Privacy Policy

1. Who we are

Hanna Ideäng (sole proprietorship under Momo Jord AB, org. no. 559359-5331) operates the website hannaideang.com and offers courses, community and coaching for women. Your privacy is important to us.

2. Personal data we collect

When you sign up for our newsletter, purchase a course or join our community, we collect:

• Name and email address
• Payment information (handled by third-party providers, see section 5)
• Technical information such as IP address, browser type and page views

3. How we use your data

We use your data to:

• Deliver courses and community services
• Send newsletters and updates (you can unsubscribe at any time)
• Analyse and improve the website's usability
• Measure the effectiveness of marketing (with your consent)

Legal basis: consent (Art. 6.1a GDPR) for marketing and cookies, legitimate interest (Art. 6.1f) for website functionality, and performance of contract (Art. 6.1b) for purchases.

4. Cookies and tracking technologies

We use cookies and similar technologies. Marketing and analytics cookies are only activated after you have given your consent via our cookie banner. You can change your choice at any time by clearing your browser's local storage.

Necessary cookies: None — the site works without cookies.

Analytics (requires consent):

• Google Analytics 4 (Google Ireland Ltd) — measures page views, scroll and clicks. IP addresses are anonymised. Data is stored for up to 14 months. Google's privacy policy

Marketing (requires consent):

• Meta Pixel (Meta Platforms Ireland Ltd) — measures visits and conversions for advertising on Facebook and Instagram. Data is transferred to Meta via client and server (Conversions API). Meta's privacy policy

Fonts:

• Google Fonts — fonts are loaded from Google's servers. When loading, your IP address is sent to Google. Google's privacy policy

5. Third-party providers

We share personal data with the following services that process data on our behalf:

• Kit (ConvertKit) — email marketing and automation (name, email). Based in the USA, EU-US Data Privacy Framework.
• Kajabi (via pleasurehabits.se) — course platform and payment processing. Based in the USA.
• Cloudflare — hosting, security and CDN. Based in the USA, EU-US Data Privacy Framework.
• Google (Analytics, Fonts) — see section 4.
• Meta (Pixel, Conversions API) — see section 4.

Transfer to third countries (USA) is supported by the EU-US Data Privacy Framework and/or Standard Contractual Clauses (SCC).

6. Retention periods

• Newsletter subscribers: until you unsubscribe
• Course participants and community members: during membership + 12 months
• Analytics data (GA4): up to 14 months
• Meta Pixel data: according to Meta's policy (up to 180 days)
• Accounting records: 7 years according to Swedish bookkeeping law

7. Your rights

Under the GDPR you have the right to:

• Access your personal data
• Request correction of inaccurate data
• Request erasure ("the right to be forgotten")
• Request restriction of processing
• Object to processing based on legitimate interest
• Receive your data in a portable format (data portability)
• Withdraw consent (without affecting the lawfulness of processing already carried out)

You also have the right to file a complaint with the Swedish Authority for Privacy Protection (IMY), imy.se.

8. Contact

For questions about your privacy, contact us at [email protected].