Privacy policy

Last updated: 10th of April 2026

1. Introduction

This Privacy Policy explains how TheoryToDrive (“we”, “us”, “our”) collects, uses, stores, and shares your personal information when you visit our website or use our digital products (the “Services”).
Our store and checkout are powered by Shopify, which also processes certain personal information as part of providing its platform.

By accessing or using the Services, you acknowledge that you have read and understand this Privacy Policy.

If there is a conflict between our Terms of Service and this Privacy Policy regarding personal information, this Privacy Policy prevails.

2. Data Controller & Contact Information

For personal data collected directly by TheoryToDrive (through purchases, communication, support, downloads), the data controller is:

TheoryToDrive 
Email: info@TheoryToDrive.nl
Phone: +31 6 5885 1701
VAT ID: NL005298123B32

For certain data collected through Shopify’s platform, Shopify acts as an independent data controller.
Shopify’s privacy policy: https://www.shopify.com/legal/privacy/customers

3. Personal Information We Collect

We collect the following categories of personal information, depending on how you use the Services:

A. Information You Provide

  • Name

  • Email address

  • Billing information

  • Address (if provided at checkout)

  • Payment method (processed by Shopify/third-party processors, not by us directly)

  • Support messages and communication

B. Automatically Collected Information

Collected via cookies, analytics tools, and Shopify’s technology:

  • IP address

  • Device and browser information

  • Usage data (pages visited, clicks, session data)

  • Referrer information

  • General geolocation

C. Transaction Information

  • Items viewed

  • Items added to cart

  • Purchases

  • Downloads

  • Order history

4. Sources of Personal Information

We collect personal data:

  • Directly from you

  • Automatically through your device (via Shopify and cookies)

  • From Shopify as part of store operation

  • From service providers (payments, hosting, analytics)

  • From marketing or advertising partners, when applicable

5. How We Use Personal Information

We use your personal information to:

A. Deliver and Improve the Services

  • Process payments

  • Provide digital downloads

  • Manage orders

  • Send confirmations

  • Provide personalised recommendations

  • Maintain and secure accounts

  • Improve store performance

B. Marketing and Advertising

  • Send newsletters (only if opted-in)

  • Provide personalized ads via Shopify and third-party platforms

  • Measure ad performance

You can opt out of marketing emails at any time using the unsubscribe link.

C. Fraud Prevention and Security

  • Detect and prevent fraud

  • Authenticate users

  • Maintain platform security

D. Customer Support

  • Respond to inquiries

  • Provide assistance

  • Troubleshoot download or access issues

E. Legal Obligations

  • Comply with tax and accounting regulations

  • Respond to lawful requests from authorities

6. Sharing of Personal Information

We may share your data with:

A. Shopify

Shopify hosts our store and collects personal information to provide and improve its platform.
Some of this processing is done as an independent controller (e.g., fraud prevention, cross-merchant analytics).

B. Service Providers

  • Payment processors

  • Email delivery services

  • Hosting and cloud storage

  • Analytics providers
    All operate under GDPR-compliant agreements.

C. Marketing & Advertising Partners

Only if you consent to marketing or cookies.

D. Legal, Compliance & Safety

Where required to comply with laws, enforce terms, or protect rights.

E. Business Transfers

In case of merger, acquisition, or sale.

7. Cookies and Similar Technologies

We use cookies to:

  • Enable checkout and cart functionality

  • Improve user experience

  • Perform analytics

  • Deliver personalized ads (only with consent)

You can manage cookies through your browser settings or cookie banner.

8. Data Retention

We retain personal data only as long as necessary:

  • Order and tax information: 7 years (legal requirement)

  • Marketing emails: until you unsubscribe

  • Support messages: up to 2 years

  • Account data: until deletion request

9. Children’s Privacy (Merged Version)

Our Services and digital products are intended for individuals aged 16 and older.

  • We do not knowingly collect personal data from anyone under 16 without parental consent.

  • If you believe a minor under 16 has submitted data, contact us at info@TheoryToDrive.nl and we will delete the information promptly.

10. Your Rights Under GDPR

If you reside in the EEA or UK, you have the right to:

  • Access your data

  • Correct inaccurate data

  • Request deletion

  • Restrict or object to processing

  • Withdraw consent

  • Data portability

  • File a complaint with your local Data Protection Authority

To exercise your rights: info@TheoryToDrive.nl

For Shopify-collected data, consult:
https://privacy.shopify.com/en

11. International Transfers

Your data may be transferred outside the EU.
When this happens, we and Shopify use lawful safeguards such as:

  • Standard Contractual Clauses (SCCs)

  • Equivalent UK transfer mechanisms

  • Partners in countries with adequacy decisions

12. Security

We and Shopify apply appropriate technical and organisational measures, including:

  • HTTPS encryption

  • Secure storage

  • Access controls

  • Regular monitoring

However, no system is 100% secure.

13. Changes to This Policy

We may update this Privacy Policy to reflect:

  • Changes in practices

  • Legal requirements

  • Shopify platform updates

The updated version will be posted with a revised “Last updated” date.

14. Contact

For any privacy-related questions or rights requests:

TheoryToDrive 
Email: info@TheoryToDrive.nl
Phone: +31 6 5885 1701