Privacy Policy | Data Protection & Personal Info

PRIVACY NOTICE

This Privacy policy only concerns H&M customers and users of our online services. If you are applying for a position at H&M this policy is not applicable. The Privacy policy for applicants can be found on our career site.

H&M ensures that your privacy is protected when using our services. This Privacy Policy (“policy”) applies to information that is collected by H&M Hennes & Mauritz GBC AB. This policy applies only to information collected at hm.com, through any hm.com related mobile application, through a computerized device in U.S. stores, or any location where the policy is posted (collectively, the “Sites”). Any changes we have made to this Privacy policy can be found by visiting us online. When we do make changes, we will update the “Last Updated” date below. Where changes are viewed as more material, we may attempt to contact you or we will post a notice on this website that we have made changes to this policy.

The Swedish company - H & M Hennes & Mauritz GBC AB is responsible for your personal data under the General Data Protection Regulation (EU) 2016/679 and the applicable national data protection law. The US company H&M Hennes & Mauritz L.P is the personal data processor. Your personal data is stored and maintained in Sweden and processed within the H&M group in a few cases outside the European Economic Area (“EEA”). By using the Sites, you consent to the transfer of your data overseas and across borders, and from your country or jurisdiction to other countries or jurisdictions around the world. For transfers outside the EEA, H&M will use Standard Contractual Clauses and EU-US Privacy Shield Framework as safeguards for countries without adequacy decisions from the European Commission. The laws governing data in your home country may differ from those in the countries to which data is transferred. By accessing and using the Sites, you consent to the transfer of your data in this manner.

How do we use your data?

In providing your personal data you consent to H&M using the data collected in order to meet our commitments to you and to provide you with the service you expect. We need your personal data for the following purposes:

To create your personal account at hm.com (e.g. your name and email address)
To process your orders (e.g. your name, address, date of birth and bank details)
To be able to send text message notifications of delivery status (e.g. your mobile phone number)
To be able to send you marketing offers such as newsletters and our catalogues (e.g. your email address, your name and your postal address)
To be able to contact you in the event of any problem with the delivery of your items (e.g. telephone number, address)
To enable us to answer your queries and to inform you of new or changed services (e.g. your email address)
To notify the winners in promotions (e.g. your email address, name, home address and telephone number)
Managing your account by carrying out credit checks (e.g. name, address, date of birth)
To be able to analyse your personal data to provide you with relevant marketing offers and information (e.g. name, buying habits)
To be able to validate that your are of legal age for shopping online (e.g. date of birth)

We will only keep your data for as long as necessary to carry out our services to you or as long as we are required by law. After this your personal data will be deleted. We cannot remove your data when there is a legal storage requirement, such as book keeping rules or when there is a legal ground to keep the data, such as an on-going contractual relationship.

Non-personal data is used as described above and in other ways as permitted by applicable laws, including combining non-personal data with personal data.

By using Google’s Business Messages, your information will be transmitted to both H&M and Google.

What are your rights?

You have the right to request information about the personal data we hold on you. If your data is incorrect, incomplete or irrelevant you can ask to have the information corrected or removed. Annually, you also have the right to request written documentation, free of charge, on the personal information we have on you on our account files. To request this document please write in to H&M Customer Service. You can withdraw your consent to us using the data for marketing purposes at any time (i.e., sending catalogues, Newsletters or offers). If you have any questions, please vontact Customer Service.

Who has access to the data?

We do not sell your information to third parties. We do, however, share data with third parties when necessary to fulfill a transaction, complete a service, for administrative purposes, or when required by law. Any data that is forwarded to third parties is used to meet H&M’s commitments to you. H&M may also supply your personal data to organizations such as credit reference or debt collection agencies for the purposes of credit checks, identity checks, monitoring credit rating and debt collection. Additionally, we will share your data if such sharing is required by law or to protect against potential or suspected fraud. Also, if H&M Hennes & Mauritz AB undergoes a merger, corporate reorganization, or all or part of our assets are sold or acquired by another party, your personal data may be shared. If you do not want us to share your personal data in these manners, please do not provide it to us.

How do we protect your data?

