Site Logo

Download App

Site Logo

Download App

Privacy Policy

Dripper — Privacy Policy

Last updated: September 12, 2025

This Privacy Policy explains how Dripper (“we”, “us”, “our”) collects, uses, shares, and protects your information when you use our mobile app, website, and related services (the “Service”). By using the Service, you agree to this Policy. If you do not agree, please do not use the Service.

Controller: Dripper, represented by Hugo Delafoss

Postal address: Not provided — for all requests, please contact us by email.

Email (all requests): contact.dripperapp@gmail.com

EU DPO: Not appointed

EU Representative (if outside EU): Not applicable

UK Representative: Not applicable

1) What we collect

We collect information that you provide, that is collected automatically, or that we receive from third parties.

A. Information you provide

Account & profile: name/username, email, password (hashed), avatar, bio, links to socials.

User-generated content (UGC): outfit photos/videos (“fits”), captions, comments, likes, tags, item links, wishlists, wardrobes, challenge participation.

Purchases & subscriptions (in-app): plan, status, receipts/tokens from app stores (we don’t store full payment card details).

Communications: support messages, survey responses, newsletter sign-ups, marketing preferences.

Creator/brand features (optional): storefront details, affiliate IDs, payout details (processed by payment partners).

B. Information collected automatically

Device & app data: device model, OS, app version, identifiers (e.g., IDFA/GAID if consented), language, time zone.

Usage data: screens viewed, taps, features used, session length, referrers, crash logs.

Approximate location: IP-derived city/country for content relevance and compliance.

Cookies & similar tech (web): essential cookies and—if you consent—analytics/marketing cookies.

C. Information from third parties

Social sign-in (optional): Apple/Google provide your name, email, and a user ID.

Shopping & affiliate partners: conversion signals (e.g., an item you clicked was purchased). We do not receive your full payment details from merchant sites.

Analytics/ads vendors: aggregated or pseudonymous insights where permitted by law and your settings.

2) How we use your information (purposes & legal bases)

Core service (performance of contract / legitimate interests)

Create and manage your account, authenticate, and deliver core features (feed, posting, tagging, search, challenges, wishlists, wardrobe).

Enable shoppable links, show availability/alternatives, and product info.

Provide support, fix bugs, ensure reliability and security (fraud/spam prevention, abuse detection).

Improvements & personalization (legitimate interests / consent)

Analyze usage to improve features and performance.

Personalize feeds, recommendations, and creator/brand suggestions.

Run A/B tests and measure feature impact.

Communications (consent / legitimate interests)

Send service messages (transactional, security, policy updates).

With consent (where required): newsletters, product updates, tips, promotions. You can opt out anytime.

Marketing & attribution (consent / legitimate interests)

Measure campaign effectiveness and affiliate conversions.

Show non-intrusive marketing in line with your preferences and regional requirements.

Legal compliance & enforcement (legal obligation / legitimate interests)

Comply with applicable laws and lawful requests.

Enforce our Terms and moderate harmful or infringing content.

3) Sharing your information

We do not sell your personal information. We share data only as described below:

Service providers (processors): hosting, storage, analytics, crash reporting, email/SMS, content moderation, payment/subscription processing, affiliate/attribution.

Other users (public content): content you make public (fits, captions, likes, comments, profile name, avatar) is visible to others and may be indexed or shared.

Merchants & affiliate networks: link parameters to attribute sales when you click “shop the look.”

Legal & safety: to comply with law, respond to lawful requests, protect rights/safety, and prevent fraud.

Business transfers: in a merger, acquisition, or asset sale, data may transfer subject to this Policy or a successor with equivalent protections.

4) International transfers

If data is transferred outside your country (including outside the EEA/UK), we use lawful safeguards such as Standard Contractual Clauses (SCCs), UK IDTA/Addendum, or adequacy decisions. You can request details via the email above.

5) Retention

We keep data only as long as needed for the purposes above:

Account & UGC: for your account lifetime; upon deletion, we delete or anonymize within a reasonable period (backups may persist up to 90 days).

Logs & security records: typically 12–24 months.

Analytics: typically 24–26 months (then aggregated).

Marketing leads (newsletter): until you unsubscribe; suppression lists retained to honor opt-outs.

Legal/compliance records: as required by law.

6) Your rights & choices

EEA/UK (GDPR/UK GDPR)

Rights to access, rectify, erase, restrict, object (including profiling), and data portability. Where processing relies on consent, you may withdraw consent at any time (does not affect prior processing). You may lodge a complaint with your authority (e.g., CNIL in France, ICO in the UK).

California (CCPA/CPRA)

Rights to know/access, correct, delete, and opt out of “sharing” for cross-context behavioral advertising. We do not “sell” personal information as defined by the CCPA. A “Do Not Sell or Share” link will be provided where required.

Global Privacy Control (GPC)

Where legally required and technically feasible, we honor recognized browser signals such as GPC.

In-app/site controls

Privacy & notifications: manage personalization, analytics/marketing consent, and push/email preferences.

Cookie Preferences (web): adjust non-essential cookies anytime via “Cookie Settings.”

Download/Delete: request a copy of your data or deletion via Settings → Privacy or by email.

7) Children

Not intended for:

Individuals under 16 in the EEA/UK, or

Individuals under 13 elsewhere.

If you believe a child has provided data, contact us for removal.

8) Safety, moderation & community

We use human review and automated tools to detect spam, fakes, scams, IP infringements, and harmful content. We may limit features or remove content that violates our Terms or community guidelines.

9) Security

We implement administrative, technical, and physical safeguards (e.g., encryption in transit/at rest where applicable, access controls, monitoring). No method is 100% secure; keep your credentials confidential.

10) Cookies & similar technologies

Essential cookies: required for login, security, core functions.

Analytics cookies: help measure and improve the Service.

Marketing/attribution cookies: measure campaigns and affiliate conversions.

Where required, we obtain consent before using non-essential cookies. Manage preferences via Cookie Settings.

11) Automated decision-making & profiling

We use algorithms to rank feeds, recommend content, suggest creators/brands, and surface shopping links/alternatives. These do not produce legal or similarly significant effects. You can influence recommendations via your preferences and activity.

12) Third-party links & merchant sites

When you shop on a merchant site, that site’s privacy policy and terms apply. We may receive conversion signals for attribution but not your full payment details.

13) Changes to this Policy

We may update this Policy to reflect changes in practices or law. If changes are material, we will provide notice (e.g., in-app, email) and indicate the effective date. Continued use after the effective date means you accept the updated Policy.

14) How to contact us

All privacy & support requests: contact.dripperapp@gmail.com

If your local law requires a postal contact, email us and we will provide appropriate details.

15) Region-specific notices (summary)

EEA/UK: Legal bases include contract, legitimate interests, consent, and legal obligations; international transfers rely on SCCs or equivalents.

California: We do not sell PI; limited “sharing” may occur for attribution/analytics subject to your opt-out.

Other regions: We apply additional rights/requirements where local law provides them.