Donnacode - Privacy Policy

Last updated: July 12, 2025

At Donnacode, we are committed to protecting your privacy and handling your personal data responsibly, transparently, and in compliance with the General Data Protection Regulation (EU 2016/679), the Swedish Data Protection Act (Dataskyddslagen), and other applicable privacy regulations.

This Privacy Policy explains how we collect, use, share, and protect your personal information when you interact with our website, services, or communications.

1. Who We Are

Donnacode is a Sweden-based digital service provider offering:

GoHighLevel solutions and automations
Coaching and consulting services
Sales funnel design and implementation
Showit Website Designing
Marketing services, including paid ads and strategy

For questions regarding this Privacy Policy, contact us at:
[email protected]

2. What Personal Data We Collect

We may collect the following categories of data from you:

Data you provide directly:

Full name
Email address
Phone number
Business or company name
Billing and payment details
Messages, form submissions, or support requests
Course or consultation registration details

Data we collect automatically:

IP address and location (approximate)
Browser type and device information
Pages visited and user behavior (via cookies and analytics tools)
Form engagement and user interactions

Sensitive data:

We do not knowingly collect sensitive personal data (e.g., health, race, religion). Please avoid sharing such data.

3. Legal Basis for Processing

We process your personal data based on one or more of the following legal grounds:

Contract – to provide services you request or purchase
Consent – for marketing communications or cookies
Legitimate Interest – to improve our services, security, and communication
Legal Obligation – for compliance with Swedish accounting, tax, and legal requirements

You may withdraw your consent at any time by contacting us or using unsubscribe options in emails.

4. How We Use Your Personal Data

We use your information to:

Deliver the services you’ve purchased or subscribed to
Communicate with you about services, projects, or support
Send marketing emails (with consent or legitimate interest)
Analyze website and service usage (to improve performance)
Maintain legal and financial records
Prevent fraud and ensure data security

5. Cookies and Analytics

Our website uses cookies and similar tracking technologies (e.g. Google Analytics, Facebook Pixel, Meta Ads, Hotjar) to:

Understand how visitors interact with our website
Personalize content and advertising
Improve user experience

We respect your browser’s “Do Not Track” settings and ask for your consent where required. You can manage your preferences via our cookie banner or your browser settings.

6. Data Sharing & Third-Party Processors

We only share your personal data with trusted third parties when necessary:

Service platforms: GoHighLevel, Stripe, Google, Meta/Facebook, Mailchimp, Zapier, Calendly, etc.
Payment and accounting providers: Stripe, PayPal
Analytics tools: Google Analytics, Meta Pixel
Legal or regulatory bodies, when required by law

All third parties are bound by data processing agreements and required to comply with EU data protection standards.

7. International Transfers

Some of our service providers (e.g., GoHighLevel, Meta, Stripe) are based outside the European Economic Area (EEA), including the United States. In such cases, we ensure your data is transferred with adequate safeguards, including:

Standard Contractual Clauses (SCCs)
Data Processing Agreements (DPAs)

You acknowledge and agree to these transfers by using our services.

8. How Long We Store Your Data

We keep personal data:

For as long as you have an active account or ongoing relationship with us
Up to 24 months after service completion, unless a longer retention is required by law
For 6 years where necessary for legal, accounting, or tax purposes

You may request deletion at any time unless legal obligations prevent it.

9. Your Data Protection Rights

You have the right to:

Access the personal data we hold about you
Correct inaccurate or incomplete data
Delete your data ("Right to be Forgotten")
Object to data processing based on legitimate interest
Withdraw consent at any time
Restrict processing under certain conditions
Data portability – receive a copy of your data in machine-readable format

To exercise any of these rights, email us at [email protected]. We may request proof of identity before processing your request.

10. Children’s Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect data from children. If you believe we have collected data from a minor, contact us to have it deleted immediately.

11. Data Security

We implement appropriate technical and organizational measures to safeguard your personal data, including:

Secure SSL encryption
Access controls and staff confidentiality
Monitoring for breaches or vulnerabilities

However, no method of transmission is 100% secure. You share data at your own risk.

12. Your Right to File a Complaint

If you believe we have mishandled your data, you can lodge a complaint with:

Integritetsskyddsmyndigheten (IMY)
Swedish Authority for Privacy Protection
📍 imy.se

We encourage you to contact us first at [email protected] so we can resolve the issue promptly.

13. Updates to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or the law. The latest version will always be available on our website with the date of the last update.