🧾 GDPR Policy

Last updated: January 2026

At Dress Me Daisy, privacy is part of our philosophy — just like softness, joy, and respect.
We believe in data minimalism: collecting only what’s needed, protecting it carefully, and giving you full control over your information.

This page explains how we comply with the General Data Protection Regulation (GDPR), how you can exercise your rights, and how your data stays protected while you explore fashion inspiration.

🇪🇺 1. Who This Applies To

This policy applies to all users in the European Union (EU) and European Economic Area (EEA) who visit or interact with Dress Me Daisy.

Even if you’re outside the EU, we apply the same privacy standards — because respectful data practices shouldn’t depend on location.

🧭 2. Who We Are

Data Controller:
Dress Me Daisy (the operator of www.dressmedaisy.com)
📧 privacy@dressmedaisy.com

We determine how and why personal data is processed.
When you submit information via contact forms, subscriptions, or collaborations, we act as the Data Controller for that data.

🌼 3. What Data We Collect

We collect only what’s necessary to keep Dress Me Daisy running smoothly:

When browsing the website:

  • Anonymized usage data (e.g., page views, device type)
  • Essential cookies for functionality and preferences

When subscribing or contacting us:

  • Email address
  • Optional name or message content

For collaborations or partnerships:

  • Contact details provided voluntarily

We do not collect sensitive personal data, behavioral profiling data, or unrelated browsing activity.

⚖️ 4. Lawful Basis for Processing

We process personal data under the following lawful bases:

  • Consent: When you subscribe, contact us, or opt in to communications.
  • Contractual Necessity: When processing information related to collaborations or agreed services.
  • Legitimate Interest: To maintain website security, performance, and content quality.
  • Legal Obligation: When required by applicable laws or regulations.

You may withdraw consent at any time by unsubscribing or contacting us.

🔐 5. Data Storage & Security

Your data is handled with care and respect.
We use GDPR-compliant infrastructure and trusted hosting providers.

Security measures include:

  • Encrypted connections (HTTPS/TLS)
  • Limited access to data (only when necessary)
  • Secure storage and deletion practices

Your information is never sold — ever.

📤 6. Data Transfers

If data is processed outside the EU/EEA (e.g., via hosting or email services), we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) or equivalent protections.

All partners are vetted for GDPR compliance.

🧾 7. Your Rights Under GDPR

Under GDPR, you have full control over your personal data. You may:

  • Access – Request a copy of your personal data.
  • Rectify – Correct inaccurate or incomplete information.
  • Erase – Request deletion of your data.
  • Restrict – Limit how your data is processed.
  • Port – Receive your data in a machine-readable format.
  • Object – Object to certain processing activities.
  • Withdraw Consent – At any time, without affecting prior lawful processing.

To exercise your rights, email privacy@dressmedaisy.com.
We respond within 30 days of request verification.

💳 8. Payments & Third-Party Services

If Dress Me Daisy introduces paid products or collaborations, payments will be processed by trusted third-party providers.
We do not store payment card details — only transaction references when required.

All providers operate under GDPR-compliant Data Processing Agreements (DPAs).

🧹 9. Data Retention

We retain data only as long as necessary:

  • Newsletter data remains until you unsubscribe.
  • Contact messages are kept only for follow-up purposes.
  • Collaboration data is retained as required by agreement or law.

Anonymized, aggregated statistics may be retained for internal insights, without personal identifiers.

🚫 10. Automated Decision-Making

Dress Me Daisy does not use personal data for profiling or automated decision-making.
Our analytics focus on content performance — not individuals.

🧩 11. Children’s Data

Dress Me Daisy is not intended for individuals under 16 years of age.
If a minor’s data has been submitted inadvertently, contact us and we will remove it promptly.

✉️ 12. Contact & Complaints

For GDPR-related questions or requests:
📧 privacy@dressmedaisy.com

You also have the right to contact your local Data Protection Authority (DPA) if you believe your rights have been violated.

🧭 In Short

We inspire style — not surveillance.
Your data stays minimal, your control stays complete, and your creativity stays free.

Dress Me Daisy — joyful fashion with full respect for your privacy. 🌼