No data transmissions over the Internet can be guaranteed to be 100% secure. Consequently, we cannot ensure or warrant the security of any information you transmit to us and you understand that any information that you transfer to us is done at your own risk. That said, once we receive your transmission, we have technical and organizational measures in place to help protect your data from loss, manipulation, unauthorised access, etc. We continually adapt our security measures in line with technological progress and developments. At H&M we protect your data using encryption using Secure Sockets Layer (SSL). SSL is a function that encrypts all information sent between buyer and seller, including card information, so that card details cannot be read by external parties.

For card purchases we work with an authorised payment agent that helps us to check directly with your bank that the card is valid for purchases. Our payment agent processes your card details in line with the PCI DSS requirements. When you pay by card we reserve the right to carry out an identity check.

Your Account Information

You can access your personal account to update your personal data. Please note, however, that your personal account information is protected by your user name and password. It is your responsibility to maintain the security of your username and password as any actions taken while logged into your account will be your responsibility.

Minors

We do not collect any personal data directly from individuals under the age of 13. If we discover that any such information is in our possession, we will delete it.

What data do we collect?

This policy applies only to information collected on the Sites. We collect two types of information from visitors to the Sites: (1) Personal data and (2) Non-personal data.

“Personal data” is information that identifies you personally, such as your name, address, telephone number, email address, and sometimes your Internet Protocol (IP) address. We may collect this information when you create a profile on our Sites, visit our Sites, or complete a purchase.

“Non-personal data” can be technical in nature. It does not identify you personally. Examples of non-personal data include the following:

Cookie -- A “cookie” is a small text file that is saved to and during subsequent visits, retrieved from, your computer or mobile device. H&M uses cookies to enhance and simplify your visit. We do not use cookies to disclose information to third parties. There are also third-party cookies on our Sites, which we use to collect statistics in aggregate form in analysis tools such as Google Analytics and Optimizely. Some of these cookies may track your behavior across multiple websites. There are two types of cookies persistent and temporary (session cookies). Persistent cookies are stored as a file on your computer or mobile device for a time period no longer than 24months. Session cookies are stored temporarily and disappear when you close your browser. We use persistent cookies to store your shipping country and shopping bag unless you log in. We use session cookies when to check whether you are logged in or not. You can easily erase cookies from your computer or mobile device using your browser. For instructions on how to handle and delete cookies please look under "Help" in your browser. You can choose to disable cookies, or to receive a notification each time a new cookie is sent to your computer or mobile device. However, please note that if you choose to disable cookies, you will not be able to take advantage of all features.
Web Beacons (also known as "clear gifs," "web bugs" or "pixel tags") -- "Web Beacons" are tiny graphics with a unique identifier, similar in function to cookies, and are used to allow us to count users who have visited certain pages of the Sites and to help determine the effectiveness of promotional or advertising campaigns. In contrast to cookies, which are stored on a user's computer hard drive, web beacons are embedded invisibly on web pages.
Demographic Information -- "Demographic Information" may be your gender, age, zip code, geolocation data and interests, which you voluntarily provide to us on and through the Sites. We use this information to provide you with personalized services and to analyze trends to ensure the information provided by the Sites meet your needs. Please note that we also consider aggregated information, which is not personally identifiable, to be non-personal data.

The above list provides an example of the non-personal data that is collected via the Sites

Online Tracking

Please note that our Sites do not support “Do Not Track” browser settings and do not currently participate in any “Do Not Track” frameworks that would allow us to respond to signals or other mechanisms from you regarding the collection of your personal or non-personally identifiable information.

Links

The Sites may include links to other websites which don't fall under our supervision. We cannot accept any responsibility for the protection of the privacy or the content of these websites, but we offer these links to make it easier for our visitors to find more information about specific subjects.

E-mail Opt-out

We communicate with users who subscribe to our services on a regular basis via email. For example, we may use your email address to confirm your request, to send you notice of payments, to send you information about changes to our products and services, and to send notices and other disclosures as required by law. Generally, users cannot opt-out of these communications, but they will be primarily informational in nature rather than promotional.

However, we provide you the opportunity to exercise an opt-out choice if you do not want to receive other types of communication from us, such as emails or updates from us regarding new services and products offered on the Sites. The opt-out choice may be exercised by ticking or un-ticking the appropriate box if such checkbox is available at the points where personal data is collected or by contacting us. We will process your unsubscribe as soon as possible, but please be aware that in some circumstances you may receive a few more messages until the unsubscribe is processed. You also may opt-out of receiving such emails by clicking on the "unsubscribe" link within the text of the email.

