Policy

Privacy Policy

BYDE — SMART CLOSET FOR MEN
Privacy Policy

Effective Date: May 8, 2025 | Last Updated: May 8, 2025
Developed by Eighteen1 Studios, represented by Raphael Pappalardo

1. INTRODUCTION

Welcome to Byde — Smart Closet for Men ("Byde", "the App", "we", "us", or "our").
Byde is developed and operated by Eighteen1 Studios, represented by Raphael Pappalardo.

We are committed to protecting your personal data and respecting your privacy.
This Privacy Policy explains what information we collect, how we use it, with whom we share it, and what rights you have regarding your data.

By downloading and using the App, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the App.

2. DATA CONTROLLER

The data controller responsible for your personal data is:

Eighteen1 Studios
Represented by: Raphael Pappalardo
Website: https://bydeapp.de
Contact for privacy matters: eighteen1.studios@gmail.com | contact@bydeapp.de

3. DATA WE COLLECT

We collect only the data necessary to provide our services.

3.1 Account Data
• Email address — used solely for account creation, authentication, and service-related communications.

3.2 Wardrobe & User-Generated Content
• Photos of clothing items and outfits you upload to build your digital wardrobe.
• Wardrobe metadata (e.g., garment categories, tags, outfit combinations) that you input or that is inferred from your uploads.

3.3 Anonymous Analytics Data
We collect aggregated, non-personal analytics data to understand how the App is used overall. This data is not linked to you as an individual and cannot be used to identify you. Examples include:
• Number of times a feature or button is tapped (e.g., how often the outfit generator is used).
• General app navigation patterns (e.g., which screens are visited most).
• Crash reports and performance metrics (e.g., load times, error rates).

This analytics data is collected at an aggregate level only and is never associated with your account, email address, or any other personal identifier.

We do not collect your name, phone number, physical address, payment information, or precise location.

4. LEGAL BASIS FOR PROCESSING (GDPR)

For users in the European Economic Area (EEA), United Kingdom, and other jurisdictions with similar laws, our legal bases for processing your personal data are:

• Performance of a contract — processing your email address and wardrobe data is necessary to provide the App's core features.
• Legitimate interests — anonymous, aggregated analytics help us improve app performance and user experience. Since this data cannot be linked to any individual, it does not engage your privacy rights.
• Consent — where required by law, we will request your explicit consent before processing your data.

5. HOW WE USE YOUR DATA

We use your data exclusively to operate and improve Byde. Specifically:

• Account management: Creating, authenticating, and maintaining your account.
• Core app functionality: Storing and displaying your wardrobe, generating outfit suggestions, and enabling smart closet features.
• AI-powered features: Processing your wardrobe images and data through AI models to generate outfit recommendations and styling suggestions.
• App improvement: Analyzing anonymous, aggregated usage patterns (e.g., button tap counts, screen visits) to fix bugs, optimize performance, and develop new features. This data is never linked to your account.
• Communications: Sending essential service notifications (e.g., account verification, security alerts). We do not send marketing emails without your explicit consent.

6. ARTIFICIAL INTELLIGENCE SERVICES

Byde uses AI models to power its smart closet and outfit recommendation features.
We work with the following AI providers:

6.1 OpenAI (deployed via Microsoft Azure)
We use OpenAI models deployed through Microsoft Azure's infrastructure. Your wardrobe images and related data may be processed by these models to generate styling recommendations.

6.2 DeepSeek (deployed via Microsoft Azure and DeepSeek API)
We also use DeepSeek models, accessed both through Microsoft Azure and the DeepSeek API directly, to power additional AI features within the App.

Both Microsoft Azure and DeepSeek act as data processors on our behalf and are contractually bound to process your data only according to our instructions and applicable data protection laws. We have Data Processing Agreements (DPAs) in place with these providers.

Your data is not used by these providers to train their general AI models without your explicit consent.

7. FIREBASE (GOOGLE) — AUTHENTICATION & STORAGE

We use Google Firebase for:

• Authentication: Securely managing your login and account credentials.
• Cloud Storage: Storing your wardrobe photos and app data.
• Firestore Database: Storing your wardrobe metadata and preferences.

Firebase is operated by Google LLC and acts as a data processor on our behalf.
Data stored in Firebase may be hosted in data centers within the United States and/or the European Union depending on configuration. Google Firebase is certified under major security standards including ISO 27001 and SOC 2/3.

