> ## Documentation Index
> Fetch the complete documentation index at: https://docs.wearo.io/llms.txt
> Use this file to discover all available pages before exploring further.

# RGPD overview

> How Wearo handles personal data and GDPR compliance.

# RGPD / GDPR overview

Wearo is designed with privacy by default. Here's what you need to know as a data controller.

## Roles

| Party      | Role                                              |
| ---------- | ------------------------------------------------- |
| Your store | Data controller — you collect shopper consent     |
| Wearo      | Data processor — we process photos on your behalf |

## What personal data is processed

The only personal data Wearo processes is the **shopper's photo**, submitted voluntarily
for the try-on.

* Wearo does not collect names, emails, or payment data
* Wearo does not track shoppers across sites
* No facial recognition or biometric data is extracted

## Legal basis

Under GDPR, the legal basis for processing is **explicit consent**. The widget
displays a consent notice before the shopper uploads a photo.

## Your obligations

As the data controller, you must:

1. Include Wearo in your Privacy Policy as a sub-processor
2. Ensure shoppers have consented before the widget loads (if required by your DPA)
3. Sign the Data Processing Agreement (DPA)

## More

* [How shopper photos are handled →](/privacy/shopper-photos)
* [Data retention policy →](/privacy/data-retention)
* [DPA template →](/privacy/dpa-template)
