Privacy Center

Privacy Center

PRIVACY POLICY

Effective Date: August 12, 2022

At Forever 21 we value you, and we strive for transparency in our interactions with you. We seek to make your in-store and online experiences with us fun, efficient and as personalized as you would like. You should be able to find the fashion looks you desire as quickly as possible. If you want to hear from us, you can set that up with us. If you decide you’ve heard enough from us for a while, you can do that too! The information that we obtain from or about you, whether directly or indirectly, helps us understand you better and improve your shopping and other experiences with us.

Above it all, though, our main goals are to gain and maintain your trust, including by addressing any questions or concerns you might have about the privacy and safety of your personal information when it is in our hands. In this regard, we have partnered with OneTrust, a leading technology platform, to allow us to better communicate with you and to respond to your requests more efficiently.

You can click on the boxes below to review each section of our Privacy Policy. Or, if you would like, you can print and read the entire Privacy Policy.

PRIVACY CHOICES AND RIGHTS

The Cookie Preference Centerallows you to view your current cookies preferences, research categories and specific information on the cookies used by Forever 21, and manage your preferences. You can also visit the  Cookies and Other Tracking Technologies  section of our Privacy Policy for more information.

COOKIES PREFERENCE CENTER

You have some choices regarding how we use your personal information, including modifying or deleting your information, or optingout of marketing communications. Depending on your jurisdiction, you may have additional rights in connection with your personal information. To exercise yourprivacy rights (as applicable),please visit our Privacy Rights Requests Center.


PRIVACY RIGHTS REQUESTS CENTER

This Privacy Policy (“Privacy Policy”) describes how F21 OpCo, LLC (“Forever 21,” “we,” “us”, “our”) collects, uses, discloses or otherwise processes your personal information (sometimes referred to as “PI”) in connection with our services, including when you visit our website https://www.forever21.com/ (the “Site”), mobile app (the “App”) (the Site and the App collectively, the “Sites”), visit or make a purchase in our US-based stores (the “Stores”), visit or talk to us on our targeted social media pages (“Social Media”), participate in a sweepstakes or contest (“Prize Promotions”), contact our customer service agents (“Customer Service”), open our ads, receive or open our e-mails or text messages, or otherwise interact or communicate with usrelated to any of these services, or when you interact or use one of our products or services that link to this Privacy Policy (all collectively referred to as the “Services”).

Throughout this Privacy Policy, we refer to the Personal information we collect from you, about you, or which may be associated with you, interchangeably without any geographic or legal distinctions

REGION-SPECIFIC DISCLOSURES

We may choose or be required by law to provide different or additional disclosures relating to the processing of personal information about residents of certain countries, regions or states. Please refer below for disclosures that may be applicable to you:

  • California: If you are a resident of the State of California in the United States, please see the Additional California Privacy Disclosures.
  • Nevada: Chapter 603A of the Nevada Revised Statutes permits a Nevada resident to opt out of future sales of certain covered information that a website operator has collected or will collect about the resident. Note we do not sell your personal information within the meaning of Chapter 603A. However, if you would still like to submit such a request, please visit our Privacy Rights Requests Center
  • European Economic Area, United Kingdom or Switzerland: If you are located in European Economic Area (Member States of the European Union together with Iceland, Norway, and Liechtenstein), United Kingdom, or Switzerland, please see the Additional European Economic Area, United Kingdom, and SwitzerlandPrivacy Disclosures section for additional European-specific privacy disclosures.

From the first moment you interact with us, we collect personal information about you. Sometimes we collect personal information automatically when you interact with our Services and sometimes we collect the personal information directly from you. At times, we may collect personal information about you from other sources and third parties, even before our first interaction.

Information Collected Directly from You.

The information collected directly from you depends upon how you use the Services. For example:

  • Account Creation. When you create an account, we may collect your e-mail address, username and password. If you provide it to us, we may also collect additional information from you, including your name, birthday (day and month), physical address, zip code/post code, phone number (home or mobile), gender and/or user image.
  • Purchases. If you make a purchase on our Sites and your shipping address is in the US, we will collect your order-related information, including your billing and shipping address (“Transaction Info”). We will also ask that you provide your payment information (credit card, debit card, or other payment method) at the point of purchase, but Forever 21 does not itself collect that information. Instead, that information is passed on to our payment processors, or if you use any third party payment services, directly to them.
  • Returns and Exchanges. When you return or exchange products, we may also collect Transaction Info.
  • Store Locations. When you visit or make a purchase in our Stores, we may collect your e-mail address or phone number so that we can send you promotional offers, fashion news or other marketing materials. In addition, if you are in one of our Stores and you apply for a Forever 21-branded credit card, we may collect the PI requested on the application from you and pass it on to the bank issuing the Forever 21-branded credit card. After you make a purchase in our Stores, we may also give you the opportunity to answer a few survey questions about your experience (sometimesin exchange for a discount coupon).
    In compliance with applicable law, we may also collect video images of store visitors through the use of closed circuit television (“CCTV”). CCTV is generally placed inside our stores, but it may also be placed in surrounding locations such as outside of the building where one of our Stores may be located. We use CCTV systems for security purposes, including prevention, establishment or detection of crimes or other disturbances.
  • Marketing Communications. Our Services provides you an opportunity to sign up for our marketing emails by providing your email address. We use your email address to communicate with you about our Services and exciting news, events, or promotional offers. Please see the Control Over Your Information section for additional information about opting out of our marketing communications.
  • SMS Text Messaging Program. If you are a resident of the US and join our promotional text messaging program, we will collect your mobile phone number. Only residents of the US are eligible to participate in promotional text messaging programs.
  • Customer Service, Inquiries, and Feedback. When you contact our Customer Service agents by e-mail, chat, phone, Social Media or via contact forms we provide for that purpose, we may collect any personal informationand other content that you provide to us, which may include, your name, e-mail address, postal address, IP address, geolocation data, and if you contact us via Social Media, your social media handle, your profile photo and any other publicly available information.
  • Prize Promotions.If you participate in a Prize Promotion, we may collect and process your name, social media handle, address, e-mail address, phone number, image, photograph, voice, statements, and/or other information included as part of the Prize Promotion.
  • UPC Code or Voice Search.If you are on our App and search by UPC code or voice search, we will collect the UPC image and the voice command used to complete the search. Note that in order to activate UPC code or voice search, we will need access to your device camera and/or microphone (as applicable), which requires your permission. If you wish to update your permissions, you may do so in the “Settings” options on your device.

