1. Who we are
CompressionGoods is the data controller for personal data collected through this website and through our sales process. If you have any question about this policy or about how we handle your data, contact us first — we'll always try to resolve concerns directly before any escalation.
- Company: CompressionGoods
- Trading name: Compression Goods
- Address: Lagendijk 3, 1541 KA Koog aan de Zaan, The Netherlands
- KvK (Chamber of Commerce): 93028555
- VAT: NL866253166B01
- Email: hello@compressiongoods.com
- Phone: +31 6 81 998 998
2. What data we collect
We only collect the personal data you actively send us through our forms or by email. We do not buy data, do not run analytics or advertising trackers, and do not embed third-party widgets that profile you in the background.
2.1 Data you provide via our forms
- Your full name
- Your email address
- Your phone number
- Your company / studio / gym name
- Your country
- Your preferred currency
- Your studio's website and Instagram (optional)
- A free-text description of your studio (optional)
- Your logo file, if uploaded (PNG, JPG, SVG, PDF, AI, EPS, PSD; max 8 MB)
- Your indicative quantity range
2.2 Data we receive automatically
- Your IP address and basic request metadata, kept temporarily by our hosting provider (Vercel) for the sole purpose of preventing abuse and serving the page. This is not linked to any profile we hold about you.
2.3 What we do not collect
- No cookies for analytics, advertising, retargeting or social embeds
- No Google Analytics, Meta Pixel, TikTok Pixel, LinkedIn Insight Tag
- No fingerprinting, session replay, or behavioural profiling
3. Why we collect it (legal basis)
| Purpose | Legal basis (GDPR Art. 6) |
|---|---|
| Respond to your free-design request and prepare mockups | Pre-contractual measures · Art. 6(1)(b) |
| Send a pricelist you've requested | Your consent · Art. 6(1)(a) |
| Fulfill your order if you become a customer | Performance of contract · Art. 6(1)(b) |
| Comply with tax record-keeping (Dutch BTW / Wet op de Loonbelasting) | Legal obligation · Art. 6(1)(c) |
| Detect and prevent abuse / fraud on our forms and order pipeline | Legitimate interest · Art. 6(1)(f) |
4. Who has access to your data
We never sell your personal data. We share strictly the minimum required to deliver what you asked for, with carefully selected processors:
- Email service (Resend, EU region): to deliver our reply, your mockups and your pricelist
- Internal notification (Slack): our team is alerted when a new request comes in so we can respond fast
- Hosting (Vercel, EU edge): serves this website and processes form submissions
- Production partner: only when you become a customer, and only production-relevant data (the artwork, sizes, quantities, shipping address) — never your personal contact details
- Payment processors: only when you place a paid order. Card data is never seen or stored by us; the processor handles it directly with the card network
- Accountant and tax authorities: only invoice-level data, only when legally required
All processors are bound by a written data-processing agreement (verwerkersovereenkomst) and operate within the EEA, or under EU-approved transfer mechanisms where unavoidable.
5. How long we keep your data
- Lead data (form submissions that don't lead to an order): up to 12 months from your last interaction, then automatically deleted
- Logo files for non-customers: deleted after 12 months if no order is placed
- Customer records (invoices, order history): 7 years, as required by Dutch tax law (Algemene wet inzake rijksbelastingen Art. 52)
- Customer support emails: 24 months after the last reply, unless you ask us to delete them sooner
6. Your rights under GDPR
You always have the right to:
- Access the personal data we hold about you
- Correct data that is inaccurate or incomplete
- Delete your data ("right to be forgotten"), subject to our legal retention obligations
- Object to processing based on legitimate interest
- Restrict processing while a request is being reviewed
- Receive your data in a portable, machine-readable format
- Withdraw consent at any time, where processing is based on consent
- Lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl , or with the supervisory authority in your EU member state
To exercise any of these rights, email hello@compressiongoods.com with a brief description of your request. We respond within 30 days, usually faster. We may ask you to confirm your identity before acting on data-deletion or data-export requests, so we don't accidentally hand over your information to someone else.
7. Data security
All data we collect through this website is transmitted over TLS (HTTPS), stored on EU servers, and accessible only to a small number of authorized people on our team under signed confidentiality terms. Logo files are stored encrypted at rest. We review our security posture and processor list at least once a year.
8. International transfers
Our infrastructure runs in the EU. Where a sub-processor (for example a backup service) processes data outside the EEA, we rely on the European Commission's Standard Contractual Clauses or an applicable adequacy decision under GDPR Art. 45-46.
9. Children
This is a B2B website. We do not knowingly collect data from anyone under 18. If you believe a minor has submitted data through our forms, contact us and we will delete it immediately.
10. Changes to this policy
We may update this policy when our practices change or when new regulation requires it. The "Last updated" date at the top reflects the most recent revision. Material changes will be flagged on the homepage for at least 30 days.
11. Contact
Questions, requests, or complaints about how we handle your data go to hello@compressiongoods.com or, by post, to the address listed in section 1.
