This time it’s okay to take things too far. Our partnership gives you the expertise, knowledge, and know-how to grow globally – and do it faster than ever.
Pattern Inc. and its subsidiaries and affiliates (“Pattern“, “we,” “us” or “our“) respect your privacy. This Privacy Policy describes how we collect, use, and share your personal data when you use the Pattern website (https://pattern.com/), the Pattern marketplace services including when you shop on our online stores and when you place orders with our storefronts, when you use our software and when you create an account with us (collectively, our “Services“).
The purpose of this Notice is to inform you about our privacy practices and to ensure that you understand the purposes for which we collect and process your personal data. The following is a brief summary of the manner and purposes for which we process your personal data.
This Notice relates to your personal data, i.e. data about you, an individual, from which you can be identified. No sensitive information will be collected. This includes race, sex, age, health information, etc.
This Notice therefore does not apply to any data insofar as it is held, processed, disclosed or published in a form which cannot be linked to a living individual (such as anonymised data, aggregated data, or data which, in a given form, cannot be identified, directly or indirectly, with a specific individual (“Anonymised and Aggregated Data“). We reserve the right to generate Anonymised and Aggregated Data extracted out of any databases containing your personal data and to make use of any such Anonymised and Aggregated Data as we see fit.
While this Notice is intended to establish a standard for our information processing activities globally, those processing activities may be more limited in some jurisdictions based on the restrictions of their laws. For example, the laws of a particular country may limit the types of personal information we can collect or the manner in which we process that personal information. In those circumstances, we comply with relevant local laws and regulations.
We may update this Notice from time to time and the updated version of this Notice will be effective upon posting on the Services. Please check the bottom of this page to see the most recent updates.
Where your personal data is collected and processed in connection with our Services, Pattern is the entity which is responsible for processing the data. If you have any questions or concerns about Pattern’s use of your personal data, please contact John Clawson, VP of Information Security, at privacy@pattern.com.
We operate the Services from the United States of America (USA) and our data collection and processing activities take place predominantly in the USA. Accordingly, data collected from users when using our Services is collected in the USA. We store and otherwise process data (including personal data) through third party cloud service providers and other IT service providers which may be located or which may operate in other countries.
We do not sell your personal information to third parties.
(g) Advertising Identifiers. Advertising identifiers are unique strings associated with your mobile device that are provided by the operating system. Certain advertising identifiers may be modified or disabled by users in the operating system’s settings.(h) Location Data. When you access or use the Services using a mobile device, we may access, collect, monitor and/or remotely store “location data,” which may include GPS coordinates (e.g. latitude and/or longitude) or similar information regarding the location of your device. Location data may convey to us information about how you browse and use the Services. Some features of the Services, particularly location-based services, may not function properly if use or availability of location data is impaired or disabled. (i) Commercial Communications. Insofar as permitted under applicable law, we may use the information we collect or receive to communicate directly with you in relation to the Services or related services we offer. Subject where legally required to your consent to receiving such communications, we may use the information to communicate with you in relation to other services that we and our affiliates offer. For example, we may use the information to send you emails containing newsletters, promotions and special offers. We may also use the information to send you service-related notices (e.g., account verification, technical and security notices). (j) Use of Certain Service-Type Information. We may use information from cookies, log files, device identifiers, location data, clear GIFs and other tools to: (i) remember information so that you will not have to re-enter it during your visit or the next time you use the Services; (ii) provide custom, personalized content or information to you or others; (iii) monitor the effectiveness of the Services; (iv) monitor aggregate metrics, such as total number of visitors, traffic and demographic patterns; (v) diagnose or fix technology problems; (vi) provide advertising to your browser or device; and (vii) conduct research or surveys. (k) Use of Information with Your Consent. We may use your information for any other purpose for which you provide consent.
6B. SMS Messaging Terms & Conditions
By providing your mobile phone number and opting in to receive SMS messages from Pattern (the "SMS Service"), you expressly consent to receive recurring text messages, including marketing and informational messages, from Pattern at the number provided. These messages may be sent using automated technology. Your consent to receive these messages is not a condition of any purchase.
