Privacy Policy

This policy describes how ZN Fashions Inc. (“we,” “us”) handles personal information collected through our website, vendor portal, and event-booking services. Reach the team at booking@znfashions.com for any privacy question.

When you register as a vendor or sign up for our newsletter, we collect:

• Identity — first name, last name, business name, email address.
• Contact — phone number, business address, city, state, country.
• Account credentials — a password, stored only as a salted bcrypt hash. We never see or store your plain-text password.
• Booking history — events you've requested or booked, booth selection, and payment confirmation status.
• Payment data — handled by Square. We receive a confirmation token but never see your full card number, CVV, or banking details.
• Newsletter interest — if you opt into our city-specific event newsletter, your email and chosen city are stored in Mailchimp.

We don't use third-party analytics or advertising trackers on this site. We don't set cookies for marketing or cross-site tracking — only a single, encrypted session cookie for keeping you signed in to the vendor portal.

We use what we collect to:

• create and operate your vendor account
• process booth requests, payments, and confirmations
• send transactional email about your bookings (submission, approval, rejection, cancellation, password reset)
• send the city newsletter you opted into, if applicable
• comply with legal obligations and prevent fraud or abuse

We do not sell your information. We share it only with the service providers we need to operate the platform, and only the data each one needs:

• Square — for card payment processing.
• Microsoft (Outlook365) — for sending transactional booking emails.
• Mailchimp — for the city newsletter, only if you opted in.
• Vercel and Neon — our hosting and database providers.
• Law enforcement — if required by valid legal process, and only the minimum data requested.

You can, at any time:

• view and edit your profile in the vendor portal
• request deletion of your account and associated data by emailing booking@znfashions.com
• unsubscribe from the city newsletter via the footer of any newsletter email
• ask for a copy of the personal data we hold about you

We respond to verified requests within thirty (30) days. Some data — payment records, transaction logs — may be retained for legal or accounting reasons even after account deletion.

All traffic is served over HTTPS. Passwords are stored as one-way bcrypt hashes; even ZN Fashions staff cannot recover a plain-text password. The session cookie is httpOnly and encrypted. Database access is restricted by network policy. No system is perfectly secure, but we apply standard practices and review regularly.

The Services aren't directed to anyone under 18. We don't knowingly collect information from minors. If you believe we have, contact us and we'll delete it.

We may update this Privacy Policy. The “Effective” date at the top reflects the current version. Material changes will be announced on the homepage or via email to registered vendors.

Questions, requests, or complaints about your data: booking@znfashions.com.