article 28.
7. International Data Transfers
Some of our service providers are located outside the European Economic Area (EEA) and the United Kingdom. When your data is transferred outside the EEA or UK, we ensure it is protected by:
- Standard Contractual Clauses (SCCs) approved by the European Commission (and the UK International Data Transfer Agreement/Addendum where applicable), included in our agreements with Google (Firebase), Anthropic, Kling AI, Google AdMob, and other US-based providers.
- Adequacy decisions where applicable (e.g., transfers to countries the EU or UK has deemed to provide adequate protection).
For users in other jurisdictions: we apply the same safeguards to all international data transfers, ensuring your data is protected to a standard equivalent to GDPR regardless of where you are located.
8. How We Protect Your Data
We take the security of your personal data seriously. Our measures include:
- Encryption in transit: All data sent between the App and our servers uses TLS 1.2 or higher.
- Encryption at rest: Wardrobe photos stored in Firebase Cloud Storage are encrypted at rest. Body photos stored locally are protected by iOS Data Protection (hardware encryption).
- API key security: All AI service API keys are stored server-side in Firebase Cloud Functions. No API keys are stored on your device.
- Photo metadata stripping: EXIF data (including GPS coordinates) is removed from wardrobe photos before upload.
- Access controls: Only the app developer has access to backend systems, secured with multi-factor authentication.
- On-device processing: Garment detection and classification are performed on your device using Apple’s Vision framework — these images are not sent to any server for classification.
- Data minimisation: We only collect data that is necessary for providing the App’s features.
9. How Long We Keep Your Data
| Data Type | Retention Period |
|---|---|
| Account data | Until you delete your account, plus 30 days for backup recovery |
| Wardrobe photos | Until you delete the item or your account |
| Body/face photos | Stored on your device only; not retained on servers after try-on generation |
| Virtual try-on images | Stored on your device; server-side images deleted after generation |
| Style preferences | Until you update them or delete your account |
| Analytics data | 24 months (rolling), anonymized |
| Crash reports | 90 days |
| Push notification tokens | Until you disable notifications or delete your account |
| Ad interaction data (Free tier) | Managed by Google AdMob per their retention policy |
When you delete your account, we delete all associated personal data from our systems within 30 days, except where retention is required by law (e.g., transaction records for tax purposes, retained for up to 8 years as required by Hungarian tax law).
10. Children’s Privacy
YourStyled is not directed at children under the age of 16. We do not knowingly collect personal data from children under 16. This age requirement applies regardless of your country of residence and exceeds the minimum age thresholds in all our target markets.
If we become aware that we have collected personal data from a child under 16 without verifiable parental consent, we will take steps to delete that data promptly. If you believe a child under 16 has provided us with personal data, please contact us at supp@your-styled.com.
11. Your Privacy Rights
Your rights depend on where you live. We honour the privacy rights of all users, regardless of location.
11.1 Rights for Users in the European Union (GDPR)
As a user in the European Union, you have the following rights:
| Right | What It Means | How to Exercise |
|---|---|---|
| Access | Request a copy of all personal data we hold about you | Email privacy@your-styled.com or use “Export My Data” in the App |
| Rectification | Correct any inaccurate data | Update your profile in the App, or contact us |
| Erasure (“Right to be Forgotten”) | Request deletion of your personal data | Delete your account in the App (Settings), or contact us |
| Restriction | Request that we pause processing your data | Email privacy@your-styled.com |
| Data Portability | Receive your data in a machine-readable format (JSON) | Use “Export My Data” in the App, or email us |
| Object | Object to processing based on legitimate interests | Email privacy@your-styled.com |
| Withdraw Consent | Withdraw any consent you previously gave | Adjust permissions in iOS Settings, or contact us |
Response time: We will respond to all rights requests within 30 days. If a request is complex, we may extend this by an additional 60 days, and we will notify you of the extension within the initial 30-day period.
No fee: Exercising your rights is free of charge.
