Privacy Policy

This Privacy Policy is effective as of February 5, 2022.

At www.mindblaze.xyz (the “Website”) we collect and manage user data according to the following Privacy Policy.

As an independent publisher we take your privacy and security on the Website very seriously and pick our solutions carefully with that in mind.

Ownership

The Website is owned and operated by the Danish company,:

Mindblaze ApS, Bjergegade 14E, 3000 Helsingør, DK-VAT (CVR): 38875329, e-mail: contact@mindblaze.xyz, phone: +45 40 34 56 40.

Mindblaze ApS is responsible for managing your data. Our responsible data officer is: Michell Léon Stjernberg.

Cookies

The Website doesn't use any non-essential cookies. We only use cookies when you choose to subscribe to our services, and to record current session information, but we do not use any permanent cookies. When logging in as a member, you are required to re-login to your account after a certain period of time has elapsed to protect you against others accidentally accessing your account contents.

We only use non-essential cookies to optimize the Website and make your visit as pleasent and well functioning as possible as a Customer. When you visit our website for either browsing or purchasing, you accept our use of non-essential cookies. You can, at any time, delete our cookies from your computer. How you you do it, depends on your browser. Also, we do not use any third-party integrations that store permament cookies on your computer.

(A cookie is a small amount of data, which often includes an anonymous unique identifier, that is sent to your browser from a website's computers and stored on your computer's hard drive.)

Hosting

All of our hosting solutions are completely GDPR, PECR and CCPA compliant.

The Website operates on Ghost, an open source and decentralized platform for independent publishing hosted in The Netherlands (EU), which is regarded as one of the safest jurisdictions in the world. Furthermore, Ghost is owned by a non-profit foundation dedicated to open source software for independent and decentralized publishing. It cannot be bought and altered. All of our newsletters are also based on this platform.

For illustrating content on our site and in our newsletters, we use photos from Unsplash via its API, which uses different forms of tracking technologies. However, according to the privacy policy of Unsplash, "any tracking activity undertaken is via a random identifier that allows Unsplash to understand the approximate number of devices that produces the Photo Interaction Data. Unsplash does not link this identifier with any personal information other than Client IP address and Photo Interaction Data does not identify the user." The tracking by Unsplash through our site is therefore not subject to any non-essential cookies.

For surveys, we use BlockSurvey. BlockSurvey is open source, and end-to-end encrypted. It's based on the Stack blockchain, which is a sustainable blockchain running on top of BitCoin's blockchain. It is a completely decentralized and secure system. Your responses to the surveys are between only you and us, and nobody is looking over your shoulder (unless they are actually standing right next to you). Our use of the platform is based on sending our members anonymous links to it, which means we cannot track our member's use of the link.

For general communication, we use e-mail via a secure server hosted in Iceland, which has the toughest privacy laws in the world.

For online talks and video calls, we use Jitsi, which is an open source and privacy first platform based in the EU. Our use of it is based on sending our members anonymous links to the platform, which means we cannot track our member's use of the link.

For group facilitation, we use the digital whiteboard platform Mural. It's hosted on Microsoft Azure servers in the United States and EU with the highest level of industry encryption built into its core. Futhermore, Mural is legally committed to applying the Privacy Shield Principles to all personal data received from the EEA, UK, and Switzerland in reliance upon the Privacy Shield. This ensures that your data is transferred to the U.S. under the strictest security and privacy measures. Although it's a traditional solution, it's still the best in class. Our use of the platform is solely based on sending our members anonymous links to it, which means we cannot track our member's use of the link. Note, though, that Mural uses cookies when you visit their site, but since we do not integrate with it, we cannot track your visit to it, and therefore refer to their privacy policy for your use of it.

For video hosting, we use Lbry, and its browser based player Odysee, which is a blockchain based protocol devoted to privacy in publishing. It uses cookies when you visit the site, but we do not integrate with it, and we cannot track your visit to it. Therefore we refer to their privacy policy for your use of it.

For analystics, we use Plausible, which is open-source and privacy focused. It doesn't use cookies and is fully compliant with GDPR, CCPA and PECR. It's made and hosted in the EU, and powered by European-owned cloud infrastructure.

To distribute our books, we use basically all distributors in the world, including Amazon, Apple, Barnes & Nobles, Scribd, Saxo, etc. We don't integrate with them, but only link to their stores. Therefore, we have no control on their collection of your data and your privacy on their sites, and we take no responsibility for it. Your usage of these stores to purchase our books is entirely your own responsibility. Unfortunately, we cannot guarantee your privacy in that context.

Data Collected

As a general rule, we only collect the information you provide directly to us voluntarily, and we only do it to be able to provide you with our products and services.

For example, we collect information when you subscribe to our newsletters, make a purchase, participate in online-programs or any interactive features of our products and services, fill out a form or survey, request customer support, or otherwise communicate with us.

The types of information we may collect include your name, email address, physical address, and other contact or identifying information you choose to provide.

We don't collect any credit card information, as this is handled by Stripe (see Terms & Conditions).

In addition, we collect anonymous data from every visitor of the Website to monitor traffic and fix bugs. For example, we collect information like web requests, the data sent in response to such requests, the Internet Protocol address, the browser type, the browser language, and a timestamp for the request.