Although we often collect the personal information described above directly from you, we may also collect this information through service providers and other third parties that collect it on our behalf, as noted below. We also link the personal information we collect in connection with the Services with other personal information that we collect about you.

Information Collected from Other Sources.

  • Affiliates. We may receive personal information from other companies and brands owned or controlled by Forever 21, and other companies owned by or under common ownership as Forever 21.
  • Referrals. We may receive information about you from third parties, including, without limitation, from your friends or family members who invite you to participate in our referral programs. We use personal information collected in connection with these referral services to communicate with the individual you are referring and to provide you any benefits, incentives and/or rewards you may be eligible for as a result of your referral.
  • Service Providers and Business Partners. We may collect your personal information from our vendor(s) and business partners, such as our data, marketing, personalization, performance, deep linking, or analytics service providers, advertising networks we work with, credit bureaus, fraud prevention service providers, mailing list providers, fulfillment partners, shipping carriers, and/or financial institutions that issue and manage the Forever 21 Credit Card and related rewards program.
  • Single Sign-On Account Login. We may also obtain information about you when you log in using single sign-on (“SSO”) through a third-party social network or authentication service, such as Facebook or Google. We do this by using OAuth authentication, a secure mechanism to give Forever 21 access to your account data without letting us know your password. We will have access to certain information from those third parties in accordance with the authorization procedures determined by those third parties, including, for example, your username, password, name, email address, and profile picture.
  • Social Media.When you interact with us through a social media site or third-party service, such as when you like, follow, or share Forever 21 content on Facebook, Twitter, Instagram or similar sites, we may receive information from the social network, including your profile information, picture, user ID associated with your social media account, and any other information you permit the social network to share with third parties. The data we receive from these third-party sites is dependent upon that third party’s policies and your privacy settings on that third-party site. You should always review and, if necessary, adjust your privacy settings on third-party websites and services before linking or connecting them to our Services. If you make a comment or post other content on our Social Media pages, please be aware that you are providing information directly to the social media network subject to their Privacy Policy and terms of use. As with other third party sites, we have no control over and are not responsible for their privacy practices.

We may combine information we receive from other sources with information we have collected from you.

Information Automatically Collected when You Use our Services.

As is true of most Sites, we collect certain personal information automatically when you use our Services, including:

  • Log File Data, including your internet protocol (IP) address, operating system, device type, browser type, browser id, date/time of visit, and pages visited.
  • Analytics Data, including the electronic path you take to our services, through our services and when exiting our services, as well as your usage and activity on our services, such as the links and object you view, click or otherwise interact with, the length of time you spend on the Services, (also known as “Clickstream Data”).
  • Location Data,, including your general geographic location based on your IP address or more precise location when accessing our online services through a mobile device.

Please note that our systems may also automatically record personal information that you type into our Sites even if you do not choose to submit it.

For more information about our and our third-party partners’ use of cookies and related technologies tocollect information automatically, and any choices you may have in relation to its collection, please visit the Cookies and Other Tracking Technologies section of this Privacy Policy.

We may collect and use personal information for the following purposes:

  • To provide Services to you (including to fulfill your orders).
  • To communicate with you through e-mail, text messaging, push notifications, cloud-enabled voice services or other means and devices regarding your account, your purchases (including, without limitation, order confirmation and providing receipts, delivery or shipping-related information), your returns, or your other uses of our Services, including, for example, to send you product updates and availability of previously out-of-stock items
  • To respond to your inquiries, resolve your problems and concerns, and for other Customer Service purposes, including, without limitation, for business purposes such as record keeping, quality assurance, training purposes and to improve our Customer Service operations.
  • To distinguish you from other users of our Sites.
  • To measure traffic and the effectiveness/success of our ad campaigns and other Services (including those offered through third parties, including our online targeted advertising and offline promotional campaigns).
  • To offer you location customization; for example, our store finder feature may access and use information about your device location (such as based on IP address or GPS, as applicable), or your account information, to suggest appropriate store locations; moreover our content may be personalized based on various information pieces we may have about you to try to provide you with more location-relevant content.
  • To offer you personalized search capability, recommendations, instructions, or help on our Sites and on third party sites.
  • To assist us in advertising our Services on third party websites, mobile apps, and other online services, and provide you with a better, more personalized experience when you visit our Sites or when we send you marketing communications, or when we otherwise display our content to you on our Sites or on third party sites, or when you otherwise interact with any of our Services.
  • To customize your experience when you engage with us and to tailor ads and other content to you while you use our Services or when you navigate across the Internet or interact with us across devices.
  • To better understand how you and others access and use our Services, both on an aggregated and individualized basis, and to conduct further analysis such as identify usage trends and identify target groups, with the goal of continuously improving our Services and enhancing your experience when engaging with us across our Services.
  • If you have asked us to send you marketing e-mails (or, if you are a US resident, marketing text messages) about our current or upcoming promotional offers or new products or other information we think may be of interest to you, to send you such marketing communications.
  • To send you promotional mailers by regular (post) mail.
  • For research, product development, Services enhancement, and analytics purposes
  • To build (and/or have others build on our behalf) custom audiences or look-alike audiences that will help us better tailor our ad campaigns and other outreach communications to you, subject to territorial, platform and other limitations where applicable.
  • To administer and promote our customer loyalty programs, referral programs, and Prize Promotions.
  • To manage Cookies and allow you to manage your Cookie preferences.
  • To administer surveys and questionnaires for market research or member satisfaction purposes.
  • To comply with legal obligations, as part of our general business operations, and for other business administration purposes.
  • To manage the security of the data in our possession and where we believe necessary, to investigate, prevent or take action regarding illegal activities, suspected fraud, cyber security threats, situations involving potential threats to your safety or the safety of any other person or violations of our Terms of Use or this Privacy Policy, or to bring or defend legal claims.
  • To debug or repair errors in our systems.
  • To facilitate arrangements we have with business partners.
  • To permit certain partners we think you may want to hear from, such as the issuer of our Forever 21-branded credit cards, to reach out to you; and
  • For other purposes as permitted by applicable law and not inconsistent with this Privacy Policy or any other express statement we make at the point of collection of the PI.

