Skip to content

GDPR Compliance Statement

Last updated: 07/02/2026

GDPR Compliance Statement

1. Introduction

FashionsDen is committed to protecting the privacy, security and integrity of the personal data entrusted to us by our Members, visitors, partners and service providers.

This GDPR Compliance Statement explains how FashionsDen complies with the requirements of the General Data Protection Regulation (EU) 2016/679 ("GDPR") and other applicable European data protection legislation.

This document complements, and should be read together with, our:

  • Privacy Policy.
  • Cookie Policy.
  • Terms & Conditions.
  • Any additional legal notices published by FashionsDen.

Where any inconsistency exists, the Privacy Policy shall govern the processing of personal data.

2. Our Commitment to GDPR

FashionsDen is committed to processing personal data lawfully, fairly and transparently.

We recognise that protecting personal information is fundamental to maintaining the trust of our Members and ensuring compliance with European data protection legislation.

Our commitment includes:

  • Respecting the privacy rights of all individuals.
  • Processing personal data only for legitimate purposes.
  • Collecting only the information necessary to provide our services.
  • Maintaining appropriate technical and organisational security measures.
  • Ensuring accountability across our Platform and internal operations.
  • Continuously reviewing our data protection practices.

We strive to embed privacy and security into every aspect of the Platform through the principles of Privacy by Design and Privacy by Default.

3. Scope of this Statement

This GDPR Compliance Statement applies to the processing of personal data relating to:

  • Website visitors.
  • Registered Members.
  • Fashion brands.
  • Manufacturers.
  • Suppliers.
  • Creative professionals.
  • Job applicants.
  • Business partners.
  • Service providers.
  • Any individual whose personal data is processed by FashionsDen.

This Statement applies whenever personal data is processed through the FashionsDen Platform or any associated services operated by FashionsDen.

4. GDPR Principles

FashionsDen processes personal data in accordance with the core principles established under Article 5 of the GDPR.

These principles include:

4.1 Lawfulness, Fairness and Transparency

Personal data is processed only where a lawful basis exists and individuals are informed clearly about how their information is used.

4.2 Purpose Limitation

Personal data is collected only for specified, explicit and legitimate purposes and is not processed in a manner incompatible with those purposes.

4.3 Data Minimisation

We collect only the personal data that is necessary to provide our Platform and related services.

4.4 Accuracy

We take reasonable steps to ensure that personal information remains accurate and up to date.

Members may update their account information at any time.

4.5 Storage Limitation

Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations.

4.6 Integrity and Confidentiality

Appropriate technical and organisational measures are implemented to protect personal data against unauthorised access, accidental loss, destruction or disclosure.

4.7 Accountability

FashionsDen maintains internal processes and documentation demonstrating compliance with applicable data protection legislation.

5. Lawful Bases for Processing

Under Article 6 of the GDPR, FashionsDen processes personal data only where a lawful basis exists.

Depending on the circumstances, processing may be based upon:

5.1 Contractual Necessity

Processing necessary to:

  • Create Member accounts.
  • Provide Platform services.
  • Process subscriptions.
  • Manage projects.
  • Facilitate communications.
  • Process payments.
  • Operate Escrow services.

5.2 Legal Obligations

Processing necessary to comply with applicable laws, including:

  • Tax obligations.
  • Accounting requirements.
  • Anti-fraud measures.
  • Court orders.
  • Regulatory obligations.

5.3 Legitimate Interests

Where appropriate, we may process personal data for legitimate business interests, including:

  • Improving Platform functionality.
  • Preventing fraud.
  • Maintaining security.
  • Customer support.
  • Analytics and service improvement.
  • Business administration.

Such processing is carried out only where our legitimate interests do not override the rights and freedoms of the individual.

5.4 Consent

Where required by law, we rely upon freely given, specific, informed and unambiguous consent before processing personal data.

Individuals may withdraw their consent at any time without affecting the lawfulness of processing carried out before the withdrawal.

6. Data Subject Rights

FashionsDen fully respects the rights granted to individuals under the General Data Protection Regulation.

Data subjects may exercise their rights at any time in accordance with applicable law.

6.1 Right of Access

You have the right to request confirmation as to whether we process your personal data and, where applicable, obtain access to that information.

6.2 Right to Rectification

You may request the correction of inaccurate or incomplete personal data.

6.3 Right to Erasure

You may request the deletion of your personal data where:

  • The data is no longer necessary.
  • You withdraw your consent and no other lawful basis applies.
  • The processing is unlawful.
  • There is a legal obligation to erase the data.