Text Messaging

By using the Sites and providing your mobile phone number, you hereby consent to receive autodialed and/or pre-recorded telemarketing calls and text messages from or on behalf of us at the mobile number that you provide at sign-up. You understand that consent to receiving messages on your mobile device is not a condition of purchase and understand that message and data rates may apply. Additionally, should you choose to stop receiving such messages, please contact Customer Service directly or reply STOP to a text messages once it is received. However, you hereby consent to receiving a confirmatory message in response to your STOP request.

California Privacy Rights

California Civil Code Section 1798.83 permits our visitors who are California residents to request certain information regarding our disclosure of personal data to third parties for their direct marketing purposes. To make such a request, please contact Customer Service.

Copyright

International Transfer of Data

You understand that the controller of personal data submitted through the Sites may be contacted at the information below:

Controller of personal data

H & M Hennes & Mauritz AB GBC
Mäster Samuelsgatan 46
106 38 Stockholm
Sweden

Telephone: +46 (0)8 796 55 00
Fax: +46 (0)8 24 80 78
E-mail: info@hm.com

Companies register: Bolagsverket/Swedish Companies Registration Office
Company registration number: 556070-1715
Authorised representative: Helena Helmersson
VAT registration number: VAT NO. SE556070171501

Why do we use your personal data?
We use your personal data to provide you with the information, products and services that you request or purchase from us online and in our stores. In particular, we use your personal data to process your purchase order and payment, to issue electronic receipts, handle deliveries, returns and warranty claims for products.

Whenever you make a payment, return a product or applying for a financial service we use your personal data to verify your identity and your capacity to enter into a contract, that financial information you provide us is accurate, check creditworthiness, conduct fraud checks or prevent other illegal activity.

If you have requested a VAT-invoice or a VAT-receipt from us or when any of our personnel assist you in filling in a VAT redemption application, we will ask you to provide certain personal data for us to process in order to accomplish the tasks.

Your personal data is being used to identify you and to validate your legal age for shopping online and to confirm your address with external partners.

We want to offer you different payment alternatives and will carry out analysis in order to find out what payment alternatives are available to you, including your payment history and credit checks.

We will use your personal data to send you notifications of products back in stock to the e-mail address you have provided us on your H&M Membership, H&M Account or if you have provided us with your e-mail address when you register for the Notify me service.

What types of personal data do we process?
We will process following categories of personal data

* contact information such as name, address, e-mail address and telephone number
* payment information and payment history
* credit information
* order information
* social security number, personal identity number, passport number, VAT-number or similar identification number (if you choose to provide that to us).

If you have a H&M account or a H&M membership we will also process your personal data submitted in relation to the account or membership such as:

* account or membership ID
* shopping history

Who has access to your personal data?
Your personal data is sometimes shared with third parties helping us to carry out certain tasks or to provide a requested service. H&M may in particular engage with third parties to validate your address, communication agencies to send you order confirmation, warehouse and distribution suppliers in connection with the delivery of your order, payment service providers processing your credit/debit card payments, banks and other financial services providers, social media channels if you engage with us by tagging/mentioning us or contacting us directly, and online marketplaces through which our products and services are made available to you for sale.

Please be aware that many of these recipient companies have an independent right or obligation to process your personal data.

What is the legal ground to process your personal data?
When making products and services available to you H&M will process your personal data necessary for concluding a contract with you and to fulfil any obligations derived from that contract, whether the contract refers to a purchase order and payment, or the use of other services provided by us or third parties.

If you have signed up for receiving electronic receipts, the processing of your personal data necessary for this purpose is based on your consent.

In connection with providing our products and services to you we are sometimes subject to a legal obligation to collect, process and store your personal data. e.g. for the purpose to comply with applicable tax and financial legislation.

How long do we save your data?
We will keep your data as long as you are an active customer.

For customers with an account or H&M membership we will keep your personal data for 36 months after your latest purchase.

For customers with a guest checkout we will keep your personal data for 6 months after your latest purchase.

We will keep your data for notify me service for 3 months.

Automated decision making:
When you apply for credit as a method of payment we will perform an automated decision-making regarding your credit application. You have the right to to express your point of view and to contest the decision with a member of staff.
Why do we use your personal data?
We will use your personal data to send you marketing offers, information surveys and invitations via emails, text messages, social media channels, phone calls, and postal mail.

