Privacy Policy

This privacy policy contains information on how Jamie Siv Rognstad, website www.thebigimpact.com, (hereinafter referred to as the Company) processes your personal information.

You are strongly encouraged to read this privacy policy and the terms and conditions, as by visiting and using the content on the Company`s website, as well as by purchasing packages, courses, and programs, you agree to the terms and conditions described in these.

Last updated and valid from September 16th, 2024.

1. Data controller

Jamie Siv Rognstad is responsible for the data processing being done at the Company.

2. Personal data being stored

Depending on the service or product you order, the Company stores, with your consent: Name and email address.

The Company also stores purchase history, behavior patterns on websites, registration pages and newsletters that are sent out and in online courses i.e. information about how the individual customer navigates the pages.

The Company also stores information given on or through social media.

Payment information for the purchase of one or more of the Company`s services is stored in Stripe.

When you book a meeting in Calendly, the Company stores all the information you give on the booking page.

When participating in group meetings on Zoom, all information shared by each participant is stored, transcribed and taken notes from, and made available as described on the program`s sales page.

On July 10th 2023, a new framework called the EU-US Data Privacy Framework (DPF for short) was launched and implemented so that all businesses on the DPF list are considered safe to transfer data to from the EU/EEA area.

Based on the adequacy decision from the EU, it is now also legally sound to send data from the EU/EEA based on the new EU Standard Contractual Clauses (SCC for short)

The Company does all data transfers according to applicable laws.

3. Data of minors

The Company does not knowingly process data about persons below the age of 18 years.

If persons under 18 wish to register for the Company`s newsletter and/or purchase/participate in the Company`s programs/packages/courses, explicit written consent from parents or legal guardians is required.

If the Company is made aware that a minor’s data is being processed, it will immediately delete all data about the person found in the systems and programs used.

4. Purpose of processing

The Company processes the information to be able to carry out the obligations it has according to the agreement with you.

The Company also uses the information to be able to provide you with information, offers and services in connection with your order via e-mail, possibly also by phone, SMS, direct messages on social media, and any mailings with your consent, as well as for your registration/participation in activities such as challenges, courses and coaching on the initiative of the Company.

Personal information that Aweber and Funnel Gorgeous, the Company`s newsletter provider gives access to, as well as direct feedback from those registered for the newsletters, is used to document the consent of email marketing, as well as measure quality, engagement and interest so that more content can be made accordingly.

If you use Apple Mail, you can choose to activate Apple Mail Privacy Protection. Information on how this is done can be found here:

https://support.apple.com/no-no/guide/iphone/iphf084865c7/ios

When sending larger files of data via FileMail, information on email address, content and IP address is processed to ensure the file is sent to the right place.

The Company`s pages on social media like Facebook, Instagram and LinkedIn also have built-in analytics tools to create anonymous reports on how the various posts/videos are doing, so I/we can create more content in line with what followers show the most interest in.

The Company tracks the percentage of opened emails but does not use Google Analytics to see what links have been clicked on in newsletters.

The other functions, i.e. day, date, and time of registration as well as the number of emails received, cannot be de-activated by the Company, so if you do not wish to be included in such analysis, you must not subscribe to the Company newsletter or interact with the Company on social media.

The Company only uses the built-in analytics in each of the systems used for website traffic analysis. Google Analytics is not used.

The Company also have measures in place to secure content, prevent spam and hacking and create website backup copies.

Information shared in Zoom meetings either individually or in groups is processed to give you as a customer the follow-up you request. Notes and transcriptions of all meetings is done with the help of Fathom AI and will be made available as described on sales pages.

5. Legal basis for processing

Information about name, email address, physical address, telephone number and Tax ID is used to fulfill orders and purchase agreements between you and the Company. The legal basis for this processing is Art 6.1.b Contract in the GDPR.

Where you have given consent, the information will also be used to provide you with information, offers and services in connection with your order or purchase via email, telephone, and SMS, as well as direct messages on social media. The legal basis for this processing is Art 6.1.a Consent in the GDPR.

You can at any point refuse to receive such information from the Company.

Purchase history and insight into behavior in social media posts are used to provide recommendations and promote products and services especially adapted to you as a user. The basis for this processing is Article 6.1.a Consent in the GDPR as this is given to each registered when they signed up for the individual social media.

The Company also use information about behavioral patterns on landing pages, openings of and direct feedback in newsletters to gain insight into

How many people visit the landing page.
How many people order freebees.
How many emails have successfully reached the individual inboxes.
Interest and preferences

and then seek to improve the Company content based on this. The Legal Basis for the insight of opened emails is Article 6.1.a Consent.

