GDPR Compliance Statement
Last updated: 07/02/2026
GDPR Compliance Statement
1. Introduction
FashionsDen is committed to protecting the privacy, security and integrity of the personal data entrusted to us by our Members, visitors, partners and service providers.
This GDPR Compliance Statement explains how FashionsDen complies with the requirements of the General Data Protection Regulation (EU) 2016/679 ("GDPR") and other applicable European data protection legislation.
This document complements, and should be read together with, our:
- Privacy Policy.
- Cookie Policy.
- Terms & Conditions.
- Any additional legal notices published by FashionsDen.
Where any inconsistency exists, the Privacy Policy shall govern the processing of personal data.
2. Our Commitment to GDPR
FashionsDen is committed to processing personal data lawfully, fairly and transparently.
We recognise that protecting personal information is fundamental to maintaining the trust of our Members and ensuring compliance with European data protection legislation.
Our commitment includes:
- Respecting the privacy rights of all individuals.
- Processing personal data only for legitimate purposes.
- Collecting only the information necessary to provide our services.
- Maintaining appropriate technical and organisational security measures.
- Ensuring accountability across our Platform and internal operations.
- Continuously reviewing our data protection practices.
We strive to embed privacy and security into every aspect of the Platform through the principles of Privacy by Design and Privacy by Default.
3. Scope of this Statement
This GDPR Compliance Statement applies to the processing of personal data relating to:
- Website visitors.
- Registered Members.
- Fashion brands.
- Manufacturers.
- Suppliers.
- Creative professionals.
- Job applicants.
- Business partners.
- Service providers.
- Any individual whose personal data is processed by FashionsDen.
This Statement applies whenever personal data is processed through the FashionsDen Platform or any associated services operated by FashionsDen.
4. GDPR Principles
FashionsDen processes personal data in accordance with the core principles established under Article 5 of the GDPR.
These principles include:
4.1 Lawfulness, Fairness and Transparency
Personal data is processed only where a lawful basis exists and individuals are informed clearly about how their information is used.
4.2 Purpose Limitation
Personal data is collected only for specified, explicit and legitimate purposes and is not processed in a manner incompatible with those purposes.
4.3 Data Minimisation
We collect only the personal data that is necessary to provide our Platform and related services.
4.4 Accuracy
We take reasonable steps to ensure that personal information remains accurate and up to date.
Members may update their account information at any time.
4.5 Storage Limitation
Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations.
4.6 Integrity and Confidentiality
Appropriate technical and organisational measures are implemented to protect personal data against unauthorised access, accidental loss, destruction or disclosure.
4.7 Accountability
FashionsDen maintains internal processes and documentation demonstrating compliance with applicable data protection legislation.
5. Lawful Bases for Processing
Under Article 6 of the GDPR, FashionsDen processes personal data only where a lawful basis exists.
Depending on the circumstances, processing may be based upon:
5.1 Contractual Necessity
Processing necessary to:
- Create Member accounts.
- Provide Platform services.
- Process subscriptions.
- Manage projects.
- Facilitate communications.
- Process payments.
- Operate Escrow services.
5.2 Legal Obligations
Processing necessary to comply with applicable laws, including:
- Tax obligations.
- Accounting requirements.
- Anti-fraud measures.
- Court orders.
- Regulatory obligations.
5.3 Legitimate Interests
Where appropriate, we may process personal data for legitimate business interests, including:
- Improving Platform functionality.
- Preventing fraud.
- Maintaining security.
- Customer support.
- Analytics and service improvement.
- Business administration.
Such processing is carried out only where our legitimate interests do not override the rights and freedoms of the individual.
5.4 Consent
Where required by law, we rely upon freely given, specific, informed and unambiguous consent before processing personal data.
Individuals may withdraw their consent at any time without affecting the lawfulness of processing carried out before the withdrawal.
6. Data Subject Rights
FashionsDen fully respects the rights granted to individuals under the General Data Protection Regulation.
Data subjects may exercise their rights at any time in accordance with applicable law.
6.1 Right of Access
You have the right to request confirmation as to whether we process your personal data and, where applicable, obtain access to that information.
6.2 Right to Rectification
You may request the correction of inaccurate or incomplete personal data.
6.3 Right to Erasure
You may request the deletion of your personal data where:
- The data is no longer necessary.
- You withdraw your consent and no other lawful basis applies.
- The processing is unlawful.