In order to optimize your experience of H&M we will provide you with relevant information, recommend products, send you reminders of products left in your shopping bag and send you personalized offers. All these great services are based on your previous purchases, what you have clicked on and information you have submitted to us.

If you have an account with Google or social media services such as Facebook, Instagram, and YouTube, you may receive promotions in your newsfeed.

What types of personal data do we process?
We will process following categories of personal data

* contact information such as e-mail address, telephone number and postal code
* if you want updates for kids (if you choose to provide that to us)
* gender (if you choose to provide that to us)
* what products and offers you have clicked on

If you have a H&M account or are a H&M Membership we will also process your personal data submitted in relation to the account and membership such as

* name
* address
* age
* shopping history
* how you navigated and clicked on the site

Who has access to your personal data?
Data that is forwarded to third parties is only used to provide you with the service mentioned above, to media agencies and technical suppliers for distribution of physical and digital direct marketing.

We never pass on, sell or swap your data for marketing purposes to third parties outside the H&M group.

What is the legal ground to process your personal data?
The processing of your personal data is based on your consent when you agree to direct marketing. Postal marketing and marketing in social media channels will be provided to you based on our legitimate interest if you are a member, account holder, or have signed up for direct marketing.

Your right to withdraw your consent and object:
You have the right to withdraw your consent for the processing of your personal data at any time and object to direct marketing.

When you do so, H&M won't be able to send you any further direct marketing offers or information.

You can opt out from direct marketing by the following means:

* following the instruction in each marketing post
* by editing the settings of your H&M account
* configuring the privacy settings on your social media platform
* contacting Customer Service

How long do we save your data?
We will keep your data no longer than necessary to provide you with direct marketing offers and information, based on your subscription, account or membership.

For e-mail marketing we will consider you an inactive customer if you haven't opened an e-mail for within the last year.

After this time period your personal data will be deleted.
Why do we use your personal data?
We will use your personal data to create and manage your personal account in order to give you a personalized and relevant experience at H&M.

We will provide you with your order history and details around your orders and enable you to handle your account settings (including marketing preferences). We will also provide you with easy ways to maintain accurate and updated information such as contact details and payment information. Furthermore, we will enable you to save items in your shopping bag, offer you size recommendations, notify me service and enable you to rate and review the products you've purchased from us in order to provide you with relevant product recomendations H&M will process your navigation and browsing on our digtal platforms (including website and app), your shopping history and product reviews as well as the data you submitted to us through your account.

In order to provide you with relevant product recomendations H&M will process your navigation and browsing on our digtal platforms (including website and app), your shopping history and product reviews as well as the data you submitted to us through your account.

What types of personal data do we collect?
We will always process your e-mail address and password that you submit to us when you sign up for H&M account.

We will process following categories of personal data if you choose to provide it to us:

* contact information such as name, address, e-mail address and telephone number
* date of birth
* gender
* country
* account settings
* encrypted payment card information

We will process the following categories of personal data if you make a purchase
* order history
* delivery information
* payment history

We will also process the following categories of personal data connected to your cookies

* click history
* navigation and browsing history

Who has access to your personal data?
Data that is forwarded to third parties, is only used to provide you with the services mentioned above, to optimize the website we use website agencies and analysis tools for product rating.

What is the legal ground to process your personal data?
The processing of your personal data to for your account is based on your consent when you create your H&M account.

The processing of your personal data to provide you with relevant product information is based on our legitimate interest.

How long do we keep your data?
We will keep your data for as long as you have an active H&M account.

You have the right to terminate your account at any time. If you choose to do so your account will cease to exist and you are being considered inactive. We will keep your personal data in there are any legal requirements and if there is an open dispute.

We will consider you an inactive account owner if you haven't

*opened an e-mail within 1 year,
*not placed any orders within 3 years or
*not logged in within 2 years
*made any club activites within 3 years

After your account has been terminated your data will be deleted.

Your right to object to processing of your data:
You have the right to object to processing of your personal data that is based on H&M:s legitimate interest by contacting info@hm.com. Your account will then be deleted and we will not be able to carry out our services to you.
Why do we use your personal data?
We will use your personal data to create and manage your membership account and to give you a personalized and relevant experience of the H&M Membership.

We will use personal data about your purchases and other activities that entitles you to bonus points to provide you with bonus points, vouchers and to update your membership status.

Furthermore, we will enable you to save items in your shopping bag, notify me service and enable you to rate and review the products you've purchased from us.