The legal basis for the other insights is Art 6.1.b Contract since it is not possible for the Company to deactivate these analytics in the systems used by the Company.

Again, if you use Apple Mail, you can stop the collection of information such as IP addresses and open email tracking by activating Apple Mail Privacy Protection. Please search Apple Mail Privacy Protection online as there are different instructions for iPhone and Mac.

If you do not use Apple Mail, the Company unfortunately have no option to turn of the aforementioned information in Aweber and Funnel Gorgeous. This means that if you do not want to be part of such an analysis, you must not sign up for the Company`s freebee and newsletter.

The Company store the date and time for each newsletter signup to document consent. The legal basis for this processing is Art 6.1.c Legal obligation in the GDPR.

The Company does not collect or process any special categories of personal data when signing up for a freebee, newsletter or paying for a course, program, or service.

When sending larger files via FileMail, information such as email address and IP address is necessary to process to ensure delivery by Art 6.1.b Contract.

During 1-1 and/or group meetings via Zoom, it is natural that the conversations may include information about particularly sensitive information. This information is disclosed, discussed, and responded to according to Art 6.1.a Consent and Art 9.2.a Explicit consent in the GDPR.

To deliver extraordinary customer service and follow-ups, the Company automatically records 1-1 and group Zoom sessions. All recordings, notes and transcriptions will be created with Fathom AI and made available as described on each sales page/booking page. This is done under Article 6.1.a Consent and Article 9.2.a Explisit consent in the GDPR.

Both parties are also subject to strict confidentiality as described in the Terms and Conditions.

There is a full opportunity for participants to ask questions on the agreed platforms in the duration of the course/program.

All information collected during 1-1 work is stored in the Company`s systems for at least 12 months after completion. This is to document the work done for the Customer should there be any questions about this. The legal basis for this processing is Art 6.1.f Legitimate interest in documented performed work for clients.

Information collected at any purchase is stored for bookkeeping and accounting matters. The legal basis for this processing is Art 6.1.c Legal obligation.

6. How information is collected – including cookies.

All the information you choose to give on the Company`s websites will be stored.

The Company uses cookies on landing pages (where you sign up for offers – free or paid) and in newsletters to gain insight into how many signs up for newsletters, which newsletters bounces and not so that the Company can attempt to improve these numbers.

The Company also use cookies to measure the interest and quality of the newsletters being sent out, also to improve the content based on these insights.

The legitimate basis for this processing is Art 6.1.a Consent.

The Company`s pages on social media such as Instagram, Facebook, LinkedIn, X (Twitter) and YouTube have built-in anonymized analytics tools that are used to see which content performs the best so the Company can create more content in line with its followers` interests.

Regarding automatic decisions, the Company does not use anything that is considered such decisions, except for Meta Pixels for advertising.

The Company use Meta Pixels that show our ads to the relevant audience relative to their activity on Facebook and Instagram.)

Please note that this privacy policy only applies to the Company`s own websites.

Browsers, search engines and social media you use have their own privacy policies. For you to have the greatest possible control over what information you share with them, you are advised to read their privacy policies separately and familiarize yourself with how you can choose which data you share.

7. Transfer of data to third parties

On July 10th, 2023, a new framework between the US and EU was launched, called the EU-US Data Privacy Framework (DPF for short) and made valid with immediate effect.

The Company makes all transfers of data in accordance with the applicable laws requirements and regulations.

The Company will not share, sell, transfer, or otherwise disclose your personal data to others without your consent unless the Company is legally obliged to or has a documented legitimate interest in doing so.

To be able to fulfill its obligations under the agreement with you, the necessary information is disclosed to the Company`s suppliers.

ProISP is where the company hosts its business email address. They are a Nordic company storing all data in the EU/EEA area. ProIsp is also the host of company domains.

Calendly is the system used by the Company for scheduling of meetings. It is US-based and certified in DPF.

The online meeting provider Zoom, Fathom AI (notes, transcription of meetings etc) and the payment solution Stripe are US based, and all are certified in the new framework as mentioned above (from here referred to as DPF).

The Company also use social media such as Instagram, Facebook, and LinkedIn. Facebook and Instagram provide anonymous insights into age groups, gender, and location of those who interact with the Company on these platforms, and insight to how the various posts are performing. The Company does not use the paid version of LinkedIn and therefore does not have analytics insights there.

