Stitch Privacy Policy
1. About this Privacy Policy
This Privacy Policy explains how Stitch Digital Solutions Limited ("Stitch," "we," "us") collects, uses, and protects information in connection with the Stitch website, the Stitch application, and related services.
2. Who Stitch is
Stitch Digital Solutions Limited is a company incorporated in Hong Kong, with its registered office at UNIT B6, 12/F, Wing Wah Building, No. 677 King's Road, Quarry Bay, Hong Kong.
3. Scope
This Policy covers the public Stitch website, Stitch account holders and Authorised Users, commercial prospects and contacts, information submitted through forms, Client Data processed through the Stitch application, uploaded tailoring documents, AI Preview photographs and fabric images, and payment and billing information handled through Stripe.
4. Information collected directly
We may collect information you provide directly, such as your name, business name, email address, and any information submitted through a contact or demo-request form.
5. Information from Stitch Clients
Where a tailoring business becomes a Stitch Client, we collect business and billing details needed to provide the Services.
6. Account and business contact information
Authorised Users have account credentials and profile information necessary to access the Platform on the Client's behalf.
7. Client Data
Client Data — including customer profiles, measurements, orders, fabrics, preferences, and alteration notes — is uploaded by, or generated through, a Client's use of the Platform. Client Data remains the Client's property.
8. Measurements, tailoring records and uploaded documents
The Platform is designed to store and structure measurement and order records digitised from physical tailoring order books.
9. Photographs and AI Preview
Client photographs and fabric images may be processed for AI Preview functions within the Platform.
10. Website and technical information
When a person visits or interacts with the Stitch website, Stitch and its service providers may automatically receive technical and usage information necessary to operate, secure, and improve the website. This information may include internet protocol address, browser type and version, device type and operating system, language and regional settings, pages viewed, referring page or source, dates and times of access, approximate location derived from technical information, interactions with website functions, and diagnostic, performance, and security information.
Stitch may use essential cookies, local storage, or similar technologies where required for website operation, security, session management, and user preferences. Where Stitch introduces nonessential analytics, advertising, or tracking technologies that require consent under applicable law, Stitch will provide the relevant notice and consent controls before activating them for affected users.
11. Payment information
Stitch uses Stripe to process payments. Stitch does not directly store full payment card details.
12. How information is used
Information is used to provide, maintain, secure, and improve the Services, to process payments, to communicate with Clients about their account, and to provide support.
13. Artificial intelligence processing
The Platform uses artificial intelligence to assist with mapping order sheet data into structured records and to generate AI Preview outputs from client photographs and fabric images. These functions are designed to assist the Client's use of the Platform and are not a substitute for the Client's own review of imported data.
14. Service providers and information sharing
Stitch may engage third-party service providers where reasonably necessary to operate, secure, maintain, and deliver the website and Services. These providers may support functions such as cloud infrastructure and hosting, payment processing, email delivery, authentication, messaging, analytics, advertising integrations selected by Clients, customer support, document processing, artificial intelligence functions, and security and system monitoring. Stitch uses Stripe for payment processing.
Service providers may process information only for the purposes for which they have been engaged and subject to contractual, confidentiality, security, or other appropriate safeguards. Stitch may also disclose information where required by applicable law, court order, or competent authority; to investigate fraud, abuse, security threats, or unlawful activity; to protect the rights, property, or safety of Stitch, its Clients, or other persons; in connection with a merger, acquisition, investment, financing, restructuring, or sale of all or part of the business; or where the relevant Client or individual has authorised the disclosure. Stitch does not sell Client Data to third-party advertisers.
15. International processing
Stitch operates internationally and may process or store personal data in jurisdictions outside the country in which the Client or individual is located. This may occur where Stitch uses personnel, infrastructure, or service providers located in different countries.
Where personal data is transferred or processed internationally, Stitch will use reasonable contractual, technical, and organisational measures designed to protect the information and will comply with applicable legal requirements relating to international processing. The protections applicable to the information will depend on the nature of the data, the processing activity, the countries involved, and the relevant data protection laws. Stitch does not represent that all information is stored exclusively in Hong Kong, Thailand, or any other single jurisdiction.
16. Data security
Stitch applies reasonable technical and organisational security safeguards, including encryption in transit and at rest, access controls, authentication safeguards, and secure cloud infrastructure. No system can be guaranteed completely secure.
17. Data retention
Stitch may delete Client Data ninety (90) days after termination of the applicable Agreement, unless law or a written agreement requires a different period.
18. Client Data ownership
Stitch Clients retain ownership of their Client Data at all times.
19. Privacy rights
Subject to applicable law, an individual may have the right to request confirmation of whether Stitch holds personal data relating to them; request access to that personal data; request correction of inaccurate personal data; request deletion where the information is no longer required or where deletion is otherwise required by law; withdraw a consent previously given, where processing depends on that consent; object to or opt out of direct marketing communications; or make a complaint concerning the handling of personal data.
Privacy requests should be sent to legal@stitchcrm.services. The request should include sufficient information to allow Stitch to identify the person making the request, identify the information concerned, and verify the person's identity and authority.
Stitch will respond within the period required by applicable law. Where the Hong Kong Personal Data (Privacy) Ordinance applies to a valid data access or correction request, Stitch will normally respond within forty (40) days after receiving a complete and verifiable request. Stitch may request additional information, refuse a request, or charge a permitted fee where allowed by applicable law. Where a request is refused, Stitch will provide the reason where legally required.
Where Stitch processes the relevant personal data solely on behalf of a business Client, Stitch may refer the request to that Client or assist the Client in responding.
20. Business Client responsibilities
Clients are responsible for having lawful authority to upload any customer information or photographs to the Platform.
21. Children's information
The Stitch website and Services are intended for business use and are not directed at children. Stitch does not knowingly invite children to create accounts, purchase subscriptions, or provide personal information directly through the website.
A Stitch Client may occasionally upload information relating to a person under the age of eighteen as part of legitimate tailoring services, such as measurements, fitting records, order information, photographs, and contact or guardian information. In such cases, the Client is responsible for ensuring that it has the lawful authority, consent, or other legal basis required to collect and upload the information. Stitch processes such information only as necessary to provide the Services and in accordance with the Agreement.
A parent, guardian, or other authorised person may contact Stitch at legal@stitchcrm.services regarding personal data relating to a child.
22. Changes to this Privacy Policy
Stitch may update this Privacy Policy from time to time. Material changes will be notified through the website or by email.
23. Contact details
Stitch Digital Solutions Limited
UNIT B6, 12/F, Wing Wah Building, No. 677 King's Road, Quarry Bay, Hong Kong
Legal enquiries: legal@stitchcrm.services
Support enquiries: support@stitchcrm.services