Legal

Privacy Policy

Last updated: January 2025  ·  Soulevé, Amsterdam

Your privacy matters to us. This policy explains how Soulevé collects, uses, and protects your personal data in accordance with the General Data Protection Regulation (GDPR) and Dutch privacy law.

01

Introduction

This Privacy Policy applies to all services offered by Soulevé, accessible at soulevé.com. Soulevé is the data controller responsible for your personal data.

Contact: Soulevé, Amsterdam – Diemen, 1015 CJ Amsterdam, The Netherlands. Email: privacy@souleve.com

02

Data we collect

When you place an order

  • Name, email address, phone number
  • Shipping and billing address
  • Order history and preferences
  • Payment method (we do not store card details — payments are handled by secure third-party processors)

When you browse our site

  • IP address and browser information
  • Pages visited and time spent
  • Device type and operating system
  • Cookie data (see our Cookie Policy)

When you create an account

  • Name, email address, and password (stored securely)
  • Order history and saved addresses
  • Communication preferences

03

How we use your data

We process your personal data for the following purposes:

  • Order fulfilment — Processing and shipping your orders, sending confirmations and tracking updates
  • Customer service — Responding to enquiries, handling returns and complaints
  • Account management — Maintaining your account and order history
  • Marketing — Sending newsletters and promotions (only with your explicit consent, which you can withdraw at any time)
  • Website improvement — Analysing usage data to improve the experience on our site
  • Legal compliance — Meeting legal obligations, including tax and accounting requirements

We only process data that is necessary for the stated purpose and rely on the following legal bases: contract performance, legitimate interests, consent, and legal obligation.

04

Sharing your data

We do not sell your personal data. We may share data with the following trusted parties solely to fulfil our services:

  • Shipping carriers — PostNL, DHL, DPD for order delivery
  • Payment processors — Stripe, Mollie, PayPal for secure payment processing
  • Email service providers — For sending order confirmations and newsletters
  • Analytics providers — Google Analytics (anonymised data)

All third parties are contractually bound to handle your data in compliance with GDPR. We do not transfer your data outside the European Economic Area without appropriate safeguards.

05

Cookies

We use cookies to improve your experience on our site. These include strictly necessary cookies (required for the site to function), functional cookies (to remember your preferences), and optional analytics and marketing cookies.

You can manage your cookie preferences at any time through our Cookie Policy page. You can also manage cookies directly through your browser settings.

06

Data retention

We retain your personal data only for as long as necessary for the purposes stated in this policy, or as required by law:

  • Order data is retained for 7 years (legal tax requirement)
  • Account data is retained until you delete your account
  • Marketing consent data is retained until you withdraw consent
  • Cookie data is retained per the duration specified in our Cookie Policy

07

Your rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access — Request a copy of the data we hold about you
  • Right to rectification — Request correction of inaccurate data
  • Right to erasure — Request deletion of your data ("right to be forgotten")
  • Right to restriction — Request that we limit how we process your data
  • Right to data portability — Request your data in a portable format
  • Right to object — Object to processing based on legitimate interests or for direct marketing
  • Right to withdraw consent — Withdraw consent for marketing at any time

To exercise any of these rights, contact us at privacy@souleve.com. We will respond within 30 days. You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens): autoriteitpersoonsgegevens.nl

08

Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse. Our website uses SSL encryption (HTTPS) for all data transfers. We regularly review and update our security practices.

In the unlikely event of a data breach that affects your rights, we will notify you and the relevant supervisory authority as required by law.

09

Children

Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10

Contact & Updates

If you have any questions about this Privacy Policy or how we handle your data, please contact our privacy team:

Email: privacy@souleve.com
Post: Soulevé, Amsterdam – Diemen, 1015 CJ Amsterdam, The Netherlands

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or via a notice on our website. The latest version is always available at soulevé.com/privacy.