We do not envisage that any decisions will be taken about you based solely on automated decision-making that will have a significant impact on you. However, we will update this Notice if this position changes.
(a) To enable us to deliver the Services to you and to enable you to use them efficiently; (b) To perform our contractual obligations to purchasers of our products and to fulfill orders made on our storefronts for our products; (c) Insofar as permitted under applicable law, to communicate with you in relation to the Services and other services that we or our affiliates offer, including newsletters, promotional emails, and SMS-based alerts and notices; (d) To personalize, test, monitor, improve and upgrade the Services and advertising experiences across platforms; (e) For loss prevention purposes and to protect and enforce our rights and meet our obligations to third parties; (f) To meet our legal obligations and the regulatory requirements to which we are subject, including international data transfer compliance and regional data access rights; (g) For our internal business purposes, such as compiling and analyzing usage information for general operational, statistical and business purposes, including through the use of cookies and analytics tools; (h) To conduct research, diagnose or resolve technical problems, and develop future enhancements to our offerings; (i) To provide tailored advertising and measure the performance of ad campaigns through identifiers, cookies, and other tracking tools; (j) With your consent, for any other use described at the time of collection or as explicitly approved by you in connection with a specific service.
It is important that the personal data we hold about you is accurate and current. If you provided us with any details of personal data, please keep us informed if such details change.
The processing of your information is lawful on the basis of the following:
(a) Where relevant, the fulfillment of our contractual obligations to you or at your request prior to entering into a contract with us, where we process your information at your request as part of the Services; (b) Compliance with legal obligations to which we are subject, including to comply with legal process (see further below); (c) our legitimate interests in (among other things) providing and administering the Services, conducting commercial research, improving and maintaining the Services, personalizing and tailoring content made available to you through the Services, protecting the security or integrity of our databases, protecting our business or reputation, taking precautions against legal liability, dealing with our assets in the event of a business change (see further below), protecting and defending our rights or property, required institutional risk control, or for resolving disputes, investigating and attending to inquiries or complaints with respect to your use of the Services; and (d) where none of the above applies, where relevant, we may rely on your consent for the processing of your data.
(a) Business Associates and Service Providers. We may share information about you with third-party business associates and service providers that perform services on our behalf in connection with the Services—for example, providers of IT support, data analytics, customer service, advertising, marketing, or cloud hosting services. These service providers are only permitted to process your information under our instructions and solely for our benefit. (b) Affiliated Entities. We may share information within our corporate group, including our subsidiaries and international offices in the United States, United Kingdom, European Union, Australia, and China, where necessary to deliver our Services, fulfill business operations, or comply with applicable laws.(c) Business Change. If we become involved in a merger, consolidation, acquisition, sale of assets, joint venture, securities offering, bankruptcy, reorganization, liquidation, dissolution, or other transaction, or if the ownership of all or substantially all of our business otherwise changes, we may share or transfer your information to successor parties in connection with such transaction or change in ownership. (d) Necessary Disclosure. We may disclose information about you to third parties to: (i) enforce or apply our contractual or legal rights; (ii) comply with laws, subpoenas, warrants, court orders, legal processes, or requests from government or law enforcement officials; (iii) protect our rights, reputation, safety or property, or that of our clients or others; (iv) protect against legal liability; (v) establish or exercise our rights to defend against legal claims; or (vi) investigate, prevent, or take action regarding suspected illegal activities, fraud, or violations of our terms. (e) Third-Party Advertising and Analytics. We may share non-identifying technical information collected through cookies, device identifiers, and similar technologies with third-party advertising and analytics partners to evaluate and improve our marketing performance, conduct analytics, or provide targeted ads. These third parties are subject to their own privacy policies and may use this information for their own purposes. (f) Aggregated Data. We may aggregate or anonymize personal data and share such data with third parties for statistical or research purposes, product improvement, or other lawful uses. This data does not personally identify you and cannot reasonably be re-associated with you. (g) With Your Consent. We may share your personal data with third parties for purposes not described in this policy if we have obtained your express consent to do so.