11.2 Rights for Users in the United Kingdom (UK GDPR)
Users in the United Kingdom have the same rights as listed in Section 11.1 under the UK General Data Protection Regulation and the Data Protection Act 2018. In addition:
- You have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
Website: https://ico.org.uk
Phone: 0303 123 1113
Address: Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF, United Kingdom
11.3 Rights for Users in the United States (CCPA/CPRA and State Privacy Laws)
If you are a resident of California or another US state with a consumer privacy law (including Colorado, Connecticut, Virginia, Texas, Oregon, Montana, and others), you have the following rights:
- Right to Know: You can request what personal information we collect, use, disclose, and sell (we do not sell your personal information).
- Right to Delete: You can request deletion of your personal information. Use “Delete Account” in the App’s Settings, or email us.
- Right to Correct: You can request correction of inaccurate personal information.
- Right to Opt-Out of Sale/Sharing: We do not sell or share your personal information for cross-context behavioral advertising. If this changes, we will provide a “Do Not Sell or Share My Personal Information” mechanism.
- Right to Limit Use of Sensitive Personal Information: Body/face photos used for virtual try-on are treated as sensitive personal information. You can limit this processing by not using the virtual try-on feature or by deleting your body photos.
- Right to Non-Discrimination: We will not discriminate against you for exercising any of these rights.
How to submit a request: Email privacy@your-styled.com with the subject line “US Privacy Rights Request.” We will verify your identity and respond within 45 days. If we need more time, we will notify you of an extension (up to an additional 45 days).
Authorised agents: You may designate an authorised agent to make a request on your behalf by providing signed written authorisation.
Illinois Biometric Information Privacy Act (BIPA): If you are an Illinois resident, please see Section 5A regarding how we handle biometric data in connection with the virtual try-on feature. We obtain your written informed consent before collecting any biometric information, disclose our retention and destruction schedule, and do not sell, trade, or otherwise profit from your biometric data.
11.4 Rights for Users in Canada (PIPEDA)
If you are a resident of Canada, you have the following rights under the Personal Information Protection and Electronic Documents Act:
- Right to Access: You can request a copy of the personal information we hold about you.
- Right to Correction: You can challenge the accuracy of your personal information and request correction.
- Right to Withdraw Consent: You can withdraw consent for data processing at any time (subject to legal or contractual restrictions). We will explain the consequences of withdrawal.
- Right to Complain: You can lodge a complaint with the Office of the Privacy Commissioner of Canada (OPC):
Website: https://www.priv.gc.ca
Phone: 1-800-282-1376
How to submit a request: Email privacy@your-styled.com with the subject line “Canadian Privacy Rights Request.”
11.5 Rights for Users in Australia (Privacy Act 1988)
If you are a resident of Australia, you have the following rights under the Australian Privacy Principles (APPs):
- Right to Access: You can request access to the personal information we hold about you (APP 12).
- Right to Correction: You can request correction of inaccurate, out-of-date, or incomplete information (APP 13).
- Right to Complain: You can complain if you believe we have breached the APPs. We will investigate and respond within 30 days.
- Right to Escalate: If you are not satisfied with our response, you can lodge a complaint with the Office of the Australian Information Commissioner (OAIC):
Website: https://www.oaic.gov.au
Phone: 1300 363 992
How to submit a request: Email privacy@your-styled.com with the subject line “Australian Privacy Rights Request.”
11.6 All Other Users
Regardless of where you live, you can always:
- Request a copy of your data (use “Export My Data” in the App or email us)
- Request deletion of your data (use “Delete Account” in the App or email us)
- Withdraw consent for optional processing (adjust permissions in iOS Settings)
- Contact us at privacy@your-styled.com with any privacy concern
12. Cookies and Tracking
In the App
- The YourStyled App does not use cookies.
- We use PostHog for analytics, which is activated only after you opt in.
- On iOS, we request your permission through Apple’s App Tracking Transparency (ATT) framework before any cross-app tracking occurs. If you decline, no tracking takes place.
On the Website
- The your-styled.com website may use essential cookies for basic site functionality.
- We do not use tracking cookies or third-party advertising cookies on our website.
- If we add analytics to the website in the future, we will implement a cookie consent mechanism and update this section.
13. Advertising
The Free tier of YourStyled displays small banner advertisements powered by Google AdMob. These ads:
- Use contextual targeting by default (based on the content of the App, not your personal data).
