Privacy Policy

Last Updated: January 14, 2026

Table of Contents

  1. Introduction
  2. Who We Are
  3. Information We Collect
  4. How We Use Your Information
  5. Legal Basis for Processing
  6. Third-Party Service Providers
  7. International Data Transfers
  8. Cookies and Tracking Technologies
  9. Data Security
  10. Data Retention
  11. Your Rights Under GDPR
  12. Marketing Communications
  13. Children’s Privacy
  14. Changes to This Privacy Policy
  15. Contact Us

1. Introduction

We care a great deal about our customers’ privacy and the trust that you put in us when sharing your personal information. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website or purchase our products and services.

By using 8020japanese.com or course.8020japanese.com (collectively, “our websites”), creating an account, or making a purchase, you accept and consent to the practices described in this Privacy Policy.

This Privacy Policy applies to all products and services offered by 80/20 Japanese, including our online courses, digital products, physical books, and other materials.

2. Who We Are

Data Controller:
NattokuGo AB (organization number: 559486-0263), trading as 80/20 Japanese
Contact: https://8020japanese.com/contact/
Website: https://8020japanese.com

We are the data controller responsible for your personal information. This means we determine how and why your personal data is processed.

Note: We may develop a mobile application for our online courses in the future. If we do, this Privacy Policy will be updated to reflect any mobile app-specific data collection practices, and you will be notified of material changes.

3. Information We Collect

We collect and process the following types of personal information:

3.1 Information You Provide to Us

Account Information:

  • Name
  • Email address
  • Password (encrypted)
  • Username

Purchase and Billing Information:

  • Billing address
  • Shipping address (for physical products)
  • Phone number (required for physical product shipments for delivery purposes)
  • Order history
  • Purchase preferences

Payment Information:

  • Payment information is collected and processed directly by our third-party payment processors (Stripe). We do not store or have access to your full credit card numbers or financial information.

Subscription Information (for course subscriptions):

  • Subscription plan type
  • Billing cycle preferences
  • Subscription status and history

Communications:

  • Messages you send us through our contact form or email
  • Support requests and correspondence
  • Feedback and survey responses

3.2 Information We Collect Automatically

Website Usage Data:

  • IP address (anonymized)
  • Browser type and version
  • Device type
  • Operating system
  • Pages visited on our website
  • Time spent on pages
  • Referring website
  • Date and time of visits
  • Clickstream data

This information is collected through our website analytics services. We use privacy-focused analytics tools that track standard website metrics like visits and pageviews.

Course Platform Data (when using our online courses):

  • Course progress and completion
  • Quiz and exercise results
  • Video viewing history (watch time, completion rates)
  • Login times and frequency
  • Learning activity data

This information is collected through our course platform and video player and is used to track your learning progress, provide you with appropriate course content, and help us improve our courses.

4. How We Use Your Information

We use your personal information for the following purposes:

Order Processing and Fulfillment:

  • Processing and completing your orders
  • Delivering digital products via email
  • Shipping physical products to you
  • Providing your phone number to shipping carriers for delivery notifications
  • Managing subscriptions and recurring billing
  • Handling refunds and returns

Account Management:

  • Creating and managing your account
  • Providing access to courses and materials
  • Tracking your course progress
  • Authenticating your identity

Customer Service:

  • Responding to your inquiries and support requests
  • Resolving issues and disputes
  • Providing technical assistance

Product and Service Improvement:

  • Understanding how customers use our website and courses
  • Identifying areas for improvement
  • Developing new products and features
  • Conducting research and analysis

Marketing Communications (with your consent):

  • Sending newsletters and promotional emails
  • Informing you about new products, courses, or features
  • Providing educational content related to Japanese language learning

Security and Fraud Prevention:

  • Detecting and preventing fraudulent transactions
  • Protecting against unauthorized access
  • Ensuring website and platform security

Legal Compliance:

  • Complying with legal obligations (tax, accounting, etc.)
  • Enforcing our Terms and Conditions
  • Protecting our legal rights

Under GDPR, we process your personal data based on the following legal grounds:

Contract Performance:
Processing necessary to fulfill our contract with you (processing orders, delivering products, providing course access).

Consent:
For marketing communications and certain cookies, we rely on your explicit consent, which you may withdraw at any time.

Legitimate Interests:
We process certain data based on our legitimate business interests, such as:

  • Website analytics and improvement
  • Security and fraud prevention
  • Customer service and support

When we rely on legitimate interests, we ensure these interests are balanced against your rights and freedoms.