We take certain physical, technological, and administrative measures to protect the information you provide through the Services against loss, theft, and unauthorized access, use, disclosure, or modification. These measures include but are not limited to access controls, encryption, firewalls, and regular security audits. However, we cannot ensure or warrant the security of any information you transmit to us or guarantee that information on the Services will not be accessed, disclosed, altered, or destroyed. Email sent to or from the Services may not be secure. You should use caution whenever submitting information online and take special care in deciding what information you send to us via email.
We use reputable third-party service providers, including cloud hosting platforms, and require them to implement appropriate safeguards to protect personal data, including compliance with international data protection standards where applicable. We assume no liability for disclosure of your information due to transmission errors, third-party access, or causes beyond our control. We assume no liability for disclosure of your information due to transmission errors, third-party access, or causes beyond our control. If personal data is transferred from the UK or EU to the United States, we do so in compliance with the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov/ ).
We typically respond to valid data access, deletion, or correction requests within 7 business days, although we reserve up to 45 days (or one additional extension of 45 days, where legally permitted) to respond, depending on the complexity and volume of the request.
(a) Controlling Your Settings. You can limit your browser or mobile device from providing certain information by adjusting the settings in the browser, operating system, or device. Please consult the documentation for the applicable browser, operating system, or device for the controls available to you. You can also stop receiving promotional emails from us by following the unsubscribe instructions in those emails. Note that unsubscribe is not available for certain emails concerning your relationship or dealings with us (e.g., emails sent to customers in relation to purchases made using the Services). You may also opt out of receiving SMS marketing messages by following the opt-out instructions included in the message or replying “STOP.” (b) Do Not Track and Online Preferences. At this time, we do not recognize “Do Not Track” signals sent from web browsers. In some cases, your browser may offer a Do Not Track option, which allows you to signal to operators of websites and services (including advertising services) that you do not wish them to track your online activity.
You may still control whether you receive interest-based advertising by using opt-out tools provided by third-party advertising partners, or through your browser or device settings. Disabling tracking mechanisms may disable certain features of the Services. (c) Third-Party Opt-Out Tools. You may disable tracking by certain third-party services by using the following tools:
Google Analytics https://tools.google.com/dlpage/gaoptout/
ScorecardResearch http://scorecardresearch.com/optouttag.aspx
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. We may also retain certain information for a longer period where it is necessary to comply with our legal obligations, enforce our agreements, or resolve disputes. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. Where we process personal data based on your consent (such as for marketing), we will retain that data only until you withdraw your consent or opt out of communications. We also follow data minimization principles to avoid keeping personal data longer than necessary.
The Services are not directed to children and are intended for use by adults only. We do not knowingly collect information from individuals under 16 years of age. If you are under the age of 16, please do not submit any information through the Services.
The Services may reference or provide links to other websites, applications, or resources. If you access any website, application, or resources provided by a third party, our Privacy Policy will not apply. Your interactions with such websites, applications, and resources are subject to the privacy policies of the third parties that operate them. Please review those policies carefully to understand how those parties will treat your information.
Users based in the European Union and the United Kingdom have the following legal rights in respect of their information:
(a) The right to require Pattern to confirm whether or not their information is being processed, the purpose of any such processing, the recipients of any information that has been disclosed, the period for which their information is to be stored and whether any automated decision-making processes are used in relation to their information; (b) The right to require Pattern to rectify inaccurate information; (c) Where Pattern has relied on the ‘consent’ basis for processing that information (see above), the right to withdraw their consent at any time. This right to withdraw consent does not affect the lawfulness of processing based on consent before its withdrawal; (d) The right to request the erasure of their information in certain circumstances (for example, information is no longer necessary in relation to the purpose for which it was collected); (e) The right to require Pattern to restrict its processing of a user’s personal data in certain circumstances, such as where the accuracy of that data is disputed or an objection has been raised; (f) The right (in certain circumstances) to receive their personal data in a structured, commonly used and machine-readable format; (g) The right to object (in certain circumstances) to the processing of personal data;(h) Users have the right to lodge a complaint with the data protection supervisory authority of the United Kingdom or the EU member state where the user resides.
