Privacy Policy

Effective date: Dec. 15, 2025
Data controller:
Mark Julien Hahn / Softdrive Foundry
Görlitzer Straße 52, 10997 Berlin, Germany
Email: privacy@softdrivefoundry.com

1. What data we collect

Personal data you provide:

• Name, email, billing/shipping address, and payment information for purchases.
• Account information if you register on our website.
• Newsletter or email communication signups.

Data collected automatically:

• IP address and browser/device information.
• Pages you visit, clicks, and other interaction data.
• Cookies for session, cart, and preferences.
• Analytics data collected via Google Analytics.

Data from third parties:

• Payment data processed by Stripe (we do not store full credit card numbers).
• Email delivery handled by Resend for newsletters or order confirmations.

2. Purpose of data processing

We use your data to:

• Process orders and deliver font licenses.
• Send order confirmations and customer support communications.
• Send newsletters or transactional emails via Resend.
• Improve our website via analytics.
• Comply with legal obligations (taxes, accounting).

3. Legal basis for processing

• Contract fulfillment: Payment processing and license delivery (Art. 6(1)(b) GDPR).
• Consent: Newsletter and non-essential cookies (Art. 6(1)(a) GDPR).
• Legal obligation: Tax and accounting requirements (Art. 6(1)(c) GDPR).
• Legitimate interest: Analytics and website optimization (Art. 6(1)(f) GDPR).

4. Sharing data with third parties

We may share your data with:

• Stripe – for payment processing.
• Resend – for sending newsletters or transactional emails.
• Vercel / hosting provider – for secure hosting.
• Google Analytics – for website usage analysis.

We never sell your personal data to third parties.

5. Cookies and tracking

We use cookies to:

• Enable shopping cart functionality and login sessions.
• Store user preferences.
• Track website performance (Google Analytics) – only anonymized IP addresses.

Note: Users can disable cookies in their browser, but this may affect functionality.

6. Data retention

• Order & invoice data: at least 10 years for tax purposes.
• Email subscription data: until unsubscribed.
• Analytics data: anonymized after a maximum of 26 months.

7. Your rights

You have the right to:

• Access your personal data (Art. 15 GDPR)
• Rectify inaccurate data (Art. 16 GDPR)
• Request deletion (“right to be forgotten”) (Art. 17 GDPR)
• Restrict processing (Art. 18 GDPR)
• Data portability (Art. 20 GDPR)
• Withdraw consent at any time
• Lodge a complaint with a supervisory authority

Contact for privacy requests:
privacy@softdrivefoundry.com

8. Security measures

• HTTPS for secure communication
• Tokenized payments via Stripe
• Secure hosting on Vercel