Get Key

Privacy Policy

Last Updated : 2025-11-20          Effective Date : 2025-11-20

Welcome to TryLoom. We operate the website tryloom.toolteek.com and develop the TryLoom Virtual Try-On plugin for WooCommerce.

We are committed to protecting your privacy and handling your data in an open and transparent manner. This Privacy Policy explains how we collect, use, and share information when you visit our website, purchase our products, and how our plugin interacts with data when installed on your websites.

1.Definitions of Roles

To understand this policy, it is important to distinguish between our two roles:

  1. Data Controller: We act as the Data Controller for the personal information you provide to us directly on this sales website (e.g., when you buy a TryLoom key or sign up for a newsletter).

  2. Data Processor: Regarding the “TryLoom” plugin installed on your store, we act as a Data Processor (service provider). You (the merchant) act as the Data Controller for your end-users’ data.

2.Data We Collect (Sales Website)

  • This section applies to you (our direct customer) when you browse our site or purchase the plugin.

    A. Information You Provide to Us

    When you purchase a TryLoom key, contact support, or register an account, we may collect:

    • Identity Data: Name, username, or business name.

    • Contact Data: Email address, and billing address.

    • Transaction Data: Details about payments to and from you regarding your purchase of TryLoom Key or Subscription Plans.

      • Note: We do not store full credit card details. Payments are processed by secure third-party payment gateway which adhere to PCI-DSS standards.

    B. Automatically Collected Data

    When you visit our sales website, we use cookies and analytics tools to collect:

    • Technical Data: IP address, browser type, device information, and operating system.

    • Usage Data: Pages visited, time spent on the site, and referral sources.

3. TryLoom Plugin (Data Processing)

This section explains how data is handled when the TryLoom is installed on your WooCommerce store. This is critical information for your own privacy compliance.

   A. How It Works

When an end-user on your store uses the “Try-On” feature, they upload a photo. Our plugin transmits this photo to a secure third-party Artificial Intelligence (AI) infrastructure provider solely to generate the try-on result.

   B. Data Storage and Retention

  • No Storage on Our Servers: We adhere to a strict “No Retention” policy. We do not save, store, or archive end-user photos or the generated result images on our own servers. The processing is transient.

  • Client Control (Your Responsibility): As the store owner, you control the data. The plugin settings allow you to decide whether user uploaded images are:

    1. Saved to your own web hosting server; or

    2. Deleted immediately after the session.

  • AI Processing: The image is transmitted securely to our AI provider via API to generate the result. Once the image is returned to your website, the data is not retained by the AI provider for model training purposes.

   C. Merchant Obligations

If you use our plugin, you are the Data Controller. You must:

    • Update your own Privacy Policy to inform your users that their images are processed by AI for virtual try-on purposes.

    • Disclose whether you store their images on your server.

4. Lawful Basis for Processing

  • We process your personal data based on the following legal grounds (GDPR):

    • Contractual Necessity: To process your order, deliver the TryLoom key, and provide customer support.

    • Legal Obligation: To maintain records for tax, accounting, and fraud prevention.

    • Legitimate Interests: To improve our website, analyze usage trends, and ensure the security of our services.

    • Consent: Where you have explicitly agreed (e.g., subscribing to marketing newsletters or accepting non-essential cookies). You may withdraw consent at any time.

5. Sharing Your Data

  • We do not sell your personal data. We only share data with trusted third parties necessary to operate our business:

    1. Payment Processors: To facilitate secure transactions.

    2. Hosting & Infrastructure: To host our website and API services.

    3. AI Service Provider: Strictly for the generation of try-on images (as described in Section 4).

    4. Analytics Providers: To help us understand website traffic.

    5. Legal Authorities: If required by law, court order, or to protect our rights.

6. International Data Transfers

Our services and third-party providers may be located outside your country of residence (including outside the EEA or UK). When we transfer data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or ensuring providers are based in countries with adequate data protection laws.

7. Your Rights (GDPR, CCPA, and Global)

Depending on your location, you have the following rights regarding your data:

  • Right to Access: Request a copy of the personal data we hold about you.

  • Right to Rectification: Correction of inaccurate or incomplete data.

  • Right to Erasure (“Right to be Forgotten”): Request deletion of your data (subject to legal retention requirements like tax laws).

  • Right to Restrict Processing: Request that we limit how we use your data.

  • Right to Data Portability: Receive your data in a structured format.

  • Right to Opt-Out: You may unsubscribe from marketing emails at any time.

For California Residents (CCPA): You have the right to know what personal information is collected and the right to non-discrimination for exercising your privacy rights. We do not sell personal information.

To exercise these rights, please contact us at [email protected].

8. Data Security

We implement industry-standard security measures (SSL encryption, access controls, and secure coding practices) to protect your personal information. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

9. Children’s Privacy

Our sales website and services are not directed to children under the age of 16. We do not knowingly collect personal data from children. If you are a parent or guardian and believe we have collected such data, please contact us immediately for deletion.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by updating the “Last Updated” date at the top of this policy.

11. Contact Us

If you have questions about this Privacy Policy, please contact us:

Scroll to Top