In the United Kingdom, this is the Information Commissioner’s Office (ICO), which can be contacted at https://ico.org.uk/ or by calling +44 303 123 1113.
If you are located in the United Kingdom, Pattern Inc. and its UK affiliate, Pattern trading Ltd., are jointly responsible for your data processing. For questions or to exercise your rights, you may contact John Clawson, our Personal Information Protection Officer, at privacy@pattern.com.
For individuals residing in China, your personal data is protected under the Personal Information Protection Law (PIPL). You have the right to be informed about how your personal information is collected, used, and shared. You may request access to your data, correction of inaccurate or incomplete information, and deletion of your data under certain circumstances. You may also restrict or refuse the processing of your personal information and withdraw your consent at any time. Furthermore, you have the right to request an explanation of automated decision-making that significantly affects your rights and interests. If you believe your rights under PIPL have been violated, you may seek legal recourse through China’s supervisory authorities or courts.
For privacy-related inquiries in China, you may contact James Tan at
If you are located in India, your personal data rights are protected under the Digital Personal Data Protection Act, 2023. You have the right to access and correct your personal information, and to request deletion when it is no longer necessary or if consent is withdrawn. You may also file complaints with the Data Protection Board of India if you believe your data has been mishandled. Consent must be freely given and specific, and you are entitled to clear notices about data processing activities. Additionally, you have the right to nominate another individual to exercise your data rights in case of incapacity or death. Contact privacy@pattern.com for more information
If you are located in Australia, your personal data is protected under the Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs). You have the right to know why your personal information is being collected, how it will be used, and who it will be disclosed to. You may request access to your personal data and request correction if it is inaccurate, out-of-date, incomplete, irrelevant, or misleading. You also have the right to make a complaint if you believe your information has been mishandled.
We take reasonable steps to ensure that any overseas disclosures of personal information comply with the APPs. We only transfer personal information outside of Australia where we are satisfied that the recipient will comply with privacy standards substantially similar to the APPs, or where you have consented to the transfer. Contact privacy@pattern.com for more information
If you are located in Canada, your personal information is protected under the Personal Information Protection and Electronic Documents Act (PIPEDA). You have the right to know why an organization collects, uses, or discloses your information. You may request access to the personal data we hold about you and request corrections if that information is inaccurate or incomplete.
You also have the right to withdraw your consent to the collection, use, or disclosure of your personal data, subject to legal or contractual restrictions and reasonable notice. We are committed to protecting your privacy and complying with Canadian legal obligations for cross-border data transfers.
If you have any privacy-related inquiries or complaints, you may contact us at privacy@pattern.com . If your concern is not resolved, you have the right to contact the Office of the Privacy Commissioner of Canada (OPC) at https://www.priv.gc.ca/ .
If you are located in South Korea, your personal data is protected under the Personal Information Protection Act (PIPA). You have the right to access your personal information and request correction or deletion if it is inaccurate or no longer necessary. You may also request suspension of processing and withdraw your consent at any time. If your personal data is transferred overseas, you will be informed of the recipient, purpose, and retention period, and your consent will be obtained where required. You have the right to receive an explanation of automated decision-making that significantly affects your rights.
If you believe your data has been mishandled, you may file a complaint with the Personal Information Protection Commission (PIPC) at https://www.pipc.go.kr. For privacy-related inquiries or to exercise your rights, you may contact our designated Privacy Officer: John Clawson our Personal Information Protection Officer.
Email: privacy@pattern.com
If you are located in Japan, your personal information is protected under the Act on the Protection of Personal Information (APPI). You have the right to access, correct, or request deletion of your personal data, and to be informed of how your information is collected, used, and shared. You may also request the suspension of use if your data is being handled unlawfully or beyond its stated purpose. Where personal data is transferred overseas (e.g., to our servers or service providers in the United States), we take steps to ensure the receiving country maintains adequate data protection standards, or we will obtain your informed consent in accordance with APPI requirements.