We may share your personal information in the instances described below. For further information on your choices regarding your information, see Control Over Your Information.

  • Affiliates. We may share personal information with other companies and brands owned or controlled by Forever 21, and other companies owned by or under common ownership as Forever 21, particularly when we collaborate in providing the Services.
  • Service Providers. We may share your personal information with third-party vendors that perform services on our behalf, as needed to carry out their work for us, which may include delivering your orders, providing Customer Service, providing marketing and advertising services to us, conducting security audits, providing accounting or legal services, administering our Prize Promotions, providing web hosting, payment processing services or fraud prevention services, assessing or measuring the performance and functioning of our Sites, providing analytics or providing any other services that we need to operate our business.
  • International Orders Service Providers. If you make a purchase on the Sites and your shipping address is outside the US, your order will be fulfilled by our third party vendor Global-e (“Global-e”). Global-e will collect your information at the checkout page and will fulfil your order on our behalf.
  • Third Party Ad Networks. We may also share personal information with advertising networks or permit these partners to collect information from you directly on our websites to facilitate online advertising, such as search engines and social network advertising providers to serve targeted ads to you or to groups of other users who share similar traits, such as likely commercial interests and demographics, on third-party platforms. For more information, including how to opt out of interest-based advertising, please visit the Third-Party Tracking and Online Advertising section included in the Cookies and Other Tracking Technologies section of this Privacy Policy.
  • Other Users of the Sites. Your username and any information provide or that would link to public-facing pages of our Sites, including, but not limited to, reviews, comments, and textwill be available to, and searchable by, all users of our Sites.
  • Payment Processors. We may use third-party payment processors to process payments made through the Services. Because we use a third-party payment processors, we do not retain any personally identifiable financial information such as credit card numbers. Rather, all such information is provided directly to the payment processor. The payment processor’s use of your personal information is governed by their privacy notice. Please review each processor’s privacy notice to understand how they will manage or otherwise process your personal information, including your financial data.
  • Forever 21 Credit Card Issuing Bank. When you for a Forever 21 credit card through our Sites or at one of our stores, we collect and share with Comenity Capital Bank (our credit card issuing bank), or allow Comenity Capital Bank to collect directly from you, personal information in connection with your application. The personal information collectedand/or shared with Comenity Capital Bank includes your name, your address, your social security number, your income and your driver’s license. This information is processed by Forever 21solely in connection with your credit card application, and is subject to Comenity Capital Bank’s Privacy Policies.
  • Corporate Transactions. We may transfer any information we collect in the event we sell or transfer all or a portion of our business or assets (including any shares in the company) or any portion or combination of our products, services, businesses and/or assets. Should such a transaction occur (whether a divestiture, merger, acquisition, bankruptcy, dissolution, reorganization, liquidation, or similar transaction or proceeding), we will use reasonable efforts to ensure that any transferred information is treated in a manner consistent with this Privacy Policy.
  • Legal Requirements. We may disclose your personal information to comply with the law, a judicial proceeding, court order, or other legal process, such as in response to a court order or a subpoena or if we reasonably believe that such action is necessary to comply with the law and the reasonable requests of law enforcement. We may also disclose your personal information when we believe it is appropriate to do so to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the rights, property or personal safety of any person, violations of our Terms of Use or this Privacy Policy, or as evidence in litigation, arbitration or government agency investigation in which we are involved.
  • With Your Consent. We may disclose your information publicly or with another third party with your prior authorization.
  • Aggregated or Anonymized Format. We may also share your information with others in an aggregated or otherwise anonymized form that does not reasonably identify you directly as an individual.

We, and our third-party partners and service providers, automatically collect certain types of usage information when you use our Services or otherwise engage with us. We typically collect this information through a variety of tracking technologies, including cookies, web beacons, embedded scripts, location-identifying technologies, file information, and similar technology (collectively, “tracking technologies”). To the extent required by applicable law, we ask you to provide your consent to the use of these tracking technologies.

We, and our third-party partners and service providers, use tracking technologies to automatically collect usage and device information, such as:

  • Information about your device and its software, such as your IP address, browser type, Internet service provider, device type/model/manufacturer, operating system, date and time stamp, and a unique ID that allows us to uniquely identify your browser or your account (including, for example, a persistent device identifier or an Ad ID), and other such information. We may also work with third-party partners to employ technologies, including the application of statistical modeling tools, which permit us to recognize and contact you across multiple devices.
  • When you access our sites from a mobile device, we may collect unique identification numbers associated with your device or our mobile application (including, for example, a UDID, Unique ID for Advertisers (“IDFA”), Google AdID, or Windows Advertising ID), mobile carrier, device type, model and manufacturer, mobile device operating system brand and model, phone number, and depending on your mobile device settings, your geographical location data, including GPS coordinates (e.g., latitude and/or longitude) or similar information regarding the location of your mobile device, or we may be able to approximate a device’s location by analyzing other information, like an IP address.
  • Information about the way you access and use our services, for example, the site from which you came and the site to which you are going when you leave our services, the pages you visit, the links you click, whether you open emails or click the links contained in emails, whether you access the services from multiple devices, and other actions you take on the Sites.
  • We may collect analytics data or use third-party analytics tools such as Google Analytics to help us measure traffic and usage trends for the services and to understand more about the demographics of our users. You can learn more about Google’s practices at https://policies.google.com/technologies/partner-sites and view its opt-out options at https://tools.google.com/dlpage/gaoptout.

