Free shipping on orders over €100

Zieck

Legal

Privacy Policy

Last updated: 23 April 2026

1. Who we are

This website (zieck.eu) is operated by Zieck Design, based at Boelemaheerd 114, 9736HG Groningen, the Netherlands. Zieck Design is registered with the Dutch Chamber of Commerce (KvK) under number 68849494, VAT number NL002394302B02. We act as the data controller for any personal data we process through this website.

For any privacy-related question, contact us at info@zieck.eu.

2. What data we collect and why

We only collect data that is necessary to operate the shop and fulfil your orders. Specifically:

  • Order data (name, email, shipping address, phone number, order contents, total). We use this to process and deliver your order. Legal basis: performance of a contract (Art. 6(1)(b) GDPR).
  • Account data (email, password hash, name, address book) if you create an account, to let you view your orders, manage addresses, and speed up future purchases. Legal basis: performance of a contract.
  • Payment data is handled by Mollie B.V., our payment service provider. We never see or store your card or bank details — only a payment identifier.
  • Technical data (IP address, browser type, pages visited), to secure the site and understand how it is used. Legal basis: our legitimate interest (Art. 6(1)(f) GDPR).
  • Newsletter data (email, name), only if you opt in. Legal basis: your consent (Art. 6(1)(a) GDPR). Revocable at any time via the unsubscribe link or by mailing us.

3. Who we share data with

We share the minimum needed data with the following processors, all bound by processing agreements:

  • Printful, Inc., on-demand printing and shipping (we forward your shipping address and order contents).
  • Mollie B.V., payment processing.
  • Supabase (Supabase Inc.), database and authentication hosting (data stored within the EU/US depending on the region you're routed to).
  • Vercel Inc., website hosting and log storage.
  • TransIP B.V., email delivery for order confirmations.

We never sell, rent, or trade your personal data. We only disclose data to public authorities when we are legally required to.

4. International transfers

Some of our processors (e.g., Printful, Vercel) operate data centres outside the EEA. Where that is the case, we rely on the European Commission's Standard Contractual Clauses or equivalent safeguards to protect your data.

5. How long we keep your data

  • Order records and invoices: 7 years (Dutch tax law obligation).
  • Account data: until you delete your account or request deletion.
  • Newsletter subscription: until you unsubscribe.
  • Server / security logs: 30 days.

6. Your rights

Under the GDPR you have the right to:

  • access the data we hold about you;
  • correct inaccurate or incomplete data;
  • request deletion ("right to be forgotten");
  • restrict or object to processing;
  • data portability (receive a machine-readable copy);
  • withdraw consent at any time where processing is based on consent;
  • lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

To exercise any of these, email info@zieck.eu. We respond within one month.

7. Security

Data is transmitted over TLS (HTTPS). Passwords are stored hashed, not in plaintext. Database backups are encrypted at rest. Access to systems is limited to authorised staff and secured with two-factor authentication where supported.

8. Cookies

See our Cookie Policy for details about the cookies we use.

9. Changes to this policy

We may update this policy from time to time (e.g., when we add new processors). Material changes will be announced on this page and, where legally required, communicated by email. The "Last updated" date above reflects the most recent revision.

10. Contact

Zieck Design · Boelemaheerd 114, 9736HG Groningen · info@zieck.eu