For more information on Google's data practices, visit:
https://firebase.google.com/support/privacy

8. DATA SHARING & THIRD PARTIES

We do not sell, rent, or share your personal data with third parties for marketing or advertising purposes. We share data only in the following limited circumstances:

• Service providers acting as data processors (Firebase/Google, Microsoft Azure, DeepSeek) as described in this policy — solely to provide the App's functionality.
• Legal obligations: If required by law, regulation, court order, or government authority, we may disclose your data to the extent required.
• Business transfers: In the event of a merger, acquisition, or sale of all or substantially all of our assets, your data may be transferred as part of that transaction. We will notify you via email and/or in-app notice in such cases.

9. INTERNATIONAL DATA TRANSFERS

As a global app, your data may be processed in countries outside your country of residence, including the United States and the European Union. When we transfer data internationally, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission.
• Adequacy decisions where applicable.
• Data Processing Agreements with all third-party processors.

10. DATA RETENTION

We retain your personal data only as long as necessary to provide our services or as required by law:

• Account and wardrobe data: Retained for as long as your account is active.
• Anonymous analytics data: Since this data is not linked to individuals, it may be retained indefinitely in aggregated form for product improvement purposes.
• Upon account deletion: All personal data (email, photos, wardrobe metadata) is permanently deleted within 30 days of your deletion request, unless we are required by law to retain it longer.

11. YOUR RIGHTS

Depending on your location, you may have the following rights regarding your personal data:

11.1 Rights Under GDPR (EU/EEA/UK Users)
• Right of access — Request a copy of the personal data we hold about you.
• Right to rectification — Request correction of inaccurate or incomplete data.
• Right to erasure ("right to be forgotten") — Request deletion of your data.
• Right to restriction — Request that we limit how we process your data.
• Right to data portability — Receive your data in a structured, machine-readable format.
• Right to object — Object to processing based on legitimate interests.
• Right to withdraw consent — Where processing is based on consent, withdraw it at any time.
• Right to lodge a complaint — File a complaint with your national data protection authority.

11.2 Rights Under CCPA (California Residents)
• Right to know — Request disclosure of personal information collected and its purposes.
• Right to delete — Request deletion of personal information.
• Right to opt-out — We do not sell personal information, so this right is inherently satisfied.
• Right to non-discrimination — We will not discriminate against you for exercising your rights.

11.3 Rights for All Users
Regardless of your location, you can:
• Delete your account and all associated data directly within the Byde app.
• Request data deletion by submitting a request at: https://bydeapp.de
• Contact us at: eighteen1.studios@gmail.com | contact@bydeapp.de

We will respond to all rights requests within 30 days (GDPR) or 45 days (CCPA).

12. DATA SECURITY

We implement industry-standard security measures to protect your personal data, including:

• Encryption in transit (TLS/HTTPS) for all data transmitted between the App and our servers.
• Encryption at rest for data stored in Firebase Cloud Storage and Firestore.
• Access controls limiting who can access your data within our organization.
• Regular security reviews and updates to our infrastructure.

While we take all reasonable steps to protect your data, no security system is impenetrable. In the event of a data breach that affects your rights and freedoms, we will notify affected users and relevant authorities as required by applicable law (within 72 hours under GDPR).

13. CHILDREN'S PRIVACY

Byde is not directed at or intended for children under the age of 13 (or 16 in the EEA where applicable). We do not knowingly collect personal data from children. If we become aware that a child has provided us with personal data without parental consent, we will promptly delete that information. If you believe a child has provided us with their data, please contact us at contact@bydeapp.de.

14. APPLE APP STORE

Byde is distributed via the Apple App Store. Apple may collect certain data independently in accordance with its own privacy policy. We are not responsible for Apple's data practices. Please review Apple's Privacy Policy at https://www.apple.com/legal/privacy/ for more information.

15. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we will:

• Update the "Last Updated" date at the top of this policy.
• Notify you via in-app notification or email (for material changes).

We encourage you to review this Privacy Policy periodically. Continued use of the App after changes take effect constitutes your acceptance of the updated policy.

16. CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Eighteen1 Studios
Represented by: Raphael Pappalardo
Email: eighteen1.studios@gmail.com | contact@bydeapp.de
Website: https://bydeapp.de

For users in the EU/EEA, you also have the right to lodge a complaint with your local data protection authority. A list of EU data protection authorities can be found at: https://edpb.europa.eu/about-edpb/about-edpb/members_en

Byde — Smart Closet for Men | Eighteen1 Studios | bydeapp.de