COOKIE AND SIMILAR TECHNOLOGIES POLICY

Last updated: 22 January 2026

1. INTRODUCTION
   This Cookie and Similar Technologies Policy (“Cookie Policy”) explains how Grimmor OÜ uses
   cookies and similar technologies to store or access information on your device.
   Unless stated otherwise, capitalized terms (like “Platform”) have the same meaning as in our Privacy
   Policy. This Cookie Policy covers our entire Platform, which consists of two technical environments:
   ● The Website (www.grimmor.com): Uses standard browser cookies.
   ● The app (Grimmor mobile application): Uses SDKs and device identifiers.
   By using our Platform, you consent to the practices described in this Cookie Policy. Please read this
   alongside our Privacy Policy and Terms of Use.
2. TECHNOLOGIES USED ON OUR WEBSITE
   When you visit our website www.grimmor.com, we use cookies.
   Cookies are small text files that are downloaded to your device when you visit our website. They help
   us ensure the website functions properly and, with your permission, help us understand how you use
   the site to improve our content. You can read more about cookies on http://www.allaboutcookies.org/.
   We use first-party and third-party cookies. First-party cookies are set and managed directly
   by Grimmor. Third-Party cookies are set by our trusted partners and service providers (such as
   Google). When you use features provided by them, your data may be collected directly by these
   partners. We recommend reviewing their privacy policies to understand how they handle your data.
   Cookies are vital for the Website to function properly. They enable core functionalities such as
   security, network management, and accessibility. We use these cookies to protect the website from
   spam and bot attacks, remember your privacy preferences, and ensure that content is displayed
   correctly.
   We do not need your consent for essential cookies. Because these technologies are strictly necessary
   to provide the service you requested, EU law does not require your consent to use them.
   Because these technologies are essential for the security and technical operation of the Website, you
   cannot disable them through cookie settings. They are set by default to ensure the website works
   correctly. What you can do, please see below.
   Cookies we use:
   Cookie name Provider Purpose Type Expiry
   _grecaptcha Google Distinguish between Strictly Nece Persistent

2 /

humans and bots. ssary

_GRECAPTCHA Google Distinguish between
humans and bots.

Strictly Nece
ssary

180 days

CookieConsent grimmor.com Stores the user’s
cookie consent state
for the current
domain

Strictly Nece
ssary

1 year

rc::a Google Distinguish between
humans and bots.

Strictly Nece
ssary

Persistent

rc::b Google Distinguish between
humans and bots.

Strictly Nece
ssary

Session

rc::c Google Distinguish between
humans and bots.

Strictly Nece
ssary

Session

rc::f Google Distinguish between
humans and bots.

Strictly Nece
ssary

Persistent

wpEmojiSettings
Supports

grimmor.com Content delivery and
presentation.

Strictly Nece
ssary

Session

3. TECHNOLOGIES USED ON THE PLATFORM

WHAT AND HOW WE USE
Unlike a website, our mobile application does not use standard browser cookies. Instead, we use the
following similar technologies:
● Software Development Kits (SDKs): Blocks of code provided by our third-party partners
(such as Google or Stripe) that are embedded in our App. These allow the App to function
(e.g., process a payment), communicate with external servers, and collect analytics.

3 /
● Local Storage: We use the local storage on your device to cache app settings, login
sessions, and preferences (like your language or last viewed items) to ensure the App runs
faster and you don’t have to log in every time.
● Cloud Processing & Caching: To generate the AI virtual try-on visualization, your photos
and body measurements are securely transmitted to our cloud servers. We may use local
storage to temporarily cache the generated images on your device so you can view them
quickly without re-loading.
● AI Integration Technologies: We use API integrations with specialized third-party providers
(such as FashnAI) to enable the generative AI features. While the processing happens in the
cloud, the App facilitates the secure transmission of data required for this feature.
PURPOSE OF TRACKING AND LEGAL BASIS
We categorize these technologies based on their purpose. You can control non-essential technologies
through your device settings or the app settings.
A. Strictly Necessary Technologies
These are essential for the Platform to function. Without them, you cannot use the Platform, create an
account, or make purchases. We do not require your consent for these.
Technology /
Partner Purpose Data

Processed Legal Basis Retention /
Expiry

Flutter SDK

App Infrastructure. Uses
local storage to maintain
your login session and app
state.

Auth tokens,
app
preferences.

