Legal
Privacy Policy
Last updated · May 17, 2026
The Unhooked Method™ ("we", "us", "our") respects your privacy. This Privacy Policy explains what personal data we collect when you visit theunhookedmethod.com or purchase the course, why we collect it, how we use it, who we share it with, and what rights you have. We follow the EU General Data Protection Regulation (GDPR) and equivalent privacy laws.
1. Who we are
The Unhooked Method is operated by Kristina Oz, based in the Netherlands. For any privacy question, write to krudstina@gmail.com or message us on WhatsApp at +31 6 18784896.
2. What we collect
2.1 Information you give us directly
- Email address — when you purchase the course (via PayPal) or contact us.
- Name — if you choose to share it when contacting us on WhatsApp or by email.
- Photos / receipts — only if you voluntarily send them to us on WhatsApp during the course's two optional intermissions. We store them only as long as needed to respond, then delete.
2.2 Information collected automatically
- Usage data — pages visited, time on page, scroll depth, clicks. Collected via Microsoft Clarity (anonymised heatmaps and session recordings — no full keystroke capture, sensitive form fields are masked).
- Device + browser info — browser type, operating system, approximate location (city-level via IP). Used for analytics and to fix display bugs.
- Cookies — see Section 6.
3. Why we collect it (legal basis)
- To deliver the course you purchased — contract performance (GDPR Art. 6(1)(b)).
- To answer your questions on WhatsApp or email — contract performance + legitimate interest.
- To improve the site — legitimate interest (analytics).
- To run advertising — consent (where required) and legitimate interest. You can opt out at any time via your browser's tracking preferences.
- To comply with tax and accounting law — legal obligation (we keep purchase records for 7 years as required in the Netherlands).
4. Who we share data with
We do not sell your data. We share it only with the third-party services we rely on to operate:
- PayPal — payment processing. PayPal collects payment info directly; we never see your card or bank details. See paypal.com/privacy.
- Meta (Facebook) Pixel + Conversions API — measures which ads brought you and which actions you took (page view, purchase). Lets us run ads efficiently. See Meta Privacy Policy.
- Microsoft Clarity — anonymised heatmaps and session recordings. Sensitive inputs (passwords, payment fields) are automatically masked. See Microsoft Privacy Statement.
- Datahash — server-side relay of Meta events (helps deduplication, no extra data shared beyond what Pixel already sees).
- Vercel — hosts theunhookedmethod.com. May process basic request logs (IP, page) as part of normal hosting.
- WhatsApp / Meta — if you contact us on WhatsApp, message content is handled by WhatsApp's encryption + your data is governed by their policy.
5. International transfers
Some of the providers above (PayPal, Meta, Microsoft, Vercel) are based in the United States. Where data is transferred outside the EU/EEA, it's done under the EU Standard Contractual Clauses or an equivalent valid mechanism.
6. Cookies and similar technologies
We use a small number of cookies and similar tracking pixels for:
- Strictly necessary — to remember your course progress (localStorage). Cannot be disabled.
- Analytics — Microsoft Clarity for heatmaps and session recordings.
- Advertising — Meta Pixel + Datahash for ad attribution.
You can block cookies via your browser settings. Blocking advertising cookies will not affect access to the course you purchased.
7. How long we keep your data
- Purchase records (email, transaction) — 7 years (Dutch tax law).
- WhatsApp messages — until you ask us to delete them, or until the conversation concludes naturally.
- Photos sent during intermissions — deleted within 30 days of the conversation closing.
- Analytics data (Clarity) — retained per Microsoft's default (currently 1 year).
- Ad tracking data (Meta) — retained per Meta's policy (currently up to 2 years).
8. Your rights (GDPR)
Under EU law you have the right to:
- Request a copy of the personal data we hold about you (access).
- Ask us to correct anything that's wrong (rectification).
- Ask us to delete your data (erasure / right to be forgotten).
- Ask us to limit how we use your data (restriction).
- Receive your data in a portable format (portability).
- Object to our use of your data for marketing.
- Withdraw consent at any time (where consent was the legal basis).
To exercise any of these rights, email krudstina@gmail.com. We aim to respond within 30 days. You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).
9. Children
The course is intended for adults (18+). We do not knowingly collect data from anyone under 18. If you believe a child has provided us with personal data, contact us and we'll delete it.
10. Changes to this policy
We may update this policy from time to time. The "Last updated" date at the top will always reflect the latest version. Material changes will be announced via email to course members.
11. Contact
Any question about your privacy: email krudstina@gmail.com or message +31 6 18784896 on WhatsApp.