To give you a personalized experience of the H&M Membership we use the personal data that you submit through your membership account and generate by using your membership to provide you with offers that we think you will like. We will process your navigation and browsing history on our digital platforms (including website and app), your shopping history and product reviews as well as the data you have submitted to us through your membership account and generate by using your membership to provide you with relevant product recommendations. We also use your personal data to invite you to events, sales and competitions that we think you are interested in.

You can find your purchase history, details about your orders, H&MxKlarna credit and your Member status in your account. Your account provides you with an easy way to manage your settings (including marketing preferences), and maintain accurate and updated information such as contact details and payment information.

If you have provided your consent to direct marketing we will use your personal data to email you offers, style updates, bonus vouchers, birthday offers and special invites to sales and events. You can always find your personalized offers, vouchers and more by sign in to on your membership account.

What types of personal data do we collect?
We will process the following categories of personal data that you submit to us or generate when you sign up for or are signed in as a member

* identification data such as e-mail address and password
* contact information such as name, postal code, e-mail address
* date of birth
* gender (based both on submitted information and purchase history if applicable)
* membership ID
* telephone number (if you choose to provide it to us)
* address (if you choose to provide it to us)
* account settings
* encrypted payment card information
* items not yet purchased in shopping bag (only at hm.com)
* product reviews
* membership activities

We will process the following categories of personal data if you make a purchase as a member

* purchase history
* delivery method (only at hm.com)
* payment method
* payment history

We will also process the following categories of personal data from cookies on hm.com

* click history
* navigation and browsing history
* IP-address

Who has access to your personal data?
Personal data that is forwarded to third parties, is only used to provide you with the services mentioned above. For event booking we use event booking tools. To optimize the website, we use website agencies. For product ratings we use analysis tools, as well as moderating and publishing agencies. To distribute marketing, we use communication and marketing distribution suppliers.

What is the legal ground to process your personal data?
The processing of your personal data to create and manage your membership account and to provide you with the personalized services of the H&M Membership is necessary to fulfil the H&M Membership agreement.

The use of your personal data to email you offers, style updates, bonus vouchers, birthday offers and special invites to sales and events is based on your consent.

If you don't submit your personal data we won't be able to provide you with the full H&M Membership experience.

How long do we keep your data?
We will keep your personal data for as long as you have an active membership.

You have the right to terminate your membership at any time. If you choose to do so your membership will cease to exist, and your personal data will be deleted.

We will keep your personal data for a longer period of time if there are any legal requirements or if there is an ongoing dispute.

Your right to object to direct marketing:
You have the right to object to direct marketing. If you object to direct marketing, we will cease to send out marketing material from the H&M Membership.

You can opt out from direct marketing by the following means:

* following the instruction in each marketing message
* by editing the settings in your membership account
* by contacting Customer Service

If you sign up for newsletter using your membership e-mail address you will start to receive direct marketing from the H&M Membership again.

Please read our full Privacy Policy
Why do we use your personal data?
We will use your personal data to give you service and support and to improve the overall experience of the service through email, chat function, telephone, and social media. In this context, we will use your personal data to manage your questions, handle complaints and warranty matters, and to provide technical support. We will also analyze data on an aggregated level to gain insights into customer preferences, expectations, and trends, etc.

We may also contact you through email, telephone, social media, or any other means if there is a problem with your order or if we request your participation in a customer survey, which is voluntary.

How do we use your personal data?
We will only use such personal data necessary for providing the service to you in a secure and efficient way. We will use the personal data you provide us with when you contact us, such as contact details, birth date, and other necessary information. In order to resolve your case, we may also need to access and use transaction data, such as order, payment, and delivery information.

Occasionally, we may record and co-listen to your calls. This will take place only for the purpose of technical troubleshooting.

Who has access to your personal data?
We may share your personal data within the H&M Group whenever necessary to fulfill the intended purpose. For the same reason, personal data is also shared with suppliers carrying out certain tasks on our behalf, such as externally operated call centers.

H&M is always fully responsible for its suppliers.

We may from time to time also share personal data with independent third parties, such as electronic communication providers and social media platforms for sending notifications or reaching out to you regarding a customer service matter. Please be aware that many of these third party recipients have an independent right or obligation to process your personal data in their own names.

Except as explicitly stated herein, we never pass on, sell, or swap your data to any third parties.

