Last updated and valid from January 24, 2024
Privacy Policy
This privacy policy contains information on how Mana Marketing - Jamie Siv Rognstad, website https://archetypealchemy.global (hereinafter referred to as the Company) processes your personal information.
You are strongly encouraged to read this privacy policy and the terms and conditions, as by visiting and using the content on the Company's website, as well as by purchasing packages, courses, and programs, you agree to the terms and conditions described in these.
1. Data Controller
Jamie Siv Rognstad is responsible for the data processing being done at the Company.
2. Personal data being stored
Depending on the service or product you order, the Company stores, with your consent: Name and email address.
The Company also stores purchase history, behavior patterns on websites, registration pages, and newsletters that are sent out and in online courses i.e. information about how the individual customer navigates the pages.
The Company also stores information given on or through social media.
Payment information for the purchase of one or more of the Company's services is stored in Stripe.
When you book a meeting in Calendly, the Company stores all the information you give on the booking page.
When participating in group meetings on Zoom, all information shared by each participant is stored and made available as described on the program's sales page.
On July 10th, 2023, a new framework called the EU-US Data Privacy Framework (DPF for short) was launched and implemented so that all businesses on the DPF list are considered safe to transfer data to from the EU/EEA area. Based on the adequacy decision from the EU, it is now also legally sound to send data from the EU/EEA based on the new EU Standard Contractual Clauses (SCC for short).
The Company does all data transfers according to applicable laws.
3. Data of minors
The Company does not knowingly process data about persons below the age of 18 years.
If any person below the age of 18 years wishes to register for the Company's newsletter and/or purchase/participate in the Company's programs/packages/courses, explicit written consent from parents or legal guardians is required.
If the Company is made aware that the minor's data is being processed, the Company will immediately do its utmost to delete all data about the person found in the systems and programs used.
4. Purpose of processing
The Company processes the information to be able to carry out the obligations it has according to the agreement with you. The Company also uses the information to be able to provide you with information, offers, and services in connection with your order via e-mail, possibly also by phone, SMS, direct messages on social media, and any mailings with your consent, as well as for your registration/participation in activities such as challenges, courses, and coaching on the initiative of the Company. Personal information that Aweber and Funnel Gorgeous, the Company's newsletter provider gives access to, as well as direct feedback from those registered for the newsletters, is used to document consent of email marketing, as well as measure quality, engagement, and interest so that more content can be made accordingly. If you use Apple Mail, you can choose to activate Apple Mail Privacy Protection. Information on how this is done can be found here:https://support.apple.com/no-no/guide/iphone/iphf084865c7/ios
The Company's pages on social media like Facebook, Instagram, and LinkedIn also have built-in analytics tools to create anonymous reports on how the various posts/videos are doing, so I/we can create more content in line with what followers show the most interest in.
The Company tracks the percentage of opened emails but does not use Google Analytics to see what links have been clicked on in newsletters.The other functions, i.e. day, date, and time of registration as well as the number of emails received, cannot be de-activated by the Company, so if you do not wish to be included in such analysis, you must not subscribe to the Company newsletter or interact with the Company on social media.
The Company only uses the built-in analytics in each of the systems used for website traffic analysis. Google Analytics is not used.
The Company also has measures in place to secure content, prevent spam and hacking, and create website backup copies. Information shared in Zoom meetings either individually or in groups is processed to give you as a customer the follow-up you request, and any notes made will be anonymized and placed in a GDPR-secure cloud storage system.
5. Legal basis for processing
Information about name, email address, physical address, telephone number, and Tax ID is used to fulfill orders and purchase agreements between you and the Company. The legal basis for this processing is Art 6.1.b Contract in the GDPR.
Where you have given consent, the information will also be used to provide you with information, offers, and services in connection with your order or purchase via email, telephone, and SMS, as well as direct messages on social media. The legal basis for this processing is Art 6.1.a Consent in the GDPR.
You can at any point refuse to receive such information from the Company.
Purchase history and insight into behavior in social media posts are used to provide recommendations and promote products and services specially adapted to you as a user. The basis for this processing is Article 6.1.a Consent in the GDPR as this is given to each registered when they signed up for the individual social media.
The Company also uses information about behavioral patterns on landing pages, openings of, and direct feedback in newsletters to gain insight into
How many people visit the landing page.
