Last updated: 2026-07-05
This page explains what personal data we collect when you visit theexitframework.com or obtain a product from The Exit Architect™, why we collect it, and what rights you have. We've written it in plain language on purpose.
Who is responsible
Impish Things KB, organization number 969746-8313, is the data controller for the personal data described here.
Contact: [email protected]. Business address: Nålvägen 3, 931 57 Skellefteå, Sweden.
What data we collect, and why
When you sign up for the free Exit Readiness Map, we collect your name and email address, so we can deliver it and send the related follow-up emails you opted into.
When you buy a paid product (The Ledger or The Atlas), we collect:
- Your name
- Your email address
- Your billing country, and any tax-related information our payment processor requires
- The fact that you purchased the product, and when
We collect this because we need it to process your order, deliver the product, send purchase-related emails (receipt, access instructions, delivery issues), and meet our bookkeeping and tax obligations under Swedish law.
When you visit the site, our hosting platform may log basic technical data (IP address, browser type, pages visited) for security and performance. We don't run additional analytics beyond what the platform provides by default. If that changes, we'll update this policy.
We do not collect any data from inside the workbooks or from your conversations with The Exit Architect GPT. Your work inside a workbook stays on your device. Your GPT conversations happen in your own ChatGPT account and are governed by OpenAI's privacy policy, not ours.
Legal basis for processing
Under GDPR, we rely on:
- Contract performance, for processing your order and delivering the product
- Legal obligation, for bookkeeping and tax records
- Consent, for sending the free-download follow-up emails and any marketing you opted into
- Legitimate interest, for basic site security and for answering support requests you send us
Who we share data with
We share the minimum necessary data with:
- Stripe, to process your payment
- Ivorey, to deliver your product and send order-related emails
- SiteGround, which hosts the website
- Swedish tax authorities, where required by law
We do not sell your data. We do not share it with advertisers. We do not use it to build profiles of you.
How long we keep it
Order and billing records: seven years, as required by Swedish bookkeeping law.
Support correspondence: up to two years after the last contact.
Marketing or waitlist emails, if you opted in: until you unsubscribe.
Your rights under GDPR
You have the right to:
- Access the personal data we hold about you
- Correct it if it's wrong
- Ask us to delete it, where we're not legally required to keep it
- Object to or restrict certain uses
- Receive your data in a portable format
- Withdraw consent at any time, where processing is based on consent
To exercise any of these rights, email [email protected]. We'll respond within 30 days.
If you believe we're mishandling your data, you have the right to complain to the Swedish data protection authority, Integritetsskyddsmyndigheten (IMY), at imy.se.
Cookies
The site uses only essential cookies required for the checkout and the page to function. If that changes, we'll update this policy and add a consent banner.
Changes to this policy
We may update this policy as the business changes. The "last updated" date at the top tells you when. Material changes that affect your rights will be communicated by email to customers.
© 2026 The Exit Architect™. All rights reserved.
Published by Impish Things KB
Contact: [email protected]