This Privacy Policy explains how we collect, use, share, and protect personal data when you visit our website, create an account, purchase fonts, download products, or contact support. We provide this information to meet transparency requirements under privacy laws such as the EU GDPR.
1) What personal data we collect
A. Data you provide to us
- Account data: name, email, password (stored in hashed form), account preferences.
- Order and delivery data: billing name, billing address, VAT/tax ID (if provided), order history, invoices/receipts, download history.
- Support communications: messages you send, attachments you upload, and our replies.
- Marketing preferences: newsletter opt-in/opt-out and communication settings.
B. Data collected automatically
- Device and usage data: IP address, device type, browser, pages viewed, referral URL, approximate location (derived from IP), timestamps.
- Cookies and similar technologies: identifiers used for login sessions, cart functionality, analytics, and (if enabled) advertising/retargeting. Cookie rules in the EU generally require consent for non-essential cookies.
C. Payment data
We use Stripe as a third-party payment processor to process payments. We do not store full card numbers. We may receive limited payment-related details (e.g., payment status, last four digits, transaction ID) from the processor.
2) Why we use your data (purposes)
We use personal data to:
- Provide the service: create accounts, process orders, deliver font downloads, provide invoices/receipts.
- Customer support: respond to requests and troubleshoot download or licensing issues.
- Security and fraud prevention: protect accounts, prevent abuse, detect suspicious transactions.
- Improve the website: analytics, debugging, performance monitoring.
- Marketing (optional): send newsletters or product updates if you opt in.
- Legal and compliance: maintain records, handle tax/VAT obligations, resolve disputes, enforce terms.
3) Legal bases (EEA/UK users)
Where GDPR/UK GDPR applies, we process personal data under these legal bases:
- Contract: to provide purchased fonts/digital downloads and customer accounts.
- Legal obligation: tax, accounting, and regulatory requirements.
- Legitimate interests: security, fraud prevention, service improvement, and limited analytics.
- Consent: for marketing emails and non-essential cookies where required. Consent can be withdrawn at any time.
4) Cookies and tracking
We use cookies and similar technologies. Depending on your location, we may show a cookie banner and request consent for non-essential cookies.
Types of cookies we use:
- Strictly necessary: login/session, cart, checkout, security.
- Preferences: language, UI settings.
- Analytics (optional): to understand site usage.
- Marketing (optional): retargeting/ads measurement.
5) Who we share data with
We may share personal data with trusted service providers ("processors") only as needed:
- Payment processors: Stripe
- Digital delivery/hosting/CDN
- Email service provider
- Analytics provider: e.g., Google Analytics
- Customer support tools
- Accounting/tax tools
We do not sell personal information in the traditional sense.
6) International transfers
If your data is transferred outside the EEA/UK (e.g., to service providers in the U.S.), we use appropriate safeguards such as Standard Contractual Clauses or other lawful transfer mechanisms.
7) Data retention
- Orders/invoices: typically retained for 5 years to comply with tax/accounting laws.
- Account data: retained while your account is active; deleted or anonymized after inactivity of 24 months.
- Support communications: retained for 12 months after closure.
8) Security
We use administrative, technical, and organizational measures designed to protect personal data (e.g., encryption in transit, access controls, monitoring). No system is 100% secure, but we work to prevent unauthorized access, loss, misuse, or alteration.
9) Your rights (EEA/UK)
Depending on your location, you may have rights to:
- Access your personal data
- Correct inaccurate data
- Delete data (where applicable)
- Restrict or object to processing
- Data portability
- Withdraw consent (where processing is based on consent)
- Lodge a complaint with a supervisory authority
How to exercise rights: Email us at privacy@deartype.com. We may ask you to verify your identity.
10) Children
Our website is not intended for children under 16, and we do not knowingly collect personal data from children.
11) Third-party links
Our website may contain links to third-party websites (e.g., social media). We are not responsible for their privacy practices.
12) Changes to this policy
We may update this Privacy Policy from time to time. We will post the updated version on this page and update the "Effective date."
13) Contact
For questions or requests about privacy, contact:
Email: privacy@deartype.com
Address: Sofia 1000