Legitimate
Interest (Functio
nality)

Until app
uninstallation
or logout

Stripe SDK

Payments &
Security. Processes
payments securely and
performs fraud detection
(Risk Scoring).

Payment
data, device
indicators.

Performance of
Contract & Legit
imate Interest

Session-
based /
transaction-
related
retention

ExchangeRate-
API

Currency
conversion. Displays
product prices in your local
currency.

Currency
preference.

Legitimate
Interest (User
convenience)

Session only

AWS
(Infrastructure)

Hosting &
Storage. Securely
retrieves your photos and
profile data from our cloud
servers in EU (Stockholm).

User ID,
Profile
content.

Performance of
Contract

Duration of
account
existence

B. Functional Technologies
These technologies allow the Platform to remember choices you make and provide enhanced features (like
notifications or feedback tools).

4 /

Technology /
Partner Purpose Data

Processed Legal Basis Retention /
Expiry

Google
Firebase
(FCM)

Push
Notifications. Sends
order updates and
alerts.

App instance
identifier,
notification
token.

Consent (Via device
system permissions)
Until
consent
withdrawn
or app
uninstallatio
n

Monday.com
SDK

Feedback
System. Allows
reporting bugs and
sending feedback
within the App.

Feedback text,
OS version,
Device model.

Legitimate Interest

Up to 2
years from
submission

Generative
AI
Technologie
s (e.g.,
FashnAI)

Virtual Try-On. We
use specialized AI to
scan your uploaded
photos and create a
mathematical model
of your body to
visualize how clothing
fits.

Photos, body
measurement,
style
preference,
app activity

Consent (obtained
when you choose to
upload a photo)

Stored in
user profile
until deleted
by User

C. Analytics and Performance (Optional)
Technology /
Partner Purpose Data
Processed

Legal
Basis

Retention /
Expiry

Google
Firebase
(Analytics &
Performance)

App Analytics &
Stability. Helps us
understand how users
interact with the App and
detects crashes to fix bugs.

Device
identifiers
(Instance ID),
usage
statistics, crash
logs, IP
address.

Consent Up to 2
years

THIRD-PARTY DATA ACCESS AND TRANSFER
Many of the technologies listed in the tables above (Sections A, B, and C) are provided by our third-
party partners (e.g., “Log in with Google”). While Grimmor controls the deployment of these
technologies within the App, data collected through them (such as device identifiers or usage
statistics) may be transmitted to and stored on the servers of these third parties
Service providers who provide technical infrastructure (such as AWS or Nano Banana Pro) process
data strictly on our behalf and under our instructions. Partners who provide independent services
(such as “Log in with Google”, payment processing by Stripe) may process your data according to

5 /
their own privacy terms (Controllers). Here are some specific partners whose technologies are
integrated into our App and link to their privacy practices:
● AWS: Hosts our infrastructure.
● Google (Firebase): Analytics.
● Monday: Processes user feedback.
● Stripe: Processes payment data.

4. HOW TO CONTROL YOUR PRIVACY
   You can control how tracking technologies are used on the Platform depending on whether you are
   visiting our Website or using the app.
   In the app:
   ● Push Notifications: You can turn off push notifications at any time in your mobile
   device’s Settings > Notifications > Grimmor or in the App settings.
   ● Local Storage: You can clear the app’s local data by uninstalling the app or, on Android
   devices, by using the “Clear Storage/Cache” option in the App settings.
   Managing Your Content and Profile:
   ● AI Data: You can delete your saved measurements and photos at any time through the App
   settings.
   ● Account Deletion: You can permanently delete your profile and associated personal data
   through the App Settings or by contacting us.
   On the Website:
   ● Browser settings: Different browsers provide different methods to block and delete cookies
   used by websites. You can change the settings of your browser to block/delete the cookies.
   For additional information please visit your browser’s official support documents.
   ● The most efficient way to manage your preferences is via our cookie consent tool. You can
   change your choices or withdraw consent at any time by clicking the “Cookie Settings” link
   located in the footer of our website.
   Please be aware that limiting these technologies may affect your experience. For instance, if you
   disable Local Storage, the app will not remember your body measurements or denying access to your
   Camera or Photos will prevent the virtual try-on feature from working.
5. QUESTIONS AND CONTACT INFORMATION
   If you have questions about the technologies we use or your data processing, please do not hesitate
   to contact us, Grimmor OÜ, at: support@grimmor.com.