We may use the data collected through tracking technologies to: (a) remember information so that you will not have to re-enter it during your visit or the next time you visit the site; (b) provide custom, personalized content and information, including targeted content and advertising; (c) identify you across multiple devices; (d) provide and monitor the effectiveness of our services; (e) monitor aggregate metrics such as total number of visitors, traffic, usage, and demographic patterns on our Site; (f) diagnose or fix technology problems; and (g) otherwise to plan for and enhance our Services.

Third-Party Tracking and Online Advertising. We may share, or we may permit third-party online advertising networks, social media companies, and other third-party services, to collect information about your use of our Sites over time so that they may play or display ads that may be relevant to your interests on other websites or apps, or on other devices you may use. Typically, though not always, the information we share is provided through cookies or similar tracking technologies, which recognize the device you are using and collect information, including hashed data, click stream information, browser type, time and date you visited the Site, and other information. This information is used to display targeted ads on or through our Services or on other websites, apps, or services. We or the online advertising networks use this information to make the advertisements you see online more relevant to your interests. We may also display targeted advertising to you through social media platforms, such as Facebook, Twitter, Google and others. These companies have interest-based advertising programs that allow us to direct advertisements to users who have shown interest in our services or our clients’ services while those users are on the social media platform, or to groups of other users who share similar traits, such as likely commercial interests and demographics. These advertisements are governed by the privacy policies of those social media companies that provide them.

Google Analytics and Advertising.We may also utilize certain forms of display advertising and other advanced features through Google Analytics, such as Remarketing with Google Analytics, Google Display Network Impression Reporting, and Google Analytics Demographics and Interest Reporting. These features enable us to use first-party cookies (such as the Google Analytics cookie) and third-party cookies (such as the DoubleClick advertising cookie) or other third-party cookies together to inform, optimize, and display ads based on your past visits to our services. You may control your advertising preferences or opt-out of certain Google advertising products by visiting the Google Ads Preferences Manager, currently available at https://google.com/ads/preferences, or by vising NAI’s online resources at http://www.networkadvertising.org/choices.

Cookies and Other Tracking Technologies Opt-Out.Depending on your browser or mobile device, you may be able to set your browser to delete or notify you of cookies and other tracking technology by actively managing the settings on your browser or mobile device.

If you would prefer not to accept cookies, most browsers will allow you to: (i) change your browser settings to notify you when you receive a cookie, which lets you choose whether or not to accept it; (ii) disable existing cookies; or (iii) set your browser to automatically reject cookies. Please note that doing so may negatively impact your experience using the sites, as some features and services on our sites may not work properly. Depending on your mobile device and operating system, you may not be able to delete or block all cookies. You may also set your e-mail options to prevent the automatic downloading of images that may contain technologies that would allow us to know whether you have accessed our e-mail and performed certain functions with it. You may also be able to limit interest-based advertising through the settings on your mobile device by selecting “limit ad tracking” (iOS) or “opt-out of interest-based ads” (Android).

To learn more about interest-based advertising and how you may be able to opt-out of some of this advertising, you may wish to visit the Digital Advertising Alliance’s (DAA) resources and/or the Network Advertising Initiative’s (NAI) online resources, at www.aboutads.info/choices or http://www.networkadvertising.org/choices/ and you can opt-out of receiving some interest-based advertisements on mobile apps by visiting http://www.aboutads.info/appchoices. You may also be able to limit interest-based advertising through the settings menu on your mobile device by selecting “limit ad tracking” (iOS) or “opt-out of interest-based ads” (Android). You may also be able to opt-out of some — but not all — interest-based advertising served by mobile ad networks by visiting http://youradchoices.com/appchoices and downloading the mobile AppChoices app.

Please note that when you opt out of receiving interest-based advertisements through this mechanism, this does not mean you will no longer see advertisements from us or on our online services. It means that the online ads that you do see from DAA program participants should not be based on your interests. We are not responsible for the effectiveness of, or compliance with, any third-parties’ opt-out options or programs or the accuracy of their statements regarding their programs. In addition, third parties may still use cookies to collect information about your use of our online services, including for analytics and fraud prevention as well as any other purpose permitted under the DAA’s Principles. For more information on the cookies we use, and your choices regarding cookies, please visit the Forever 21 Cookies Preference Center.

  • Modifying or Deleting Your Account Information. You can review, modify, or delete your account or profile information. For instance, you may modify your account information from within the settings menu of your Forever 21 account profile. Not all personal information is maintained in a format that you can access or change. If you would like to request access to, or correction or deletion of personal information, please visit our Privacy Rights Request Center. We will review your request and may require you to provide additional information to identify yourself, but we do not guarantee that we will be able to satisfy your request in all circumstances.
  • Access to Your Device Information. You may control Forever 21’s access to your device through your “Settings” app on your device. For instance, you can withdraw permission for Forever 21 to access your contacts, camera, microphone, or its integration with other permitted applications.
  • Marketing Communications Preferences.You can stop receiving promotional text message alerts from us by following the “unsubscribe” instructions provided in such communications or by changing your preferences within your Forever 21 account profile. You may not opt-out of service-related communications (e.g., account verification, transactional communications, changes/updates to features of Forever 21 Services, technical and security notices). You may also opt out of marketing communications by submitting a request through our Privacy Rights Request Center.
  • SMS Text Messages Preferences. If you opted-in to our SMS text messaging program, you may opt-out of receiving promotional text messages at any time. To unsubscribe from promotional SMS texts, please reply “STOP” to one of our marketing SMS texts. You may also be able to change your SMS text preferences within your Forever 21 account profile. Note that if you unsubscribe from receiving promotional text messages, we may still send you transactional text messages about your account or any services you have requested or receive from us (e.g., account verification, technical and security notices, responses to your communications, purchase-related communications).For more information, please see our Terms of Use. You may also opt out of marketing SMS text messages by submitting a request through our Privacy Rights Request Center.
  • Push Notifications Preferences.You can stop receiving push notifications from us by changing your preferences in the iOS or Android notifications settings menu.

