Privacy Policy

Last updated: May 2026

In short

We collect only what we need to register your purchase and deliver the product to you. We don't sell your data, share it with advertisers, or use it for anything other than the purpose you gave it to us for. You can ask us to delete your data at any time, and we'll act on the request promptly. We comply with the General Data Protection Regulation (GDPR) and Danish data protection law.

1. Who we are

Matzen Digital is the data controller for personal data collected through our website and products. If you have any questions about this policy or your data, contact us at the address listed on our website.

2. What data we collect

We collect only the data necessary to provide our products and complete your purchase:

  • Name — to associate your purchase with you.

  • Email address — to send your purchase confirmation, download link, and any service-related communication.

  • Billing and payment information — processed by our payment provider; we do not store full payment card details ourselves.

  • Purchase history — what you bought, when, and at what price, for record-keeping and customer support.

  • Basic technical data — for example, country of purchase, required for tax and compliance purposes.

We do not collect, request, or store any other personal data. We do not use tracking cookies for advertising. We do not build behavioural profiles of our customers.

3. Why we collect it

We use your personal data exclusively to:

  • Complete and deliver your purchase.

  • Provide customer support if you contact us.

  • Meet our legal obligations (tax records, accounting, statutory reporting).

  • Send you essential service information about products you have purchased (for example, notifying you of a critical update).

We do not use your data for marketing, advertising, profiling, or any other purpose. We do not share, sell, rent, or trade your data with third parties, except where strictly necessary for the purposes above (e.g., payment processing) or where legally required.

4. Legal basis

Our processing of your personal data is based on:

  • Contract performance (GDPR Article 6(1)(b)) — processing necessary to deliver the product you purchased.

  • Legal obligation (GDPR Article 6(1)(c)) — processing required by Danish tax and accounting law.

  • Legitimate interest (GDPR Article 6(1)(f)) — processing necessary for customer support and product security communications.

5. How long we keep your data

We retain your personal data only for as long as necessary:

  • Customer contact data (name, email) — retained for 6 months from the date of your most recent purchase or interaction, then deleted, unless:

    • You have asked us to keep your data on file (for example, to make future purchases easier or to receive product update notifications), or

    • We are legally required to retain it for a longer period.

  • Transaction records (proof of purchase, invoices, tax-relevant data) — retained for 5 years as required by Danish accounting law. After this period, these records are deleted or anonymised.

  • Communications (support emails, your direct messages to us) — retained for 6 months after the issue is resolved, then deleted.

If you would like to keep your data on file beyond the 6-month period, just let us know.

6. Your rights

Under GDPR you have the right to:

  • Access — request a copy of the personal data we hold about you.

  • Correction — ask us to correct inaccurate or incomplete data.

  • Erasure — ask us to delete your data ("right to be forgotten"). We will comply within one month of receiving the request, subject only to legal obligations that require us to retain certain records (see Section 5).

  • Restriction — ask us to limit how we process your data.

  • Portability — receive your data in a structured, commonly used format.

  • Object — object to specific types of processing.

  • Withdraw consent — where processing is based on consent, withdraw it at any time.

To exercise any of these rights, contact us at the address listed on our website. We will respond within one month. There is no fee for exercising these rights.

7. Data security

We take reasonable technical and organisational measures to protect your data against loss, unauthorised access, alteration, or disclosure. However, no system is perfectly secure. We do our best, but we cannot guarantee absolute security, and we cannot accept liability for security breaches outside our control (for example, breaches at third-party service providers we use, or interception of internet traffic in transit before it reaches us).

8. Third parties

We use a small number of third-party services to operate our business:

  • Payment processing — to handle the payment portion of your purchase securely. Payment providers act as independent data controllers for the data they receive.

  • Website hosting and e-commerce — our website and storefront run on Squarespace. Squarespace processes data on our behalf as a data processor under GDPR.

  • Email delivery — for transactional emails (order confirmations, download links). Email providers act as data processors.

We choose providers that have GDPR-compatible terms. We do not transfer your personal data to third parties outside these necessary operational services.

9. International transfers

If we transfer your personal data outside the European Economic Area (for example, to a service provider based in the United States), we do so only under GDPR-compliant safeguards such as the EU Standard Contractual Clauses or an adequacy decision.

10. Limitation of liability

To the maximum extent permitted by law, Matzen Digital is not liable for:

  • Loss or damage arising from data breaches caused by third-party service providers.

  • Loss or damage arising from unauthorised access to your account caused by your own actions (for example, sharing your password).

  • Indirect, consequential, or incidental losses arising from privacy-related issues.

Nothing in this section limits or excludes our statutory obligations as a data controller under GDPR or Danish law.

11. Children

Our products are not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, contact us and we will delete it promptly.

12. Changes to this policy

We may update this policy from time to time. The "Last updated" date at the top of this document shows when. Material changes will be notified to existing customers by email where appropriate. The current version is always available on our website.

13. Supervisory authority

If you are not satisfied with how we handle your data, you have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet):

14. Contact

For any privacy-related question, request, or concern, contact Matzen Digital at the address listed on our website.

Matzen Digital — © 2026. All rights reserved.