GDPR & Privacy Policy
1. Introduction
Your privacy is important to us. This Privacy Policy explains how we collect, use, store, and protect your personal data when you interact with our website and services hosted on the Kajabi platform. We are committed to ensuring that your personal information is handled in compliance with the General Data Protection Regulation (GDPR).
By using this website, you agree to the practices described in this policy.
2. Data Controller
Data Controller:
Jonas Carpvik
The Data Controller is responsible for determining how and why your personal data is processed.
3. What Personal Data We Collect
We may collect and process the following categories of personal data:
- Identity Data: Name, job title, and company name
- Contact Data: Email address and phone number
- Account Data: Login credentials and course participation
- Payment Data: Billing information (processed securely via third-party providers such as Stripe or PayPal; we do not store full payment details)
- Technical Data: IP address, browser type, device information, and cookies
- Usage Data: Interaction with our courses, emails, and website content
- Marketing Preferences: Consent to receive newsletters or promotional communications
4. How We Collect Your Data
Your personal data is collected through:
- Registration for programs or courses
- Purchase of products or services
- Subscription to newsletters or downloads
- Contact forms or email communication
- Cookies and analytics tools
- User activity within the Kajabi platform
5. Purpose and Legal Basis for Processing
We process your personal data for the following purposes and legal bases under GDPR:
| Purpose | Legal Basis |
|---|---|
| Delivering courses and services | Performance of a contract |
| Processing payments | Performance of a contract |
| Customer support and communication | Legitimate interest |
| Sending marketing communications | Consent |
| Improving website and services | Legitimate interest |
| Legal and regulatory compliance | Legal obligation |
6. Use of the Kajabi Platform
Our website and online programs are hosted on Kajabi, LLC, which acts as a data processor on our behalf. Kajabi provides the infrastructure for:
- Website hosting
- Course delivery
- Email communications
- Payment integrations
- Analytics and user management
Kajabi may process personal data on servers located outside the European Economic Area (EEA), including in the United States. Such transfers are safeguarded through Standard Contractual Clauses (SCCs) and other appropriate legal mechanisms in compliance with GDPR.
For more information, please refer to Kajabi’s Privacy Policy:
https://kajabi.com/policies/privacy
7. Payment Processing
Payments are processed securely through third-party providers such as Stripe and PayPal. We do not store your full credit card information. These providers act as independent data controllers and process your data in accordance with their own privacy policies.
8. Email Marketing
With your consent, we may send you newsletters, updates, and promotional information related to our services. You can withdraw your consent at any time by clicking the “unsubscribe” link in any email or by contacting us directly.
9. Cookies and Analytics
Our website uses cookies and similar technologies to enhance user experience and analyze website performance. These may include:
- Essential cookies for website functionality
- Analytics cookies (e.g., Google Analytics)
- Marketing cookies (if applicable)
You can manage or withdraw your cookie consent at any time through your browser settings or cookie banner.
10. Data Sharing
We do not sell your personal data. We may share your information with trusted third parties only when necessary to provide our services, including:
- Kajabi, LLC – Website and course hosting
- Stripe / PayPal – Payment processing
- Email and analytics providers – Communication and performance analysis
- Legal authorities – When required by law
All third parties are required to handle your data securely and in compliance with GDPR.
11. International Data Transfers
When personal data is transferred outside the EEA, appropriate safeguards are implemented, such as:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions by the European Commission
- Additional technical and organizational security measures
12. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. When data is no longer needed, it is securely deleted or anonymized.
13. Your Rights Under GDPR
Under GDPR, you have the following rights:
- Right of Access – Request a copy of your personal data
- Right to Rectification – Correct inaccurate or incomplete data
- Right to Erasure (“Right to be Forgotten”)
- Right to Restrict Processing
- Right to Data Portability
- Right to Object – Particularly to marketing communications
- Right to Withdraw Consent – At any time
- Right to Lodge a Complaint – With a supervisory authority
In Sweden, the supervisory authority is:
Integritetsskyddsmyndigheten (IMY) – https://www.imy.se
To exercise your rights, please contact: [email protected]
14. Data Security
We implement appropriate technical and organizational measures to protect your personal data, including:
- Secure SSL encryption
- Access controls and authentication
- Secure third-party payment processing
- Regular monitoring and platform security provided by Kajabi
15. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for their privacy practices and encourage you to review their privacy policies.
16. Updates to This Policy
We may update this Privacy Policy from time to time to reflect legal, technical, or business changes. The updated version will be posted on this page with a revised “Last Updated” date.
Last Updated: [Insert Date]
17. Contact Information
If you have any questions about this Privacy Policy or how your personal data is handled, please contact:
Carpvik Executive Advisory
Jonas Carpvik
