S3D Logo
EN | PL

Privacy Policy

Last updated: November 13, 2025

Introduction

At 3DS, we are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information in compliance with the EU General Data Protection Regulation (GDPR).

1. Data Controller

The data controller responsible for your personal data is:

3DS - 3D Printing Services

For privacy-related inquiries, please contact us at:

2. Personal Data We Collect

We collect the following categories of personal data:

2.1 Order Information

When you place an order, we collect:

  • Full name
  • email address
  • phone number
  • shipping address (street
  • city
  • postal code
  • country)
  • order details and product information

Legal basis: Performance of contract (GDPR Article 6(1)(b))

Retention: 7 years (EU tax and accounting regulations per Directive 2006/112/EC)

2.2 Contact Form Submissions

When you contact us via our form, we collect:

  • Name
  • email address
  • phone number (optional)
  • message content
  • uploaded 3D model files (if provided)

Legal basis: Your consent (GDPR Article 6(1)(a))

Retention: 90 days, then automatically deleted

2.3 Website Analytics

With your consent, we collect anonymous usage data:

  • Pages visited and time spent on pages
  • products viewed
  • country-level location (derived from IP address)
  • browser type and device information
  • referrer URL (how you found our site)

Legal basis: Your consent (GDPR Article 6(1)(a))

Retention: 12 months, then automatically deleted

Important: IP addresses are immediately anonymized (last octet removed) and processed locally using MaxMind GeoLite2 database. No data is shared with third parties.

2.4 Administrative Logs

For security and audit purposes, we log administrative actions:

  • Admin user actions (e.g.
  • order status changes
  • product updates)
  • IP addresses of admin users
  • timestamps of actions

Legal basis: Legitimate interest in security and fraud prevention (GDPR Article 6(1)(f))

Retention: Tied to user account, deleted upon GDPR erasure request

3. How We Use Your Data

  • Process and fulfill your orders
  • Communicate with you about your orders and inquiries
  • Provide customer support
  • Improve our website and services (analytics)
  • Comply with legal obligations (tax, accounting)
  • Maintain security and prevent fraud

4. Data Sharing and Third Parties

We do not sell your personal data. We only share data with:

Payment Processors

PayPal for payment processing (subject to their privacy policy)

Shipping Carriers

Shipping companies to deliver your orders

GeoIP Database (Local Processing)

We use MaxMind GeoLite2-Country database (downloaded locally) to determine country-level location from IP addresses. No data is sent to MaxMind or any third party. Processing happens entirely on our servers.

Legal Obligations

Law enforcement or regulatory authorities when required by law

5. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • Encrypted connections (HTTPS/SSL)
  • Restricted access to personal data (admin authentication required)
  • File validation and security checks for uploads
  • IP address anonymization
  • Regular backups and secure storage

6. Your Rights Under GDPR

You have the following rights regarding your personal data:

Right to Access (Article 15)

Request a copy of all personal data we hold about you

Right to Rectification (Article 16)

Correct inaccurate or incomplete data

Right to Erasure (Article 17)

Request deletion of your data (with exceptions for legal obligations like tax records)

Right to Data Portability (Article 20)

Receive your data in a machine-readable format

Right to Object (Article 21)

Object to processing based on legitimate interests

Right to Withdraw Consent (Article 7)

Withdraw consent for analytics tracking at any time

Right to Lodge a Complaint

File a complaint with your local data protection authority

To exercise any of these rights, please use our GDPR Data Request Form. We will respond within 30 days as required by law.

7. Cookies and Tracking

We use cookies for:

  • Essential cookies: Session management, shopping cart, language preference (no consent required)
  • Analytics cookies: Website usage tracking (requires your consent)

You can manage your cookie preferences using the cookie consent banner or by clearing your browser cookies.

8. Data Retention Periods

  • Orders: 7 years (legal requirement)
  • Contact submissions: 90 days
  • Analytics: 12 months
  • Email logs: 90 days (then anonymized)

Automated deletion processes run monthly to ensure compliance.

9. International Data Transfers

Your data is processed within the European Union. If we transfer data outside the EU, we ensure appropriate safeguards are in place (e.g., Standard Contractual Clauses).

10. Children's Privacy

Our services are not directed to children under 16. We do not knowingly collect data from children. If you believe we have collected data from a child, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last Updated" date at the top indicates when changes were made. Continued use of our services after changes constitutes acceptance.

12. Contact Us

For privacy-related questions or to exercise your rights:

GDPR Request Form: https://s3dprint.org/gdpr/request

We will respond to your inquiry within 30 days.

This privacy policy complies with the EU General Data Protection Regulation (GDPR) and applies to all users of 3DS services.