worne, inc. operates this site. we're the controller of the personal data described below. our contact details are at § 11.

account data — when you create an account:

• email and password (password hashed; we never see plaintext);

• date of birth (collected at signup; used only for age check);

• display name and any social links you choose to share.

order data — when you buy or sell:

• shipping address(es);

• payment method metadata (card brand, last 4 digits, expiration); full card details go directly to our payment processor and are never stored on our servers;

• order history, shipping events, dispute records.

provenance data — for chipped garments:

• NFC chip tap events (timestamps, device hints);

• wear-session logs from creators (event type, duration, optional media you upload);

• chain-of-custody records: who held the item, when it changed hands, and where.

technical data — automatically when you visit:

• device type, OS, browser version;

• IP address and approximate location;

• pages visited, referrers, error reports.

• to operate the marketplace: process orders, route shipments, settle payouts, verify chip authenticity, handle disputes;

• to verify your identity and age before purchase, and to detect fraud or abuse;

• to communicate transactional info (order confirmations, shipping updates, dispute status);

• to comply with legal obligations (tax, anti-money-laundering, law-enforcement requests);

• to improve the site — aggregated, non-identifying usage analysis only.

we share data only with vendors needed to operate the platform. each has a contractual obligation to use the data only for the service they provide.

• supabase — authentication and database hosting.

• CCBill / Segpay — payment processing. card details go directly to them via their hosted widget.

• EasyPost — shipping-label generation and carrier integration.

• email and SMS providers — for transactional notifications.

• identity-verification vendor (Persona / Stripe Identity / similar) — for age verification.

we do not sell your data. we share data with law enforcement only when required by a valid legal process, and we publish a transparency note when allowed.

we use cookies that are strictly necessary for the site to function — keeping you logged in, remembering your cart, protecting against CSRF. we do not run third-party advertising or cross-site tracking pixels. analytics are first-party and anonymized.

• account data — for the life of your account; deleted within 30 days after you close it (excluding data we're legally required to keep, e.g. tax records).

• order and provenance records — retained indefinitely so chip history remains queryable across resales. anonymizable on request to the extent compatible with our retention obligations.

• technical logs — typically 90 days.

regardless of where you live, you can ask us to:

• show you the data we hold on you;

• correct anything that's wrong;

• delete your account and associated data (subject to retention obligations and ongoing-order exceptions);

• export your data in a portable format;

• restrict or object to processing for specific purposes.

if you're in the EU/UK, GDPR applies and you also have the right to lodge a complaint with your local data-protection authority.

if you're in california, you have rights under the CCPA/CPRA, including the right to know, the right to delete, the right to correct, and the right to opt out of any “sale” or “share” of personal information. we do not sell or share personal information for cross-context behavioral advertising.

to exercise any of these rights, email us (see § 11). we respond within 30 days (45 days under CCPA).

worne is strictly for users 18 and older. we do not knowingly collect data from anyone under 18. if you believe a minor has created an account, contact us and we will close it and delete the data.

our servers are located in the united states. if you use worne from outside the US, your data is transferred to and processed in the US. where required by law (e.g. GDPR), we rely on standard contractual clauses or equivalent safeguards with our vendors.

we'll update this page as the platform changes. material updates are announced via email or in-app notice with a reasonable lead time before they take effect.

privacy questions or data requests: privacy@worne.co.