Privacy Policy

A model is being fitted by a stylist and tailor with a top that has a crew neckline. Catecut AI-powered styling solution for online retailers.

Privacy Policy

Last updated: 09 January 2026

This Privacy Policy explains how Sowilo ehf, operating the Catecut service (“Catecut”, “we”, “us”, or “our”), collects, uses, discloses, and protects personal data when you access or use our website, dashboard, and services.

We are committed to protecting your privacy and processing personal data in accordance with the EU General Data Protection Regulation (GDPR) and applicable Icelandic data protection laws.

1. Company Information (Data Controller)

Sowilo ehf
Innovation House
Eiðistorg 13–15
170 Seltjarnarnes
Iceland

Email: support@catecut.com
Website: https://catecut.com/

Company kennitala: 6102190710

Sowilo ehf is the data controller for personal data processed under this Privacy Policy, unless otherwise stated.

2. Scope of This Policy

This Privacy Policy applies to personal data collected through:

  • https://catecut.com/
  • The Catecut dashboard and web-based interfaces
  • APIs and integrations (where personal data is involved)
  • Communications with us (email, support, sales)

Catecut provides business-focused digital services. We do not knowingly collect personal data from children under 18.

3. Personal Data We Collect

We may collect the following categories of personal data:

a. Account and Contact Information

  • Name
  • Email address
  • Company name
  • Job title
  • Login credentials (encrypted)

b. Usage and Technical Data

  • IP address
  • Browser type and device information
  • Log files and access timestamps
  • Interaction data within the website or dashboard

c. Billing and Transaction Data

  • Billing contact details
  • Payment status and transaction references

Note: Payment card details are processed by our payment providers and are not stored directly by Catecut.

d. Customer-Provided Data

You may submit data to the Services (e.g. product data, metadata, images, descriptions). Such data may include personal data depending on your content.

4. How We Use Personal Data

We process personal data for the following purposes:

  • To provide and operate the Services
  • To manage accounts and dashboard access
  • To process payments and subscriptions
  • To communicate with customers and respond to inquiries
  • To improve, secure, and maintain the Services
  • To comply with legal and regulatory obligations

5. Legal Bases for Processing (GDPR)

We rely on one or more of the following legal bases:

  • Contractual necessity – to provide the Services
  • Legitimate interests – to operate, secure, and improve our Services
  • Legal obligations – accounting, tax, compliance
  • Consent – where required (e.g. marketing communications)

 

6. Data Sharing and Disclosure

We may share personal data with:

  • Service providers and processors (hosting, analytics, payment providers, customer support tools)
  • Payment processors (e.g. Rapyd) for transaction processing
  • Professional advisors (legal, accounting)
  • Authorities where required by law

All processors are contractually bound to protect personal data and process it only on our instructions.

We do not sell personal data.

7. International Data Transfers

Personal data may be processed outside the EEA where necessary. In such cases, we ensure appropriate safeguards, including:

  • EU Standard Contractual Clauses (SCCs)
  • Adequacy decisions where applicable

8. Data Retention

We retain personal data only as long as necessary to:

  • Fulfill the purposes described in this Policy
  • Comply with legal and contractual obligations

When data is no longer required, it is securely deleted or anonymized.

9. Data Security

We implement appropriate technical and organizational measures to protect personal data, including:

  • Access controls
  • Encryption where appropriate
  • Secure hosting environments
  • Regular security monitoring

However, no system is completely secure, and we cannot guarantee absolute security.

10. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Request erasure (“right to be forgotten”)
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time (where applicable)

To exercise your rights, contact support@catecut.com.

You also have the right to lodge a complaint with your local data protection authority.

11. Cookies and Tracking

Catecut uses cookies and similar technologies to operate and improve the website and dashboard.

Cookies may be used for:

  • Essential functionality
  • Analytics and performance

Where required, consent is obtained via a cookie banner. You may manage cookies through your browser settings.

12. Customer Data & Processor Role

When customers submit data to Catecut as part of using the Services, Catecut may act as a data processor on behalf of the customer.

In such cases:

  • The customer is the data controller
  • Processing is governed by applicable data processing agreements (DPAs)

13. Third-Party Links

Our Services may contain links to third-party websites or tools. We are not responsible for their privacy practices.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Updated versions will be posted on https://catecut.com/ with a revised “Last updated” date.

Continued use of the Services constitutes acceptance of the updated Policy.

15. Contact

If you have questions or concerns about this Privacy Policy or our data practices, contact:

Email: support@catecut.com
Website: https://catecut.com/

© Sowilo ehf. All rights reserved.

Share the Post:

Related Posts