What is the legal ground to process your personal data?
In order to provide you with the best possible customer service, we must collect and use your personal data. This is justified in our legitimate interest as a business.

How long do we keep your data?
We will keep your data for as long as we need to handle your case. We may continue to keep and use your data if we have outstanding obligations to you or by any other reason are prevented from erasure.

Case logs are stored for a maximum period of seven days. No recordings will be stored for more than 72 hours.

Your right to object to processing based on legitimate interest:

You have the right to object to the processing of your personal data that is based on H&M's legitimate interest by contacting Customer Service at customerservice.us@hm.com.
Why do we use our data?
We will process your data when you enter our competitions online. Your personal data will be used for H&M to contact contestants regarding the competition, before and after an event, to identity contestants, verify the age of contestants, to contact winners, deliver and follow up on prize deliveries.

What types of personal data do we process?
We will process following categories of personal data

* contact information such as name, address, e-mail address and telephone number
* age
* information submitted in the contest

Who has access to your personal data?
Data that is forwarded to third parties, is only used to provide you with the services mentioned above, to shipping suppliers for delivery of prizes.

What is the legal ground to process your personal data?
The processing of your personal data is based on your consent when you choose to enter a competition.

Your right to withdraw your consent:
You have the right to withdraw your consent for the processing of your personal data at any time. When you do so H&M will not be able to provide you with the services mentioned above.

How long do we save your data?
We will keep your personal data for 45 days after the competition has ended.
Who is responsible?
H & M Hennes & Mauritz GBC AB is the controller and responsible for the cookies downloaded onto your device when you access any of our official websites and for the access and collection of data from the same device.

What is a cookie?
A "cookie" is a small text file that is downloaded onto your device such as computer or smartphone when you access our websites.

We use cookies and other similar technologies in order to make our website work efficiently and secure and to improve perosnalised user experience.

When referring to cookies we include:
first- and third party cookies,
tracking pixels and plug-ins, including technologies those from third parties,
other tracing technologies.

All cookies have an owner which tells you who the cookie belongs to. The owner is the domain specified in the cookie. Whenever you visit our website, we place cookies onto your device for different reasons. Such cookies are called “first-party” cookies, whereas cookies set by a different owner such as social media platforms or ad network/ad tech providers, are called “third party” cookies.

Below you will find more detailed information about our cookies and the reason for using them.

How to disable cookies?
You can easily stop your browser from accepting cookies by configuring your browser’s cookie settings.

All commercial web browsers are featured with cookie management functionality.

Please check your web browser to find out more how to delete or disable cookies etc.

If you choose to disable cookies, you may face limitation on functionality and a deteriorated user experience.

What types of cookies do we use and why?
Our cookies are grouped into four categories:

Strictly necessary cookies
Some cookies are strictly necessary for you to be able to experience the full functionality of our site and for us to deliver upon our promises. For example, these cookies allow you to use the website and log-in to your account as intended. Without these cookies, some parts of our site and services just won’t work as they should. We also use cookies to direct you to the right website based on geography and language and to detect and prevent security threats and malicious behaviour.

Performance cookies
Performance cookies tell us about how you use the site and they help us to make it better. For example, these cookies count the number of visitors to our website and see how visitors move around when they are using it. This helps us to improve the way our site works, for example, by ensuring that users find what they are looking for easily.

Functional cookies
Functional cookies allow our site to remember your preferences, helping you to customize your content on our website. This type of cookie enables us to highlight products and services we believe is of interest and relevance to you. This way we can remember you when you return to our site and to give you best possible user experience.

Marketing cookies
Marketing cookies are a key part of how we deliver marketing on our sites. Among other uses, cookies allow us to show more relevant advertising by serving you information, offers and promos that are based on your browsing patterns and the way you have interacted with our sites and apps. We can then present to you a web site content that is more relevant to you, meeting your interests and preferences. Cookies enables limiting the number of times an ad is shown. Marketing cookies can be used to track the effectiveness of our ad campaigns on third party websites.

What is the legal ground to use cookies?
The use of cookies for purposes other than necessary to operate the web site in a secure and effective manner, to give you full functionality and to provide you with certain requested services require your prior consent.

Who has access to cookie information?
Information obtained from cookies is shared within the H&M Group to the extent necessary to fulfill its purpose. Information obtained from third party cookies is also available to the third party provider placing the cookie on our site. We will not share first-party cookie information with third parties nor sell swap or otherwise disclose such information with anyone outside the H&M Group.