This right may be subject to certain legal limitations.

6.4 Right to Restriction of Processing

You may request that we restrict the processing of your personal data in certain circumstances provided under the GDPR.

6.5 Right to Data Portability

Where applicable, you may request a copy of your personal data in a structured, commonly used and machine-readable format.

6.6 Right to Object

You may object to the processing of your personal data where processing is based upon legitimate interests or is carried out for direct marketing purposes.

6.7 Right to Withdraw Consent

Where processing is based upon consent, you may withdraw your consent at any time.

Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

7. Data Security

FashionsDen implements appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, alteration or disclosure.

7.1 Security Measures

Security measures may include:

  • Data encryption.
  • Secure servers.
  • Access controls.
  • Authentication systems.
  • Security monitoring.
  • Data backups.
  • Network protection.
  • Internal data protection training.

7.2 Continuous Review

Security measures are reviewed and updated on a regular basis to address evolving risks, threats and technological developments.

7.3 Limitations

Although we implement appropriate security measures, no system can guarantee absolute security.

8. Data Retention

Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations.

Retention periods may depend upon:

  • Legal obligations.
  • Tax requirements.
  • Accounting regulations.
  • Fraud prevention.
  • Dispute resolution.
  • Protection of FashionsDen's legal rights.

When personal data is no longer required, it may be:

  • Deleted.
  • Anonymised.
  • Retained where required by law.

9. International Data Transfers

FashionsDen may transfer personal data outside the European Economic Area where necessary to provide our services.

Whenever such transfers occur, we implement appropriate safeguards required under the GDPR.

These safeguards may include:

  • Standard Contractual Clauses.
  • European Commission adequacy decisions.
  • Additional technical measures.
  • Organisational safeguards.
  • Other legally recognised transfer mechanisms.

10. Data Processors

FashionsDen may engage third-party service providers to perform services related to the operation of the Platform.

These data processors may include:

  • Cloud hosting providers.
  • Payment processors.
  • Analytics providers.
  • Artificial Intelligence service providers.
  • Communication platforms.
  • Customer support providers.
  • Cybersecurity providers.

All data processors are subject to appropriate contractual obligations designed to ensure GDPR compliance and the protection of personal data processed on our behalf.

11. Data Breach Management

FashionsDen maintains procedures designed to identify, assess and respond to personal data breaches in accordance with the GDPR.

11.1 Detection and Assessment

Where a potential personal data breach is identified, we will promptly assess:

  • The nature of the breach.
  • The categories of data affected.
  • The number of individuals affected.
  • The potential risks to individuals.
  • The measures required to mitigate harm.

11.2 Notification of Supervisory Authorities

Where required by the GDPR, FashionsDen will notify the competent supervisory authority without undue delay and, where feasible, within 72 hours of becoming aware of the breach.

11.3 Notification of Individuals

Where a personal data breach is likely to result in a high risk to the rights and freedoms of individuals, we will notify affected individuals without undue delay unless an exception permitted by law applies.

12. Data Protection by Design and by Default

FashionsDen is committed to implementing the principles of Privacy by Design and Privacy by Default throughout the development and operation of the Platform.

This includes:

  • Minimising the collection of personal data.
  • Limiting access to personal information.
  • Implementing appropriate security controls.
  • Regularly reviewing processing activities.
  • Considering privacy risks during product development.
  • Promoting secure development practices.

These principles are incorporated into both technical systems and organisational processes wherever reasonably practicable.

13. Changes to this Statement

FashionsDen may update this GDPR Compliance Statement from time to time to reflect:

  • Changes in legislation.
  • Regulatory guidance.
  • Technological developments.
  • Platform improvements.
  • Changes to our services.
  • Internal compliance procedures.

Where required by applicable law, Members will be informed of material changes through:

  • Platform notifications.
  • Email communications.
  • Updates published on the Platform.

The most recent version of this Statement will always be available on the Platform.

14. Contact Information

If you have any questions regarding this GDPR Compliance Statement or wish to exercise your data protection rights, you may contact us using the details below:

FashionsDen

  • Legal Email: legal@fashionsden.com
  • Privacy Email: privacy@fashionsden.com
  • Support Email: support@fashionsden.com
  • Website: www.fashionsden.com

15. Effective Date

This GDPR Compliance Statement becomes effective upon publication on the Platform and shall remain in force until replaced by an updated version.

The latest version will always be available through the Platform.

FashionsDen