How many people order freebees.
How many emails have successfully reached the individual inboxes.
Interest and preferences
and then seek to improve the Company content based on this.
The Legal Basis for the insight of opened emails is Article 6.1.a Consent. The legal basis for the other insights is Art 6.1.b Contract since the Company can't deactivate these analytics in the systems used by the Company.
Again, if you use Apple Mail, you can stop the collection of information such as IP addresses and opened email tracking by activating Apple Mail Privacy Protection. Please search Apple Mail Privacy Protection online as there are different instructions for iPhone and Mac.
If you do not use Apple Mail, the Company, unfortunately, has no option to turn off the aforementioned information in Aweber and Funnel Gorgeous. This means that if you do not want to be part of such an analysis, you must not sign up for the Company's freebee and newsletter.
The Company stores the date and time for each newsletter signup to document consent. The legal basis for this processing is Art 6.1.c Legal obligation in the GDPR.
The Company does not collect or process any special categories of personal data when signing up for a freebee, newsletter or paying for a course, program, or service.
During 1-1 and/or group meetings via Zoom, it is natural that the conversations may include information about particularly sensitive information. This information is disclosed, discussed, and responded to according to Art 6.1.a Consent and Art 9.2.a Explicit consent in the GDPR.
Due to privacy reasons, the Company does NOT automatically record 1-1 Zoom sessions. The Customer can request a recording if none of the terms and conditions are breached.
Both parties are also subject to strict confidentiality as described in the Terms and Conditions.
For group teaching on Zoom, the meetings are recorded as described on the program's sales pages. This is done according to Art 6.1.a Consent and Art 9.2.a Explicit Consent in the GDPR.
There is a full opportunity for participants to ask questions on the agreed platforms in the duration of the course/program.
All information collected during 1-1 work is stored in the Company's systems for at least 12 months after completion. This is to document the work done for the Customer should there be any questions about this. The legal basis for this processing is Art 6.1.f Legitimate interest in documented performed work for clients.
Information collected at any purchase is stored for bookkeeping and accounting matters. The legal basis for this processing is Art 6.1.c Legal obligation.
6. How information is collected - including coookies
All the information you chose to give on the Company's websites will be stored.
The Company uses cookies on landing pages (where you sign up for offers – free or paid) and in newsletters to gain insight into how many signs up for newsletters, which newsletters bounce or not so that the Company can attempt to improve these numbers.
The Company also uses cookies to measure interest and quality of the newsletters being sent out, also this to improve the content based on these insights.
The legitimate basis for this processing is Art 6.1.a Consent. The Company's pages on social media such as Instagram, Facebook, LinkedIn, X (Twitter) and YouTube have built-in anonymized analytics tools that are used to see which content performs the best so the Company can create more content in line with its followers' interests.
Regarding automatic decisions, the Company does not use anything that is considered such decisions, except for Meta Pixels for advertising.
The Company use Meta Pixels that show our ads to the relevant audience relative to their activity on Facebook and Instagram.
Please note that this privacy policy only applies to the Company's own websites.
Browsers, search engines and social media you use have their own privacy policies. For you to have the greatest possible control over what information you share with them, you are advised to read their privacy policies separately and familiarize yourself with how you can choose which data you share.
7. Transfer of data to third party
On July 10th, 2023, a new framework between the US and EU was launched, called the EU-US Data Privacy Framework (DPF for short), and made valid with immediate effect.
The Company makes all transfers of data in accordance with the applicable laws requirements and regulations.
The Company will not share, sell, transfer, or otherwise disclose your personal data to others without your consent unless the Company is legally obliged to or has a documented legitimate interest in doing so.
To be able to fulfill its obligations under the agreement with you, the necessary information is disclosed to the Company's suppliers. ProISP is where the company hosts its business email address. They are a Nordic company storing all data in the EU/EEA area.
ProIsp is also the host of company domains.
Calendly is the system used by the Company for scheduling meetings. It is US-based and certified in DPF.
The online meeting provider Zoom and the payment solution Stripe are US-based. Both are certified in the new framework as mentioned above (here referred to as DPF).The Company also uses social media such as Instagram, Facebook, and LinkedIn. Facebook and Instagram provide anonymous insights into age groups, genders, and locations of those who interact with the Company on these platforms, and insight into how the various posts are performing.
