Online Quote

Privacy and Cookie policy

make.direct manufacturing platform

1. Introduction

This Privacy Policy explains how personal data is collected, processed, stored, and disclosed by SIA Strix Studios, registered in Latvia, European Union, operating the make.direct platform.

The Platform Operator processes personal data in compliance with Regulation (EU) 2016/679 (General Data Protection Regulation, GDPR) and applicable Latvian data protection laws.

2. Data Controller

The data controller is:

SIA Strix Studios
Registered in the Republic of Latvia
Contact: info@make.direct

3. Categories of Personal Data

The Platform Operator may process the following data:

  • identification data (name, company name),
  • contact data (email address, phone number),
  • billing and payment information,
  • delivery addresses,
  • account credentials,
  • uploaded files and technical models,
  • communication records,
  • IP address, device and usage data.

4. Purpose of Processing

Personal data is processed for the purposes of:

  • account creation and authentication,
  • order processing and fulfillment,
  • payment processing,
  • customer support and communication,
  • legal and regulatory compliance,
  • fraud prevention and security,
  • quality control and dispute resolution.

5. Legal Basis for Processing

Processing is based on:

  • performance of a contract,
  • compliance with legal obligations,
  • legitimate interests of the Platform Operator,
  • consent, where explicitly required.

6. File Storage and Retention

Uploaded models and files are stored according to the option selected at order time:

  • storage limited to production needs only, or
  • extended storage for up to six months to facilitate reordering.

Files are deleted or anonymized after the retention period unless legal obligations require longer storage. Client can request deletion of files at any time via contact details provided.

7. Data Sharing

Personal data may be shared with:

  • manufacturing partners and logistics providers,
  • payment service providers,
  • IT infrastructure and hosting providers.
  • Data may be disclosed to authorities where required by law, including for export control, sanctions compliance, or law enforcement investigations.

8. International Transfers

Where data is transferred outside the EU, appropriate safeguards are applied in accordance with GDPR requirements.

9. Data Security

The Platform Operator implements appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or misuse.

10. Data Subject Rights

Clients have the right to:

  • access their personal data,
  • request correction or deletion,
  • restrict or object to processing,
  • request data portability,
  • withdraw consent where applicable.

Requests may be submitted via the contact details provided.

11. Cookies and Related Tracking Technologies

11.1 Use of Cookies

The Platform uses cookies and similar technologies to ensure proper functionality, security, and performance of the Platform.

Cookies are small text files stored on the user's device.

11.2 Categories of Cookies

The Platform may use the following categories of cookies:

a) Strictly Necessary Cookies

Required for:

  • user authentication,
  • account security,
  • quotation process,
  • order processing,
  • session management.

These cookies cannot be disabled.

b) Functional Cookies

Used to:

  • store language abd location preferences,
  • remember user settings.

These cookies improve usability but are not strictly required.

c) Analytics Cookies

Used to:

  • analyze Platform usage,
  • improve performance and functionality.

Where required by law, analytics cookies are used only with consent or in anonymized form.

d) Marketing Cookies

Used only where explicitly enabled and permitted by law. The Platform does not rely on marketing cookies by default.

11.3 Consent and Management

Users may manage cookie preferences via:

  • the cookie consent banner,
  • browser settings.

Consent may be withdrawn at any time, but disabling cookies may affect Platform functionality.

11.4 Legal Basis

The use of cookies is based on:

  • legitimate interest for strictly necessary cookies,
  • user consent for non-essential cookies, where required.

12. Disclosure for Legal Compliance

Personal data may be disclosed where required to comply with:

  • anti-money laundering laws,
  • sanctions regulations,
  • export control obligations,
  • law enforcement requests.

Such disclosure may occur without prior notice where legally required.

13. Marketing Communications

Marketing communications are sent only where legally permitted. Clients may opt out at any time.

14. Retention Periods

Personal data is retained only as long as necessary for the purposes stated or as required by law.

15. Changes to This Policy

This Privacy Policy may be updated from time to time. Continued use of the Platform constitutes acceptance of updated versions.

16. Governing Law

This Privacy Policy is governed by Latvian law. The English version is controlling.