- Will only use personalized advertising if you explicitly opt in via the App Tracking Transparency prompt.
- Are never shown during onboarding, on the main outfit suggestion screen, or in the virtual try-on feature.
- Are removed entirely for Plus and Premium subscribers.
Data collected by AdMob: The Google Mobile Ads SDK automatically collects your IP address, device identifiers (IDFV; IDFA only if you consent via ATT), ad interaction data (impressions and clicks), and diagnostic data. This data is governed by Google’s Privacy Policy. We do not have access to or control over the data Google collects through AdMob beyond the configuration options we set.
14. Affiliate Links
When you use the shopping features in YourStyled, product recommendations may include affiliate links to external retailers (via AWIN and CJ Affiliate networks). When you click an affiliate link:
- You are redirected to the retailer’s website or app, which is governed by that retailer’s own privacy policy.
- We may receive a commission on qualifying purchases. This does not affect the price you pay.
- No personal data is shared with affiliate networks — only anonymized click and conversion data.
- Affiliate links are clearly identified within the App.
15. Push Notifications
If you grant notification permission, YourStyled may send you push notifications for:
- Daily outfit reminders — a reminder to check your suggested outfit for the day
- Delivery updates — notifications when pending items are expected to arrive
- App updates — occasional notifications about new features or important changes
Push notifications are delivered via Apple Push Notification Service (APNs) and Firebase Cloud Messaging (FCM). Your device token is stored by Firebase for delivery purposes and is not shared with any other third party.
You can disable push notifications at any time through iOS Settings > Notifications > YourStyled, or through the App’s notification settings.
16. Data Breach Notification
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will:
- Notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33 and UK GDPR.
- Notify affected users without undue delay if the breach is likely to result in a high risk to your rights and freedoms (GDPR Article 34).
- Notification will include: the nature of the breach, the categories and approximate number of individuals affected, the likely consequences, the measures taken or proposed to address the breach, and the contact point for further information.
For users in the United States, we will comply with applicable state data breach notification laws, including notifying the California Attorney General if a breach affects more than 500 California residents.
For users in Australia and Canada, we will notify you and the relevant commissioner in accordance with local requirements.
17. Filing a Complaint
If you believe your data protection rights have been violated, you have the right to lodge a complaint with the relevant authority:
Hungary (our lead supervisory authority):
NAIH — Nemzeti Adatvédelmi és Információszabadság Hatóság
(National Authority for Data Protection and Freedom of Information)
Address: 1055 Budapest, Falk Miksa utca 9-11, Hungary
Website: https://naih.hu
Email: ugyfelszolgalat@naih.hu
Phone: +36 1 391 1400
European Union: You also have the right to lodge a complaint with any EU supervisory authority in the Member State where you reside, work, or where the alleged infringement took place.
United Kingdom: Information Commissioner’s Office (ICO) — https://ico.org.uk — 0303 123 1113
United States: You may contact your state Attorney General’s office or, for California residents, the California Privacy Protection Agency (CPPA) at https://cppa.ca.gov.
Canada: Office of the Privacy Commissioner of Canada (OPC) — https://www.priv.gc.ca — 1-800-282-1376
Australia: Office of the Australian Information Commissioner (OAIC) — https://www.oaic.gov.au — 1300 363 992
18. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make material changes, we will:
- Update the “Last Updated” date at the top of this page.
- Notify you through the App (via an in-app notification or a prompt when you open the App).
- If the changes affect consent-based processing, we will request your consent again.
We encourage you to review this Privacy Policy periodically.
19. Contact Us
If you have any questions about this Privacy Policy or how we handle your data:
Email: privacy@your-styled.com
Website: https://your-styled.com/contact
This Privacy Policy complies with the EU General Data Protection Regulation (GDPR), the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018, the California Consumer Privacy Act / California Privacy Rights Act (CCPA/CPRA), the Illinois Biometric Information Privacy Act (BIPA), the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA), the Australian Privacy Act 1988, the Hungarian Information Act (Infotv. — Act CXII of 2011), and Apple App Store Review Guidelines.