Our Services are not intended for children under 16 and we do not knowingly solicit or collect personal information from children under the age of 16. In the event that we learn that we have inadvertently collected personal information from a child under16, we will delete that information as soon as possible. If you believe that we might have any information from a child under 16, please contact us using the contact details set out at the end of this Privacy Policy.

Data Retention. We will retain your personal information only for as long as necessary for the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. We store data on servers in the U.S. or any other country in which Forever 21 or its affiliates, subsidiaries, agents or contractors maintain facilities. If you are located in the European Union or other regions with laws governing data collection and use that may differ from U.S. law, please note that your personal information may be transferred to a country and jurisdiction that does not have the same data protection laws as your jurisdiction.

Data Security.We care about the security of your personal information and employ commercially reasonable physical, administrative, and technological safeguards designed to preserve the integrity and security of all information collected through our Services. However, no security system is impenetrable, and we cannot guarantee the 100% security of our systems. In the event that any information under our control is compromised as a result of a breach of security, we will take reasonable steps to investigate the situation and, where appropriate, notify those individuals whose information may have been compromised and take other steps, in accordance with applicable law and regulations.

For your convenience, our Services may provide links to third-party websites or services that we do not own or operate. We are not responsible for the practices employed by any websites or services linked to or from the services, including the information or content contained within them. Your browsing and interaction on any other website or service are subject to the applicable third party’s rules and policies, not ours. If you are using a third-party website or service, you do so at your own risk.

We may change or update this Privacy Policy from time to time to reflect new practices, better inform you, or to comply with changes in applicable laws.  Please check back periodically to ensure you are familiar with all of our current practices.  When we change the Privacy Policy in a material manner, we will notify individuals by email to their registered email address, by prominent posting on our Services, or through other appropriate communication channels. All changes shall be effective from the date of publication unless otherwise provided.

If you have any questions about this Privacy Policy or the way we process your personal information or if you want to make a complaint or exercise your rights, please contact us at:

Forever 21 (F21 OpCo, LLC)

ATTN: Privacy

3880 North Mission Road

Los Angeles, CA 90031

1-888-494-3837

[email protected]

These Additional California Privacy Disclosures (the “CA Disclosures”) supplement the information contained in our Privacy Policy and apply solely to individual residents of the State of California (“consumers” or “you”).

These CA Disclosures provide additional information about how we collect, use, disclose and otherwise process personal information of individual residents of the State of California, either online or offline, within the scope of the California Consumer Privacy Act of 2018 (“CCPA”). Unless otherwise expressly stated, all terms in these CA Disclosures have the same meaning as defined in our Privacy Policy or as otherwise defined in the CCPA.

For purposes of these CA Disclosures, “personal information” has the meaning provided by the California Consumer Privacy Act (the “CCPA”) and does not include information that is publicly available, that is deidentified or aggregated such that it is not capable of being associated with us, or that is excluded from the CCPA’s scope. This section does not apply to information relating to our employees, contractors, and other personnel.

Categories of Personal Information We Collect, Use and Disclose

We collect personal information from and about you for a variety of purposes. To learn more about the types of personal information we collect, the purposes for which we use this information, and how we disclose it, please refer to the Information We Collect, How We Use Your Information, and Disclosure of Your Information sections of our Privacy Policy . In the last 12 months from the Effective Date, we have collected, used, and disclosed the following categories of personal information for a business purpose:

Categories of Personal Information Sources of Collection Purpose(s) for Collection Disclosure for a Business Purpose
1. Identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, IP address, e-mail address, account name, government ID or other similar identifiers. From the consumer, by us and from the consumer’s browser, device, e-mail and/or social media account, other individuals, such as the consumer’s friends or family, business partners (non-vendors), and vendors. Managing Cookies, sending marketing e-mails and text messages, conducting other advertising and promotional campaigns, data security, debugging, internal research and development, processing and managing customer interactions and transactions, facilitating arrangements we have with business partners, performing services requested by the consumer, and research and quality assurance. Service providers, third party partners, Corporate Transaction recipients, Affiliates, and as directed by the consumer or as required by applicable law.
2. Personal records, including signature, physical characteristics or description, written statements, telephone number, address, credit card number, or other financial information. From the consumer, by us and from the consumer’s e-mail and/or social media account, other individuals, such as the consumer’s friends or family, business partners (non-vendors), and vendors. Data security, debugging, processing and managing consumer interactions and transactions, performing services requested by the consumer, research and quality assurance. Service providers, third party partners, Corporate Transaction recipients, Affiliates, and as directed by the consumer or as required by applicable law.
3. Characteristics such as gender and age. From the consumer and from vendors Providing more relevant service to consumers Service providers, Corporate Transaction recipients, Affiliates, and as directed by the Consumer or as required by applicable law.
4. Commercial information, including records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. From the consumer, by us from the consumer’s browser, device, e-mail and/or social media account, other individuals, such as the consumer’s friends or family, business partners (non-vendors), and vendors. Data security, debugging, processing and managing consumer interactions and transactions, performing services requested by the consumer, advertising, marketing, research and quality assurance. Service providers, third party partners, Corporate Transaction recipients, Affiliates, and as directed by the consumer or as required by applicable law.
6. Internet or other electronic network activity information, including, but not limited to, browsing history, browsing time, search history, and information regarding a consumer’s interaction with an Internet Web site, application, or advertisement. From the consumer, by us and from the consumer’s browser, device, e-mail and/or social media account, and our vendors. Debugging, processing and managing consumer interactions and transactions, performing services requested by the consumer, advertising, quality assurance and research and analytics. Service providers, third party partners, Corporate Transaction recipients, Affiliates, and as directed by the consumer or as required by applicable law.
7. Geolocation data, including, but not limited to, precise physical location and movement patterns From the consumer, by us and from the consumer’s browser, device, e-mail and/or social media account, and otherwise directly from consumers Managing Cookies, processing and managing consumer interactions and transactions, performing services requested by the consumer, targeted advertising, quality assurance, fraud prevention and security, and research and analytics. Service providers, third party partners, Corporate Transaction recipients, Affiliates, and as directed by the consumer or as required by applicable law.
8. Audio, electronic, visual, thermal, olfactory, or similar information, including, but not limited to, image, photograph, and voice. Directly from consumers Processing and managing consumer interactions and transactions, performing services requested by the consumer, quality assurance, and fraud prevention and security. Service providers, Corporate Transaction recipients, and as directed by the consumer or as required by applicable law.
11. Inferences drawn from any of the information identified above to create a profile about a consumer reflecting the consumer’s preferences, and behavior. Consumer’s browser, device, e-mail and/or social media account, and otherwise directly from consumers or as created by us or our vendors. Processing and managing customer interactions and transactions, performing services requested by the customer, and quality assurance and security and fraud prevention. Service providers, Corporate Transaction recipients, Affiliates, and as directed by the consumer or as required by applicable law.

Your California Privacy Rights

As a California resident, you may be able to exercise the following rights in relation to the Personal Information about you that we have collected (subject to certain limitations at law):

The Right to Know

You have the right to request any or all of the following information relating to the personal information we have collected about you or disclosed in the last 12 months, upon verification of your identity:

  • The specific pieces of personal information we have collected about you;
  • The categories of personal information we have collected about you;
  • The categories of sources of the personal information we have collected about you;
  • The categories of personal information that we have disclosed about you to third parties for a business purpose, and the categories of recipients to whom this information was disclosed;
  • The categories of personal information we have sold about you (if any), and the categories of third parties to whom this information was sold; and
  • The business or commercial purposes for collecting or, if applicable, selling personal information about you.
The Right to Request Deletion You have the right to request the deletion of personal information that we have collected from you, subject to certain exceptions.
The Right to Opt Out of Personal Information Sales You have the right to direct us not to sell personal information we have collected about you to third parties now or in the future. If you are under the age of 16, you have the right to opt in, or to have a parent or guardian opt in on your behalf, to such sales.
The Right to Non-Discrimination You have the right not to receive discriminatory treatment for exercising any of the rights described above.
You have the right not to receive discriminatory treatment for exercising any of the rights described above.
“Shine the Light” California residents that have an established business relationship with us have rights to know how their information is disclosed to third parties for their direct marketing purposes under California’s “Shine the Light” law (Civ. Code § 1798.83).

Submitting Requests

To Exercise Your Right to Know or Right to Deletion

To exercise your right to know and/or right to deletion, please submit a request by:

Before processing your request, we will need to verify your identity and confirm you are a resident of the State of California. In order to verify your identity, we will generally either require the successful authentication of your Forever 21 account, or the matching of sufficient information you provide us to the information we maintain about you in our systems. This process may require us to request additional personal information from you, including, but not limited to, your emailaddress, address, order number, and/or date of last interaction with customer service.

In certain circumstances, we may decline a request to exercise the right to know and/or right to deletion, particularly where we are unable to verify your identity.

To Exercise Your Right to Opt-Out of Personal Information Sales

Unless you have exercised your Right to Opt-Out of Personal Information Sales, we may sell personal information to third parties for monetary or other valuable consideration. The third parties to whom we sell personal information may use such information for their own purposes in accordance with their own privacy statements, which may include reselling this information to additional third parties.

You do not need to create an account with us to exercise your Right to Opt-Out of Personal Information Sales. However, we may ask you to provide additional personal information so that we can properly identify you in our dataset and to track compliance with your opt out request. This information may include, but not be limited to, your email, address, order number, and/or date of last interaction with customer service. We will only use personal information provided in an opt out request to review and comply with the request. If you chose not to provide this information, we may only be able to process your request to the extent we are able to identify you in our data systems.

Once you make an opt-out request, you may change your mind and opt- in to personal information sales at any time by contacting us at [email protected].

  • Cookies Opt-Out (Do Not Sell My Personal Information): To exercise your right to opt-out as it relates to the use of cookies and other tracking technologies for analytics and targeted ads, please visit our Do Not Sell My Personal Information Page
  • Opt-Out of Selling or Sharing of Personal Information: To exercise your opt-out right as it relates to the selling or sharing of your personal information (such as your name, e-mail address, postal address) with third parties for their direct marketing or other commercial purposes, please visit our Privacy Rights Requests Center.

Authorized Agents

In certain circumstances, you are permitted to use an authorized agent (as that term is defined by the CCPA) to submit requests on your behalf through the designated methods set forth in these Disclosures where we can verify the authorized agent’s authority to act on your behalf by:

ⅰ. For requests to know or delete personal information:

a. receiving a power of attorney valid under the laws of California from you or your authorized agent; or

b. receiving sufficient evidence from the authorized agent to show that you have provided the agent a signed permission to submit the request; and

1. verified your own identity directly with us pursuant to the instructions set forth in these CA Disclosures; and

2. directly confirmed with us that you provided the authorized agent permission to submit the request on your behalf.