- There is a legal obligation to erase the data.
This right may be subject to certain legal limitations.
6.4 Right to Restriction of Processing
You may request that we restrict the processing of your personal data in certain circumstances provided under the GDPR.
6.5 Right to Data Portability
Where applicable, you may request a copy of your personal data in a structured, commonly used and machine-readable format.
6.6 Right to Object
You may object to the processing of your personal data where processing is based upon legitimate interests or is carried out for direct marketing purposes.
6.7 Right to Withdraw Consent
Where processing is based upon consent, you may withdraw your consent at any time.
Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
7. Data Security
FashionsDen implements appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, alteration or disclosure.
7.1 Security Measures
Security measures may include:
- Data encryption.
- Secure servers.
- Access controls.
- Authentication systems.
- Security monitoring.
- Data backups.
- Network protection.
- Internal data protection training.
7.2 Continuous Review
Security measures are reviewed and updated on a regular basis to address evolving risks, threats and technological developments.
7.3 Limitations
Although we implement appropriate security measures, no system can guarantee absolute security.
8. Data Retention
Personal data is retained only for as long as necessary to fulfil the purposes for which it was collected or to comply with legal obligations.
Retention periods may depend upon:
- Legal obligations.
- Tax requirements.
- Accounting regulations.
- Fraud prevention.
- Dispute resolution.
- Protection of FashionsDen's legal rights.
When personal data is no longer required, it may be:
- Deleted.
- Anonymised.
- Retained where required by law.
9. International Data Transfers
FashionsDen may transfer personal data outside the European Economic Area where necessary to provide our services.
Whenever such transfers occur, we implement appropriate safeguards required under the GDPR.
These safeguards may include:
- Standard Contractual Clauses.
- European Commission adequacy decisions.
- Additional technical measures.
- Organisational safeguards.
- Other legally recognised transfer mechanisms.
10. Data Processors
FashionsDen may engage third-party service providers to perform services related to the operation of the Platform.
These data processors may include:
- Cloud hosting providers.
- Payment processors.
- Analytics providers.
- Artificial Intelligence service providers.
- Communication platforms.
- Customer support providers.
- Cybersecurity providers.
All data processors are subject to appropriate contractual obligations designed to ensure GDPR compliance and the protection of personal data processed on our behalf.
11. Data Breach Management
FashionsDen maintains procedures designed to identify, assess and respond to personal data breaches in accordance with the GDPR.
11.1 Detection and Assessment
Where a potential personal data breach is identified, we will promptly assess:
- The nature of the breach.
- The categories of data affected.
- The number of individuals affected.
- The potential risks to individuals.
- The measures required to mitigate harm.
11.2 Notification of Supervisory Authorities
Where required by the GDPR, FashionsDen will notify the competent supervisory authority without undue delay and, where feasible, within 72 hours of becoming aware of the breach.
11.3 Notification of Individuals
Where a personal data breach is likely to result in a high risk to the rights and freedoms of individuals, we will notify affected individuals without undue delay unless an exception permitted by law applies.
12. Data Protection by Design and by Default
FashionsDen is committed to implementing the principles of Privacy by Design and Privacy by Default throughout the development and operation of the Platform.
This includes:
- Minimising the collection of personal data.
- Limiting access to personal information.
- Implementing appropriate security controls.
- Regularly reviewing processing activities.
- Considering privacy risks during product development.
- Promoting secure development practices.
These principles are incorporated into both technical systems and organisational processes wherever reasonably practicable.
13. Changes to this Statement
FashionsDen may update this GDPR Compliance Statement from time to time to reflect:
- Changes in legislation.
- Regulatory guidance.
- Technological developments.
- Platform improvements.
- Changes to our services.
- Internal compliance procedures.
Where required by applicable law, Members will be informed of material changes through:
- Platform notifications.
- Email communications.
- Updates published on the Platform.
The most recent version of this Statement will always be available on the Platform.
14. Contact Information
If you have any questions regarding this GDPR Compliance Statement or wish to exercise your data protection rights, you may contact us using the details below:
FashionsDen
- Legal Email: legal@fashionsden.com
- Privacy Email: privacy@fashionsden.com
- Support Email: support@fashionsden.com
- Website: www.fashionsden.com
15. Effective Date
This GDPR Compliance Statement becomes effective upon publication on the Platform and shall remain in force until replaced by an updated version.
The latest version will always be available through the Platform.