How long are cookies stored in your browser or on your device?
Cookies can be stored for varying lengths of time on your browser or device.

Persistent cookies
Persistent cookies (or permanent cookies) will be stored in one of your browser's subfolders until you delete them manually or your browser deletes them based on the duration period contained within the cookie's file. Their duration depends on the date of expiry written in them.

Session cookies
Session cookies are immediately deleted when you close your browser. When you restart your browser and go back to the site that created the cookie, the website will not recognize you.

Other tracing technologies
Information gathered through other tracing technologies such as tags and pixels are saved for 24 months.
PRIVACY NOTICE HMxME

Data privacy is very important for H&M, and we want to be open and transparent about how we process your personal data.

We therefore have a policy that establishes how your personal data will be processed and protected.

Who is the controller of your personal data?
The Swedish company, H & M Hennes & Mauritz GBC AB (“H&M”), is the controller of the personal data you submit to us, and it is responsible for your personal data under applicable data protection law.

H & M Hennes & Mauritz GBC AB
Mäster Samuelsgatan 46
106 38 Stockholm
Sweden

Companies Register: Bolagsverket/Swedish Companies Registration Office
Corporate Identity Number: 556070-1715
Authorised Representative: Karl-Johan Persson
VAT Registration Number: VAT NO. SE556070171501

Why do we use your personal data?
We want to share and inspire different ways of wearing H&M products. We will use your personal data to share user-generated content by uploading the pictures you submit to us on all our platforms.

What types of personal data do we process?
We will process the following categories of personal data:

*Instagram account name
*photo
*video

Who has access to your personal data?
Data that is forwarded to third parties is only used to provide you with the service mentioned above; third-party media agencies and technical suppliers use the data to upload the pictures you submit to us.

We never pass on to, sell to or swap your data with third parties outside the H&M group for marketing purposes.

On what legal grounds may we process your personal data?
We need to process your personal data to fulfill the service of HMxME.

We need to collect your personal data when uploading your pictures to HMxME to fulfill our commitments according to the terms and conditions for HMxME.

If you do not submit your personal data, we will not be able to upload your pictures to HMxME.

How long do we save your data?
We will keep your personal data for 24 months or until the agreement with H&M is terminated.

Where do we store your data?
The data that we collect from you is stored within the European Economic Area (“EEA”) but may also be transferred to and processed in a country outside of the EEA. Any such transfer of your personal data will be carried out in compliance with applicable laws.

For transfers outside the EEA, H&M will use standard contractual clauses and shields as safeguards in countries without adequacy decisions from the European Commission.

Who can access your data?
Your data may be shared within the H&M group (for details on the companies within the H&M group, please refer to our annual report, which is available at about.hm.com). We never pass on to, sell to or swap your data with third parties outside the H&M group for marketing purposes.

The local H&M company will only act as the personal data processor and process the personal data on behalf of the Swedish company.

Data that is forwarded to third parties is only used to provide you with our services. You will find categories of third parties under every specific process below.

What are the legal grounds for processing?
For every specific process from personal data we collect from you, we will inform you about whether the provision of personal data is statutory or required to enter a contract, whether it is an obligation to provide the personal data and the possible consequences if you choose not to.

What are your rights?
Right to access:
You have the right to request information about the personal data we hold about you at any time. You can contact H&M, and we will provide you with your personal data via email.

Right to portability:
Whenever H&M processes your personal data by automated means either based on your consent or based on an agreement, you have the right to get a copy of your data transferred to you or to another party. This only includes the personal data you have submitted to us.

Right to rectification:
You have the right to request rectification of your personal data if the information is incorrect, including the right to have incomplete personal data completed.

If you have an H&M account or are an H&M member, you can edit your personal data in your account and on membership pages.

Right to erasure:
You have the right to erase any personal data processed by H&M at any time except for the following situations:

*you have an ongoing matter with Customer Service
*you have an open order which has not yet been shipped or partially shipped
*you have an unsettled debt with H&M, regardless of the payment method
* you are suspected of misusing or have misused our services within the past four years
*your debt has been sold to a third party within the past three years or one year for deceased customers
*your credit application has been rejected within the past three months
*if you have made a purchase, we will keep the personal data linked to your transaction for bookkeeping purposes.