Pattern Inc. is responsible for your data processing and joint use within our corporate group. For privacy-related inquiries or to exercise your rights, contact us at privacy@pattern.com.
If you are located in Mexico, your personal data is protected under the Federal Law on the Protection of Personal Data Held by Private Parties (LFPDPPP). You have the right to access, correct, cancel (delete), or oppose the processing of your personal information (known as ARCO rights). You may also revoke your consent at any time, and request limitations on the use or disclosure of your data. Where your personal data is transferred outside of Mexico (e.g., to our servers or service providers in the United States), we will provide adequate safeguards and notify you as required by law. If you believe your data has been mishandled, you may file a complaint with the Instituto Nacional de Transparencia, Acceso a la Información y Protección de Datos Personales (INAI) at https://home.inai.org.mx/ .
For privacy-related inquiries or to exercise your rights, contact us at privacy@pattern.com.
The California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), provides California residents with enhanced privacy rights regarding their personal information.
(a) California Consumer Privacy Act. If you are a California resident, the information below applies to you. Certain terms used in this section have the meanings given to them in the California Consumer Privacy Act of 2018 (“CCPA”).
(b) Categories of Personal Information Pattern has collected from or about its customers in the preceding 12 months:
(c) Categories of sources from which Pattern has collected Personal Information about customers:
(d) Business or commercial purposes for which Pattern has collected Personal Information about customers in the preceding 12 months (for more information, see the Purposes for Which We Use Your Personal Information section of this privacy policy):
(e) Categories of Personal Information Pattern has sold about customers in the preceding 12 months:
(f) Categories of Personal Information Pattern has disclosed for a business purpose in the preceding 12 months:
(g) Non-Discrimination. Pattern will not discriminate against you because you exercise your rights. For example, Pattern will not deny you goods or services or charge you a different price or rate for goods or services if you make an access, deletion, or do not sell request.
(h) Your Rights. You have the right to make the following requests under the CCPA/CPRA:
(i) Submitting Requests. You can exercise any of your rights under the CCPA/CPRA by emailing us at privacy@pattern.com or via mail at: Pattern Inc. 1441 W. Innovation Way, Suite 500 Lehi, UT 84043
(j) Shine the Light. Under California Civil Code Section 1798.83, if you are a California resident and your business relationship with us is primarily for personal, family or household purposes, you may request certain data regarding our disclosure, if any, of information to third parties for the third parties’ direct marketing purposes. To make such a request, please send an email to privacy@pattern.com with “Request for California Privacy information” in the subject line. You may make such a request up to once per calendar year. If applicable, we will provide to you via email a list of the categories of information disclosed to third parties for their direct marketing purposes during the immediately preceding calendar year, along with the third parties’ names and addresses. Please note that not all personal data sharing is covered by Section 1798.83’s requirements.
Enforcement of your rights under the CCPA/CPRA is overseen by the California Privacy Protection Agency (CPPA). For more information, visit: https://cppa.ca.gov/
If you are a Colorado resident, you have rights under the Colorado Privacy Act (CPA). These include the right to:
You may exercise these rights by contacting us at privacy@pattern.com . If we deny your request, you have the right to appeal our decision by submitting an appeal to the same contact listed above.
We also recognize opt-out signals sent through universal mechanisms, such as the Global Privacy Control, as valid requests under Colorado law
If you are a resident of one of these states, you may have rights under your state’s privacy law. These rights may include the ability to:
You may exercise these rights by contacting us at privacy@pattern.com . If we deny your request, you may have the right to appeal our decision.
We recognize universal opt-out signals, such as the Global Privacy Control, as valid requests to opt out of targeted advertising and sales where required by law.
If you have any questions regarding this Privacy Policy or if you wish to make a request in accordance with paragraphs 17 or 18 above, you may email us at privacy@Pattern.com or contact us by mail addressed to: Pattern Inc. 1441 W. Innovation Way, Suite 500 Lehi, UT 84043 United States of America
Last Updated: July 23, 2025
- Updated States and Countries Privacy Laws
- Added clarity on international transfers and opt-out rights