Privacy Policy

Privacy Policy for notyourtypefoundry

At notyourtypefoundry, located in Rotterdam, The Netherlands, we take your privacy seriously. We are committed to handling your personal data in accordance with the General Data Protection Regulation (GDPR) and the ePrivacy Directive. This Privacy Policy outlines what information we collect, why, how we use it, and your rights under EU law.

Last updated: 24.08.2025
Version 1.1

Privacy Policy for notyourtypefoundry

At notyourtypefoundry, located in Rotterdam, The Netherlands, we take your privacy seriously. We are committed to handling your personal data in accordance with the General Data Protection Regulation (GDPR) and the ePrivacy Directive. This Privacy Policy outlines what information we collect, why, how we use it, and your rights under EU law.

1. Who We Are and How to Contact Us

The entity responsible for deciding how and why your personal data is processed is:

notyourtypefoundry
Rotterdam, The Netherlands
info@notyourtype.nl

If you have questions about this policy or your data, please contact us at the above email.

2. Information We Collect
We only process minimal data necessary to deliver a safe and efficient service:
- Stripe Checkout: Stripe handles your payment securely. Collected data may include your name, email address, billing details, and VAT number (where applicable). Payment credentials are managed exclusively by Stripe and are not stored on our servers.
- Google Analytics: We collect anonymous and aggregated data (e.g., page views, session duration). This information helps us improve our site’s performance and usability. We do not use it for advertising, profiling, or remarketing.

3. Legal Basis for Processing
Under GDPR, we rely on the following lawful grounds:
- Contractual necessity: To process and fulfill your orders.
- Legitimate interests: To maintain and enhance website functionality and security.
- Legal obligations: To comply with EU tax, VAT, and accounting regulations.

4. Cookies
We use cookies sparingly and in compliance with ePrivacy Directive requirements:
- Strictly necessary cookies: These are essential for secure payment processing through Stripe and for functioning core website features.
- Analytics cookies: Google Analytics uses cookies solely to collect anonymized usage statistics. These are deployed only with your explicit consent.
You may manage or disable cookies via your browser settings. Disabling analytics cookies will not disrupt your experience when browsing or making purchases.

5. What We Do Not Do
- We do not collect personal data beyond what is necessary for transactions and analytics.
- We do not employ advertising, profiling, or third-party tracking cookies.
- We do not share, sell, or trade your personal data for marketing purposes—ever.

6. Third-Party Service Providers
Your data may be processed by trusted third parties, solely for the purposes outlined here:
- Stripe – https://stripe.com/privacy
- Google Analytics – https://policies.google.com/privacy

7. Data Retention
We retain your personal data only as long as necessary to fulfill contractual or legal obligations, such as VAT or accounting records under Dutch law.

8. Your Rights Under GDPR
Under GDPR, you have the right to access, correct, or delete your personal data, to limit or object to how it is processed, and to request a copy of your data in a commonly used format.

9. Changes to This Policy
This policy may change occasionally to reflect updates in practices or legal requirements. Please revisit this page to stay informed. We will always date the latest version clearly for your reference.