The Company does not use the paid version of LinkedIn and therefore does not have analytics insights there.
When communicating with the Company via direct messages on social media, the username and content of messages are stored. The Company is not responsible for what kind of information these social media platforms collect about you otherwise.
The Company uses Meta Pixels to run ads and analyze ad performance. If you have given Meta your consent to use your activity data to show behavior-based ads and you fit the target set up by the Company, you may see ads from the Company across Meta Platforms. In this matter, the Company has a Joint Controller Addendum with Meta. Meta and LinkedIn are certified in the new DPF.
The Company also uses products from Microsoft and Google to create and deliver various workbooks and take notes from coaching sessions.
Both are certified in the DPF.
For notes on special categories of data, the Company uses a GDPR-secure cloud storage system.
The Company's host of online meetings is Zoom.
The Company does not collect any other information than your email address to which the meeting link is sent. You choose what kind of information you share in these meetings. Zoom is certified in the DPF. One-on-one coaching sessions are NOT automatically recorded by the Company. You as a customer may request the meeting be recorded if none of the terms and conditions are breached.
The payment solution Stripe is certified in the DPF, and both the accounting system and the accounting firm used by the Company are Norwegian.
Please be reminded that this privacy policy ONLY applies to the personal data collected by this individual Company.
The Company suppliers and systems may collect data that the Company does not and do not have insight into, therefore you are advised to read each privacy policy separately:
8. Data retention
Information collected in connection with your order/purchase is stored in the Company's active customer register for 3 years from the date of last contact, or at your request unless it violates legal obligations or documented legitimate interests from the Company's side.
Information for bookkeeping and accounting will be stored for at least 5 years according to applicable laws.
Information collected in connection with email marketing will be deleted at the latest 60 days from un-subscription or at your request.
Information collected and processed for security reasons has no deletion data set. The security systems will store the information for as long as it is necessary to keep the Company websites and systems secure.
Information collected by analytics systems does not have a deletion data and is updated automatically.
Information collected and stored in the booking system Calendly does not have a deletion date but can be deleted at request.
One-on-one meetings on Zoom will not be recorded by the Company. You as a customer may request the meetings to be recorded if none of the terms and conditions are breached.
Group meetings will be recorded with consent or at contract only. Any recordings will be made available as described in each respective group course or program.
9. The data subject's rights
The Company processes data according to the GDPR and applicable laws.
Please note that if you are an EU/EEA resident you may have the right to
Access the information the Company has about you.
Transfer your personal data to other businesses.
Correct errors in the information the Company has about you.
To protest on how the Company processes your personal data.
Limit the Company's processing of your data.
Deletion of data the Company has about you or ask to “be forgotten.”
To be informed about how the Company processes your data.
You also have specific rights regarding automatic decisions. The Company does not use such decisions as per definition on its sites.
The Company uses Meta Pixels for ads. These are based on automatic decisions made by Meta when you have given them consent to use your behavior on their platforms to receive behavior-based ads in your feed.
If you think the Company has mishandled your information, or want to make use of your rights, please write an email to [email protected] and mark the email “about data privacy*. Your request will be answered as soon as possible, at the latest within 2 business days.
You may also direct a complaint about the Company's processing of your data to your local data protection authority, but please do contact the Company directly first so we can try and resolve the matter in a simple and uncomplicated way.
Please be advised that the rights listed above is for EU/EEA residents. If you are located outside the EU/EEA area, other laws and rights may apply.
This will not affect the data collection and data processing of the Company.
10. Data Protection Officer
Jamie Siv Rognstad is responsible for ensuring that the Company processes data according to applicable laws and has the guidance of GDPR consultant Anne Kari Wasenius to ensure all applicable laws are followed.
11. Security
The Company secures your personal data by physical and digital access control, and consistent use of legally valid transfer grounds to the USA, as well as by encryption.
The Company also has data processing agreements with all suppliers as well as a set procedure for handling deviations in line with the GDPR.
The Company adheres to strict confidentiality in all contact with customers, and all attendees in group courses, etc. must give their written commitment to strict confidentiality as well.
12. Contact Information
Inquiries with questions about how the Company processes your data or wishes to exercise your rights can be sent by email to [email protected]
Please mark the subject line with privacy.
Your request will be answered within 2 business days.