Financial Incentives

We may provide financial incentives to consumers who allow us to collect and retain personal information, such as identifiers (e.g., name or email address) and commercial information (e.g., purchase history). These incentives may result in differences in our prices or services offered to consumers and may include a lower price for goods and services (e.g., discounts and other promotions). For example, the financial incentives we may provide include discounts or promo codes for:

  • certain existing customers (e.g., users of our App, recipients of physical coupons);
  • new customers;
  • for verified accountholders at partner businesses (e.g., UniDAYS);
  • customers who open a Forever21 credit card; and
  • customers who sign up to receive promotional communications (e.g., SMS/text messages or e-mails).

The material aspects of any financial incentive will be explained and described in its program terms or in the details of each incentive offer. For additional information please see the Special Offers page on our Site. 

Please note that participating in any financial incentive program is entirely optional and participants may withdraw from the program at any time. To opt out of the program and forgo any ongoing incentives, please follow the instructions in the program’s terms and conditions or contact us using the contact information at the end of these disclosures.

Each financial incentive or price or service difference related to the collection and use of personal information is based upon our reasonable, good faith determination of the estimated value of such information to our business, taking into consideration the value of the offer itself and the anticipated revenue generation that may be realized by rewarding brand loyalty or repeat purchases.

While we are primarily based in the United States, Forever 21 maintains operations in Europe and may direct our Services to individuals located in the EEA, United Kingdom, and Switzerland, including through our Site https://www.forever21.com/ (collectively, our “European Services”). The following disclosures (“European Privacy Disclosures”) apply to our processing of personal data in connection with our European Services.

F21 OpCo, LLC is the data controller responsible for the processing of personal data in connection with our European Services. This means that we determine and are responsible for how your personal data is used.

Personal Data: Personal Data: When we use the term “personal data” in this section, we mean information relating to an identified or identifiable natural person.

Legal Bases for Processing

In connection with our European Services, we only collect, use, share or otherwise process your PI by obtaining your consent or by using other legal bases for processing your PI as set forth in more detail below:

  • Consent. We may collect, use, share or otherwise process your PI by obtaining your consent. You are free to deny your consent and the denial will have no negative consequences for you. Your consent will be limited to our (or our vendors’) processing of your PI for the purposes for which we collect it, which purposes we can adequately demonstrate through notice. For example, we may obtain your consent at the point in time when you set up an account with us, or when you provide your consent for the use of Cookies, or when you sign up to receive marketing e-mails from us. If you sign up for our marketing e-mails, we will use your PI to send you e-mails containing promotional materials relating to our Services. You can always withdraw your consent, as we explain in the Control Over Your Information section of our Privacy Policy.
  • Contract. If you make a purchase throughour Sites or if you contact us to request any other service, we will use your information to fulfill your order or otherwise provide you the features and functionality of the services you requested.
  • Legitimate Interests. The use of your personal data may also be necessary for our own legitimate business interests. Our use of your personal data to perform a legitimate interest, takes into consideration your privacy rights, and the relative necessity we have to use your personal data to fulfill that interest. For example, we process your personal databased on the legitimate interests legal basis to analyze and improve the quality of our Services, such as providing you with Customer Service, and to understand you as a customer. This enables us to assess what may interest you, to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising. In addition, based on your use of our Services and the products you purchased, we may target you with ads or other marketing materials that are customized to your personal preferences and experiences, or conduct other direct marketing initiatives (to the extent we are permitted to process such personal data on the basis of legitimate interest; otherwise we will ask for your consent). We may also use your personal datafor our other legitimate interests, such as to operate and expand our business activities, to administer our Services, to evaluate and review our business performance, to facilitate social sharing functionality, to generate aggregated statistics about the users of our products and Services, to facilitate our business operations, to operate company policies and procedures, to conduct fraud monitoring and prevention, to identify cyber threats, to enable us to enter into corporate transactions, or for other legitimate business purposes as permitted by applicable law. If necessary, we may also use your corporate transactions, to pursue or defend ourselves against legal claims.
  • Legal Obligation or Claim.We may process your personal data when it is necessary to comply with a relevant legal or regulatory obligation that we have, such as to maintain appropriate business records according to tax and commercial law, to comply with lawful requests by public authorities, to comply with applicable laws and regulations, to respond to a legal claim, or as otherwise required by law.

How Long Will We Store Your Personal Data

We will usually store the personal data we collect about you for no longer than necessary for the purposes set out in the How We Use Your Information section of our Privacy Policy , in accordance with our legal obligations and legitimate business interests.

The criteria used to determine the period for which personal data about you will be retained varies depending on the legal basis under which we process the personal data:

  • Legitimate Interests. Where we are processing personal information based on our legitimate interests, we generally will retain such information for a reasonable period of time based on the particular interest, taking into account the fundamental interests and the rights and freedoms of data subjects.
  • Consent. Where we are processing personal information based on your consent, we generally will retain the information until you withdraw your consent, or otherwise for the period of time necessary to fulfil the underlying agreement with you or provide you with the applicable service for which we process that personal information.
  • Contract. Where we are processing personal information based on contract, we generally will retain the information for the duration of the contract plus some additional limited period of time that is necessary to comply with law or that represents the statute of limitations for legal claims that could arise from the contractual relationship.
  • Legal Obligation. Where we are processing personal information based on a legal obligation, we generally will retain the information for the period of time necessary to fulfil the legal obligation.
  • Legal Claim. We may need to apply a “legal hold” that retains information beyond our typical retention period where we face threat of legal claim. In that case, we will retain the information until the hold is removed, which typically means the claim or threat of claim has been resolved.