Your right to object to processing based on legitimate interest:
You have the right to object to processing of your personal data that is based on H&M's legitimate interest. H&M will not continue to process the personal data unless we can demonstrate either legal claims or legitimate grounds for the process which overrides your interest and rights.

Your right to object to direct marketing:
You have the right to object to direct marketing, including profiling analysis made for direct marketing purposes.

You can opt out of direct marketing by the following means:
* following the instructions in each marketing email
* editing the settings of your H&M account

Right to restriction:
You have the right to request that H&M restrict the processing of your personal data under the following circumstances:
* if you object to processing based H&M’s legitimate interest, H&M must restrict all processing of such data pending the verification of the legitimate interest.
* if you have asserted that your personal data is incorrect, H&M must restrict all processing of such data pending the verification of the accuracy of the personal data.
* if the processing is unlawful, you may oppose the erasure of personal data and instead request the restriction of the use of your personal data.
* if H&M no longer needs the personal data, but you require the data to defend legal claims.

How can you exercise your rights?
We take data protection very seriously; therefore, we have dedicated customer service personnel available to handle your requests in relation to your rights stated above. You can always reach them at dataprotection.us@hm.com.

Data Protection Officer:
We have appointed a Data Protection Officer to ensure that we continuously process your personal data in an open, accurate and legal manner. You can contact our Data Protection Officer at dataprotection.us@hm.com. Write DPO in the Subject line.

Right to complain to a supervisory authority:
If you consider H&M to be processing your personal data incorrectly, you can contact us. You also have the right to submit a complaint to a supervisory authority.

Updates to our Privacy Notice:
We may need to update our Privacy Notice. The latest version of the Privacy Notice is always available on our website. We will communicate any material changes to the Privacy Notice, for example the underlying purpose for processing your personal data, the identity of the Data Controller or your rights.

To read these Terms and Conditions or Privacy Notice in your own language, please visit your local HM.com site.

To remove Photos or Moving Content please visit https://www2.hm.com/en_us/free-form-campaigns-s03/hm-gallery.html and press report photo.
Why do we use your personal data?
When you connect to our free WiFi service, we will collect personal data from your device (MAC address) in order to be able to provide the WiFi service to you. When you login and use the WiFi service, we will also use your personal data to verify your compliance with the Terms & Conditions of the service. By using anonymization techniques, we might also turn personal data into anonymized (non-personal data) for statistical purposes.

Anonymized personal data might be used for the purpose of creating statistics on movements, behaviors and flows in our store premise. Statistics will help us gain better insights on how to operate our stores in a more efficient way by optimized assortment, floor space and staff utilization. Any data used for this purpose is anonymized and not retraceable to you as an individual.

What types of personal data do we process?
When you connect to the WiFi service, we will collect the MAC (Media Access Control) address, a unique identifier assigned to your device and related information referring to device hostname, geographic location and time.

Who has access to your personal data?
We may use third parties when providing the WiFi services to you, for this reason, we share personal data with such third parties. We also share data with an internet service provider when granting you access to the internet via the WiFi service. When creating statistics out of anonymized data, we may also share this with other companies of the H&M Group.

What is the legal ground to process your personal data?
When you connect to our free WiFi service, you permit us to collect and use you the personal data necessary to provide the requested WiFi service (fulfillment of a contract) and, by using anonymization techniques, turn personal data into anonymized (non-personal data) for statistical purpose (legitimate interest).

How long do we save your data?
We will keep your personal data as long as necessary for us to provide the WiFi service, in accordance with the agreed Terms & Conditions and to ensure your compliance with these. The retention period will be up to 14 months from when you last connected to the WiFi network.

Personal data used for statistical purpose is anonymized by technical means after collection. Once your data is anonymized, your personal data is irreversibly erased.

14/09/2020

PRIVACY NOTICE

This Privacy policy only concerns H&M customers and users of our online services. If you are applying for a position at H&M this policy is not applicable. The Privacy policy for applicants can be found on our career site.

How do we use your data?

What are your rights?

Who has access to the data?

How do we protect your data?

Your Account Information

Minors

What data do we collect?

Online Tracking

Links

E-mail Opt-out

Text Messaging

California Privacy Rights

Copyright

International Transfer of Data

Purchase Online and in Store

Direct Marketing

H&M Account

H&M Membership

Customer Service

Competition

Cookies

HMxME

WiFi in store