Try My Dress

Privacy Policy

Last updated: March 17, 2026

Try My Dress Inc. ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered virtual try-on service ("the Service").

Privacy-First Design: We built this Service with privacy as a core principle—collecting only essential data, never using photos for AI training or marketing, and giving you full control over deletion.

1. Information We Collect

Account Information

When you create an account, we collect:

  • Full name
  • Email address
  • Password (encrypted and hashed)
  • Payment information (processed securely via Stripe — we do not store card numbers)

Photos You Upload

When you use the try-on feature, you upload reference photos of yourself. These photos are:

  • Encrypted in transit using TLS 1.3
  • Stored temporarily in secure cloud storage (Cloudflare R2)
  • Used solely to generate your try-on images
  • Automatically deleted after 30 days, or immediately upon your request

Usage Data

We automatically collect:

  • Device type, browser type, and operating system
  • IP address (anonymized for analytics)
  • Pages visited, features used, and time spent on the Service
  • Generation history (styles selected, number of generations)
  • When you accept advertising cookies, we may collect and share hashed user data (such as email address or name) with Meta via the Conversions API for ad conversion matching

2. How We Use Your Data

We use your information to:

  • Provide the Service: Process your photos and generate virtual try-on images
  • Process Payments: Manage subscriptions and billing through Stripe
  • Communicate: Send account-related emails, service updates, and (with your consent) marketing communications
  • Analytics: Understand how the Service is used to improve user experience
  • Security: Detect and prevent fraud, abuse, or unauthorized access

What We Do NOT Do: We do NOT use your photos to train AI models (ours or any third-party providers). We do NOT use your photos for marketing. We do NOT sell your data.

3. Photo Data Handling

We take the security of your photos extremely seriously. Here is how we handle your uploaded images:

  • Encryption: All photos are encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Storage: Photos are stored on Cloudflare R2 with strict access controls
  • Retention: Uploaded photos are automatically deleted after 30 days. Generated images are retained as long as your account is active.
  • No Sharing: Your photos and try-on results are private to your account and are never shared publicly. Our team may access your uploads solely to resolve support issues or investigate technical errors.
  • Your Consent: By using the Service, you grant Try My Dress the right to access your uploaded photos and try-on results for the purposes of troubleshooting technical errors and resolving support requests.
  • AI Processing: Photos are sent to our AI model providers solely for generation purposes and are not retained by those providers after processing

Biometric Data & Inferred Characteristics

Our Service processes facial imagery, which may be classified as biometric data in some jurisdictions. During processing, our AI may infer characteristics such as:

  • Body measurements and proportions (for accurate dress fitting)
  • Skin tone (for realistic dress rendering)
  • Approximate age range (for style recommendations)

Important: These inferences are used only to generate your requested image and are never stored, profiled, or used for any other purpose. All inferences are discarded immediately after processing.

4. Third-Party Services

We work with trusted third-party services to operate the platform:

  • Stripe — Payment processing. Stripe's privacy policy governs payment data handling.
  • Cloudflare — CDN, storage (R2), and security services
  • AI Model Providers:
    • Runware — Image generation
    Photos are transmitted securely, processed in memory only, and not retained after processing. Our AI provider is contractually prohibited from using your photos to train AI models.
  • Vercel — Hosting and deployment
  • PostHog — Privacy-friendly analytics (anonymized data only)
  • Meta Platforms, Inc. — Advertising measurement and conversion tracking via the Meta Pixel and Conversions API

We ensure all third-party providers meet our security and privacy standards through data processing agreements.

5. Cookies & Tracking

We use cookies and similar technologies on our website:

Essential Cookies

Required for the Service to function (authentication, session management, cookie consent preference). These cannot be disabled.

Analytics Cookies (Optional)

We use Google Analytics to understand how visitors interact with our website — including pages visited, time spent, and traffic sources. Google Analytics uses cookies to collect anonymized usage data.

Your choice: When you first visit our site, a cookie consent banner asks you to accept or decline analytics cookies. If you decline, Google Analytics will not load and no tracking data is collected. You can change your preference at any time by clearing your browser cookies and revisiting the site.

Advertising Cookies (Optional)

We use the Meta Pixel to measure ad performance and track conversions. The Meta Pixel sets cookies such as _fbp and _fbc to identify visitors across sessions and attribute actions to our ads. Like analytics cookies, advertising cookies are only activated after you accept cookies via our consent banner.

We also use the Meta Conversions API to send event data (such as page views and sign-ups) from our server to Meta. When you are logged in, we may share hashed account information (such as your email address or name) with Meta to improve conversion matching accuracy. This data is hashed before transmission and cannot be used to directly identify you by Meta.

Preference Cookies

Remember your settings such as theme preference (light/dark mode).

You can also manage cookies through your browser settings. Disabling essential cookies may affect your ability to use the Service.

6. Data Retention

  • Account data: Retained as long as your account is active, plus 30 days after deletion request
  • Uploaded photos: Automatically deleted after 30 days
  • Generated images: Retained while your account is active; deleted within 30 days of account deletion
  • Usage data: Anonymized and retained for up to 24 months for analytics
  • Payment records: Retained as required by financial regulations (typically 7 years)

7. Your Rights (GDPR & CCPA)

Depending on your location, you may have the following rights regarding your personal data:

  • Right of Access: Request a copy of all personal data we hold about you
  • Right to Correction: Request correction of inaccurate or incomplete data
  • Right to Deletion: Request deletion of your personal data ("right to be forgotten")
  • Right to Portability: Request your data in a structured, machine-readable format
  • Right to Restrict Processing: Request that we limit how we use your data
  • Right to Object: Object to processing of your data for certain purposes, including marketing
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, contact us at privacy@trymydress.com. We will respond within 30 days.

8. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@trymydress.com and we will promptly delete such information.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) for transfers outside the European Economic Area.

10. Security Measures

We implement industry-standard security measures to protect your data, including:

  • TLS 1.3 encryption for all data in transit
  • AES-256 encryption for data at rest
  • Regular security audits and penetration testing
  • Access controls and employee security training
  • Incident response procedures

While we strive to protect your data, no method of electronic storage or transmission is 100% secure.

11. Changes to This Policy

We reserve the right to update or modify this Privacy Policy at any time, at our sole discretion. Changes take effect immediately upon posting. Your continued use of the Service following any update constitutes your acceptance of the revised Privacy Policy. The "Last updated" date at the top of this page reflects the most recent revision. We encourage you to review this policy periodically.

12. Contact Information

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

privacy@trymydress.com

For EU residents, you also have the right to lodge a complaint with your local data protection authority.