In all cases, in addition to the purposes and legal bases, we consider the amount, nature and sensitivity of the personal information, as well as the potential risk of harm from unauthorized use or disclosure of your personal information.

Recipients of Personal Information

In addition to the recipients listed in the Disclosure of Your Information section of our Privacy Policy, we may also share your personal information with the following, as required in accordance with the uses set out in the How We Use Your Information section of our Privacy Policy:

  • Service Providers and Advisors: we may share your personal information with third party vendors and other service providers that perform services for us or on our behalf, which may include providing professional services, such as legal and accounting services, mailing, email or chat services, fraud prevention, web hosting, or providing analytic services.
  • Affiliates: We may share personal information with other companies and brands owned or controlled by Forever 21, and other companies owned by or under common ownership as Forever 21, particularly when we collaborate in providing the Services.
  • Purchasers and Third Parties in Connection with a Business Transaction:your personal information may be disclosed to third parties in connection with a transaction, such as a merger, sale of assets or shares, reorganization, financing, change of control or acquisition of all or a portion of our business.
  • Law Enforcement, Regulators and Other Parties for Legal Reasons:we may share your personal information with third parties as required by law or if we reasonably believe that such action is necessary to (ⅰ) comply with the law and the reasonable requests of law enforcement; (ⅰ) detect and investigate illegal activities and breaches of agreements, including our Terms of Use ; and/or (ⅲ) exercise or protect the rights, property, or personal safety of Forever 21, its users or others.

Marketing and Advertising

From time to time we may contact you with information about our services, including sending you marketing messages and asking for your feedback on our services. Most marketing messages we send will be by email. For some marketing messages, we may use personal information we collect about you to help us determine the most relevant marketing information to share with you.

We will only send you marketing messages if you have given us your consent to do so. You can withdraw your consent at a later date by clicking on the “unsubscribe” link at the bottom of our marketing emails, by updating your preferences via your account on the Site, or by submitting a request through our Privacy Rights Requests Center.

Storing and Transferring your Personal Data

  • Security.We implement appropriate technical and organizational measures to protect your personal data against accidental or unlawful destruction, loss, change or damage. All personal data we collect will be stored by our cloud hosting provider on secure servers. We will never send you unsolicited emails or contact you by phone requesting credit or debit card information or national identification numbers.
  • International Transfers of your Personal Data. The personal data we collect may be transferred to and stored in countries outside of the jurisdiction you are in where we and our third party service providers have operations. If you are located in the EEA, United Kingdom or Switzerland, your personal data may be processed outside of those regions, including in the United States.

    In the event of such a transfer, we ensure that: (i) the personal data is transferred to countries recognized as offering an equivalent level of protection; or (ii) the transfer is made pursuant to appropriate safeguards, such as standard contractual clauses adopted by the European Commission.

If you wish to enquire further about these safeguards used, please contact us using the details set out in the Contact Us section of our Privacy Policy.

Profiling

We may analyze personal data we have collected about you to create a profile of your interests and send product updates. We may also use personal data about you to detect and reduce fraud.

Your Rights in Respect of Your Personal Data

In accordance with applicable privacy law, you have the following rights in respect of your personal data that we hold:

  • Right of access. have the right to obtain:

    ─ confirmation of whether, and where, we are processing your personal information;

    ─ information about the categories of personal information we are processing, the purposes for which we process your personal information and information as to how we determine applicable retention periods;

    ─ information about the categories of recipients with whom we may share your personal information; and

    ─ a copy of the personal information we hold about you.

  • Right of portability. You have the right, in certain circumstances, to receive a copy of the personal information you have provided to us in a structured, commonly used, machine-readable format that supports re-use, or to request the transfer of your personal data to another person.
  • Right to rectification. You have the right to obtain rectification of any inaccurate or incomplete personal information we hold about you without undue delay.
  • Right to erasure. You have the right, in some circumstances, to require us to erase your personal information without undue delay if the continued processing of that personal information is not justified.
  • Right to restriction. You have the right, in some circumstances, to require us to limit the purposes for which we process your personal information if the continued processing of the personal information in this way is not justified, such as where the accuracy of the personal information is contested by you.
  • Right to withdraw consent. There are certain circumstances where we require your consent to process your personal information. In these instances, and if you have provided consent, you have the right to withdraw your consent. If you withdraw your consent, this will not affect the lawfulness of our use of your personal information before your withdrawal.

You have the right to object to any processing based on our legitimate interests where there are grounds relating to your particular situation. There may be compelling reasons for continuing to process your personal information, and we will assess and inform you if that is the case. You can object to marketing activities for any reason.

You also have the right to lodge a complaint to your local data protection authority. If you are based in the European Union, information about how to contact your local data protection authority is available here. If you are based in the UK or Switzerland, your local data protection authorities are the UK Information Commissioner's Office (https://ico.org.uk/global/contact-us/) and the Swiss Federal Data Protection and Information Commissioner (https://www.edoeb.admin.ch/edoeb/en/home/the-fdpic/contact/address.html).

If you wish to exercise one of these rights, please contact us using the contact details at the end of these European Privacy Disclosures.

Due to the confidential nature of data processing we may ask you to provide proof of identity when exercising the above rights. This can be done by providing a scanned copy of a valid identity document or a signed photocopy of a valid identity document.

Tracking Technologies In Our Emails

Our emails may contain tracking pixels that identify if and when you have opened an email that we have sent you, how many times you have read it and whether you have clicked on any links in that email. This helps us measure the effectiveness of our marketing email campaigns, make the emails we send to you more relevant to your interests and to understand if you have opened and read any important administrative emails we might send you.

Most popular email clients will allow you to block these pixels by disabling certain external images in emails. You can do this through the settings on your email client – these generally give you the option of choosing whether emails will display "remote images", "remote content" or "images" by default.

Some browsers also give you the option of downloading and installing extensions that block pixels and other tracking technologies.