The Healing Blueprint is a single-product digital download by Jane Faehring, LMFT. We collect the minimum amount of personal data needed to process a one-time purchase and deliver your file. We do not run advertising profiles, sell data to third parties, or store payment card details on our servers.
1. What we collect
When you purchase The Healing Blueprint we collect:
- Order data: your email, name, purchase amount, currency, country of billing, and timestamp.
- Payment data: processed by Stripe, Lemon Squeezy, Gumroad, or Hotmart, depending on your region. We never see or store your card number; we receive a transaction ID and last four digits only.
- Delivery data: your email address to send the PDF, audio companion, and printables.
- Site analytics: anonymous pageview metrics through Meta Pixel (Facebook Conversions API), used solely to optimise ad delivery to people likely to want the guide. You can opt out via your device or browser ad settings.
- Support correspondence: any email you send us, retained for as long as needed to resolve the issue and for 24 months after.
2. Why we collect it
We collect data only for these purposes:
- To deliver the product you bought.
- To process refunds within the 30-day guarantee window.
- To answer your questions when you write to us.
- To improve the conversion path of paid advertising (aggregate, not individual targeting).
- To comply with tax, accounting, and consumer-protection laws in your region.
3. Who we share it with
We share data with the following sub-processors and only the minimum required:
- Payment processor in your region (Stripe, Lemon Squeezy, Gumroad, or Hotmart) for the transaction.
- Email delivery (Postmark or AWS SES) to send your download link, receipt, and support replies.
- Meta Platforms Inc. for ad measurement only, via Conversions API. Aggregated event data, no PII shared without your prior consent through the platform.
- Our hosting provider for serving the website itself.
We do not sell or rent your data to anyone. We never share data with marketing networks beyond the Meta Pixel events above.
4. How long we keep it
Purchase records: 7 years (tax and accounting requirement in most jurisdictions). Support emails: 24 months after the last reply. Pixel events: aggregated immediately, no individual records on our side after 90 days. You can request deletion of identifiable records at any time within these limits (see country-specific rights below).
5. How we protect it
TLS 1.3 in transit. Encrypted at rest in databases of named sub-processors. No card data ever touches our infrastructure. Access to support inbox is restricted to Jane Faehring and one assistant under signed NDA.
6. Cookies and tracking
This website sets exactly one first-party cookie for traffic analytics (anonymous session ID, 24-hour expiry). The Meta Pixel sets third-party cookies for ad measurement. You can disable tracking via browser settings or by using a privacy extension.
7. Children
The Healing Blueprint is not directed at anyone under 18. We do not knowingly collect personal data from minors. If you believe a minor has submitted data, contact us and we will remove it.
8. Changes to this policy
We will post any material change at this URL with a new "Last updated" date. Material changes that affect existing customers will also be emailed.
9. Your rights by country
Specific rights depend on where you live. The blocks below summarise them. The full text of each law is linked.
US United States · CCPA, CPRA, state laws
You have the right to: know what we collected about you in the last 12 months, request deletion, opt out of any sale or sharing of personal information (we do not sell or share), and not be retaliated against for exercising these rights.
How to use them: email privacy@thb.nortmarketing.com.br from the email used to purchase. We will verify and respond within 45 days. If you live in California, you may also designate an authorised agent.
This policy is written to comply with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), and the equivalent statutes of Colorado, Connecticut, Utah, Virginia, Texas, Oregon, and other US states with active privacy laws as of May 2026.
UK United Kingdom · UK GDPR + Data Protection Act 2018
Lawful basis: contract (delivering your purchase), legitimate interest (ad measurement and fraud prevention), and consent where required.
Your rights: access, rectification, erasure, restriction, portability, and objection. Right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk.
Email privacy@thb.nortmarketing.com.br to exercise any of the above. We respond within 30 days.
EU European Union · GDPR
Same rights as the UK block above, under Regulation (EU) 2016/679. You may also contact the data protection authority of your country of residence. Our representative for GDPR purposes is reachable at the same privacy address.
CA Canada · PIPEDA + CASL
We comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) and the Canadian Anti-Spam Legislation (CASL). All commercial email is sent only to addresses that purchased the guide or explicitly opted in. Every email includes an unsubscribe link that we honour within 10 business days.
To request access or deletion: privacy@thb.nortmarketing.com.br. Complaints may be filed with the Office of the Privacy Commissioner of Canada at priv.gc.ca.
AU Australia · Privacy Act 1988 + Spam Act 2003
We handle personal information in line with the Australian Privacy Principles (APPs). You have the right to access, correct, and request deletion of your personal information.
Commercial email follows the Spam Act 2003: opt-in only, sender identification present, working unsubscribe in every message. Complaints can be lodged with the Office of the Australian Information Commissioner at oaic.gov.au.
BR Brasil · LGPD
De acordo com a Lei Geral de Proteção de Dados (LGPD, Lei 13.709/2018), você tem direito a confirmar o tratamento, acessar, corrigir, anonimizar, eliminar e revogar consentimento de seus dados pessoais. Contato do encarregado: privacy@thb.nortmarketing.com.br. Em caso de violação não resolvida, você pode acionar a Autoridade Nacional de Proteção de Dados (ANPD) em gov.br/anpd.
10. Contact
Privacy questions, data requests, or complaints:
Email: privacy@thb.nortmarketing.com.br
Response time: within 7 business days for general questions, within 30 days for formal data requests.
Postal address: available on request for legal correspondence.