Any personal information given to us from online surveys, or during personal sessions, online seminars, community activities etc. is considered strictly confidential.

To deliver our products and services, we may or may not use third-party platforms, services, and plugins. Please note that we take no responsibility for any third-party privacy policies.

We register the following information about you in the following scenarios,

Free digital subscriptions on our website: E-mail address.

Premium digital subscriptions on our website: E-mail address, name, and the answers you provide in surveys.

Purchase of physical products from our website: Name, address, e-mail address, phone number.

The purpose of registering and managing the information,

Free digital subscriptions: To register your contact information, so we can send you our newsletters and relevant information.

Purchase of digital premium subscriptions: To register your contact information, so we can deliver the digital products to you, send you information about the product, send you any eventual certificates, manage your purchase in our administration, offer you service in case there is a problem with the delivery, register your contact information and answers in the surveys so we can e-mail you your answers, as well as offer you additional products and services as part of our marketing activities.

Purchase of physical products and services: To register your contact information, so we can deliver the pysical products to you, send you information about the product, manage your purchase in our administration, offer you service in case there is a problem with the delivery, as well as offer you additional products and services as part of our marketing activities.

Legal foundation for our collection and management of your personal information:

When we collect and manage your personal information it always happens according to the current legislation regarding data protection and privacy policies. As a Danish company residing in the European Union, we are fully GDPR compliant.

Use of the Data

We only use your personal information to provide you the Website products and services, to communicate with you about the Website or the services, and to manage you as our customer.

We employ industry standard techniques to protect against unauthorized access of data about you that we store, including personal information.

Furthermore, we do not share personal information you have provided to us without your consent, unless:

Doing so is appropriate to carry out your own request.

We believe it's needed to enforce our legal agreements or that is legally required.

We believe it's needed to detect, prevent or address fraud, security or technical issues.

Sharing of Data

Your personal information is shared with relevant employees involved in delivering our digital products and providing any services related to them (such as support). It may also be shared with relevant accounting and technical personnel, including third-party accountants and technicians. In case of the latter, it will be done only if absolutely necessary, and if so, with strict confidentiality.

As a rule, we don't share your personal information with third parties, and we don't sell your data. However, aggregated, anonymized data may be periodically transmitted to external services to help us improve the Website and service.

To give you the option of sharing our content of the Website and our newsletters on social media, such as Twitter and Facebook, we use social buttons. Your use of these third party services is entirely optional, but you should know that they are able to track your visit to our Website because of these social buttons. If you are against such tracking, we recommend that you use a browser extension that prevents them from doing so.

We are not responsible for the privacy policies and/or practices of any third party services, and you are responsible for reading and understanding those third party services' privacy policies.

Opt-Out, Communication Preferences

You may modify your communication preferences and/or opt-out from specific communications at any time. Please specify and adjust your preferences, and contact us if you need help.

Security

We take reasonable steps to protect personally identifiable information from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. But, you should keep in mind that no Internet transmission is ever completely secure or error-free. In particular, email sent to or from the Website may not be secure.

General deletion policy

We keep your personal information for a maximum period of 5 (five) years counting from when you have last interacted with us. This includes opening a newsletter (including campaign related newsletters), responding to a survey, making a purchase, commenting on a thread in our online community, or otherwise interacting and communicating with us with direct relation to the information, products and services of the Website.

Your rights

You have a number of rights under the Data Protection Regulation and the IMI Regulation in relation to our processing your personal data. If you want to make use of your rights, please e-mail us: contact@mindblaze.xyz.

Right to information (right of access)

You have the right to access the information we process about you and certain supplementary information.

Right to rectification (correction)

You have the right to have incorrect information about yourself corrected.

Right to transmission (data portability)

You have the right to receive your personal data in a machine-readable format and send it to another controller.

Right to deletion

In very special cases, you have the right to have your personal data deleted before the deadlines set in our general deletion policy.

Right to restrict processing

In certain situations, you have the right to have the processing of your personal data restricted. If the processing of your personal data is restricted, we may only process your information - apart from for storage purposes - with your consent, or for the purpose that legal claims can be established, asserted or defended, or to protect a person or important public interests.

Right to object

In certain cases, you have the right to object to our otherwise lawful processing of your personal data.

About Children

The Website is not intended for children under the age of 18. We do not knowingly collect personally identifiable information via the Website from visitors in this age group.

Changes to the Privacy Policy

We may amend this Privacy Policy from time to time. Use of information we collect now is subject to the Privacy Policy in effect at the time such information is used.

If we make major changes in the way we collect or use information, we will notify you by posting an announcement on the Website or emailing you.

Complaints

If you wish to file a complaint about this Privacy Policy, you are welcome to do so to The Danish Data Protection Agency: https://www.datatilsynet.dk/english/

Governing Law

This Privacy Policy, and any dispute or claim arising out of, or related to them, shall be governed by and construed in accordance with the internal laws of Denmark without giving effect to any choice or conflict of law provision or rule.

Any legal suit, action or proceeding arising out of, or related to, this Privacy Policy or the Website shall be instituted exclusively in the federal courts of Denmark in the language of Danish.