When communicating with the Company via direct messages on social media, the username and content of messages are stored. The Company is not responsible for what kind of information these social media platforms collect about you otherwise.

The Company uses Meta Pixels to run ads and analyze ad performance. If you have given Meta your consent to use your activity data to show behaviour-based ads and you fit the target set up by the Company, you may see ads from the Company across Meta Platforms. In this matter, the Company has a Joint Controller Addendum with Meta.

Meta and LinkedIn are certified in the new DPF.

The Company also use products from Microsoft and Google to create and deliver various workbooks and take notes from coaching sessions.

Both are certified in the DPF.

For notes on special categories of data, the Company use a GDPR-secure cloud storage system.

The Company`s host of online meetings is Zoom. The Company does not collect any other information that your email address to which the meeting link is sent to. You choose what kind of information you share in these meetings. Zoom is certified in the DPF.

All coaching sessions are automatically recorded, transcribed and taken notes from by the Company with the help of Fathom AI and made available to you as agreed or written on the sales page/booking page. Fathom AI is certified in the DPF.

The payment solution Stripe is certified in the DPF, and both the accounting system and the accounting firm used by the Company are Norwegian.

Please be reminded that this privacy policy ONLY applies to the personal data collected by this individual Company.

The Company suppliers and systems may collect data that the Company does not and do not have insight into, therefore you are advised to read each privacy policy separately:

Proisp (only in Norwegian)

Tripletex (only in Norwegian)

DNB (only in Norwegian)

8. Data retention

Information collected in connection with your order/purchase is stored in the Company`s active customer register for 3 years from the date of last contact, or at your request unless it violates legal obligations or documented legitimate interests from the Company`s side.

Information for bookkeeping and accounting will be stored for at least 5 years according to applicable laws.

Information collected in connection with email marketing will be deleted at the latest 60 days from un-subscription or at your request.

Information collected and processed for security reasons has no deletion data set. The security systems will store the information for as long as it is necessary to keep the Company's websites and systems secure.

Information collected by analytics systems does not have deletion data and is updated automatically.

Information collected and stored in the booking system Calendly does not have a deletion date but can be deleted at request.

Information collected through Fathom AI on all Zoom meetings will be recorded by the company and made available as described on sales pages/booking pages. The information will be stored for 3 years.

Information processed when sending larger files via FileMail will be retained for 7 days after the file is received.

Information collected on open online sources via Keywords Everywhere does not have a deletion data as it is automatically updated.

9. Rights for the registered

The Company processes data according to the GDPR and applicable laws.

Please note that if you are an EU/EEA resident you may have the right to

Access the information the Company has about you.
Transfer your own personal data to other businesses.
Correct errors in the information the Company have about you.
To protest on how the Company process your personal data.
Limit the Company`s processing of your data.
Deletion of data the Company has about you or ask to “be forgotten.”
To be informed about how the Company process your data.

You also have specific rights regarding automatic decisions.

The Company does not on its own sites use such decisions as per definition.

The Company uses Meta Pixels for ads. These are based on automatic decisions made by Meta when you have given them consent to use your behaviour on their platforms to receive behaviour-based ads in your feed.

If you think the Company has mishandled your information, or want to make use of your rights, please write an email to jamie@manamarketing.no and mark the email “about data privacy*. Your request will be answered as soon as possible, at the latest within 2 business days.

You may also direct a complaint about the Company`s processing of your data to your local data protection authority, but please do contact the Company directly first so we can try and resolve the matter in a simple and uncomplicated way.

Please be advised that the rights listed above are for EU/EEA residents. If you are located outside the EU/EEA area, other laws and rights may apply.

This will not affect the data collection and data processing of the Company.

10. Data Protection Officer

Jamie Siv Rognstad is responsible for ensuring that the Company process data according to applicable laws and have the guidance of GDPR-consultant Anne Kari Wasenius to ensure all applicable laws are followed.

11. Security

The Company secures your personal data by physical and digital access control, and consistent use of legally valid transfer grounds to the USA, as well as encryption.

The Company also has data processing agreements with all suppliers as well as a set procedure for handling deviations in line with the GDPR.

The Company adheres to strict confidentiality in all contact with customers, and all attendees in group courses etc. must give their written commitment to strict confidentiality as well.

12. Contact information

Inquiries with questions about how the Company process your data or wishes to exercise your rights can be sent by email to jamie@manamarketing.no

Please mark the subject line with *privacy*.

Your request will be answered within 2 business days.

Enter your text here...