Legal Obligation:
We process data when required by law, such as retaining financial records for tax and accounting purposes.

6. Third-Party Service Providers

We share your personal information with trusted third-party service providers who help us operate our business. These providers are contractually obligated to protect your data and use it only for the purposes we specify.

6.1 Payment Processing

We use third-party payment processors to handle all payment transactions securely. Your payment information is processed directly by these providers, and we do not store or have access to your complete credit card information.

6.2 Website and Course Infrastructure

Our website and online courses are hosted and delivered through various hosting, content delivery, and infrastructure services. These services may process visitor data such as IP addresses for performance, security, and functionality purposes.

6.3 E-Commerce and Order Management

We use e-commerce platforms and internal systems to process orders, manage subscriptions, and track deliveries. These systems store order information necessary to fulfill your purchases.

6.4 Digital Product Delivery

Digital products are delivered through automated delivery services that send download links to your email address and manage download access.

6.5 Physical Product Fulfillment

Physical books are printed and shipped through print-on-demand and fulfillment services. These providers receive your shipping address and phone number to complete delivery. Shipping carriers may use your phone number to send delivery notifications.

6.6 Email Communications

We use separate services for:

  • Marketing emails (newsletters and promotional content) – you can unsubscribe at any time
  • Transactional emails (order confirmations, receipts, password resets, etc.)
  • Business email for direct customer support communications

6.7 Website Analytics

We use privacy-focused analytics services to understand how visitors use our website. These services collect anonymized data about page visits, traffic sources, and user behavior to help us improve our website and services.

6.8 Course Content Delivery and Tracking

Our course platform uses various services to:

  • Deliver video and audio content
  • Track your learning progress and course completion
  • Manage quizzes and exercises
  • Monitor video viewing for progress tracking

6.9 Lead Capture and Website Optimization

We use tools to collect email addresses through forms on our website and to optimize our website performance through testing different page variations. These tools may use cookies.

6.10 Forms and Surveys

We use form and survey services to collect feedback, handle contact form submissions, and gather customer insights.

6.11 Affiliate Program Management

We operate an affiliate program that uses tracking services to attribute sales to referring affiliates. These services track referrals and calculate commissions but do not receive customer personal information beyond order totals.

6.12 Security and Spam Protection

We use security services and spam protection tools to protect our website from malicious activity, prevent abuse, and ensure the security of your data.

6.13 Automation and Integration

We use workflow automation services to connect different platforms and automate business processes. These services may temporarily process data as it moves between systems.

6.14 Backup and Data Storage

We maintain regular backups of our website and data using backup services and cloud storage providers. These backups may contain customer information and are stored securely.

6.15 Cookie Consent Management

We use cookie consent management tools to comply with privacy regulations and manage your cookie preferences.

6.16 Data Sharing Principles

  • We never sell your personal information to third parties
  • Third-party providers may only use your data to perform services on our behalf
  • All providers are required to maintain appropriate data protection standards
  • We conduct due diligence on providers’ security and privacy practices
  • Many of our service providers are located in the EU or have appropriate safeguards in place for international data transfers

7. International Data Transfers

We are based in Sweden (European Union), but some of our third-party service providers may be located outside the EU/EEA, including in the United States.

When we transfer your personal data outside the EU/EEA, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions by the European Commission confirming that the destination country provides adequate data protection
  • Other legally approved transfer mechanisms

Many of our US-based providers participate in frameworks that provide appropriate safeguards for international data transfers and comply with GDPR requirements.

8. Cookies and Tracking Technologies

8.1 What Are Cookies

Cookies are small text files that are placed on your device when you visit our website. They help us provide you with a better experience by remembering your preferences and understanding how you use our site.

8.2 How We Use Cookies

Essential Cookies (always active):

  • Required for basic website functionality
  • Enable secure login and account access
  • Remember items in your shopping cart
  • Maintain security features
  • Store cookie consent preferences

Analytics:

  • We use privacy-focused analytics that track website usage through browser fingerprinting rather than traditional cookies
  • Helps us understand how visitors use our site to improve the experience

Preference Cookies:

  • Remember your language preferences
  • Store your login information (if you choose)
  • Maintain your website settings

Marketing and Optimization:

  • Email capture forms and website optimization tools may use cookies
  • Help us improve our website performance and user experience
  • Enable A/B testing of different page designs

Affiliate Tracking:

  • Cookies track affiliate referrals to credit partners for referred customers
  • Do not collect or share your personal information with affiliates

8.3 Third-Party Cookies

Some third-party services on our website may set their own cookies. We do not control these third-party cookies. We encourage you to review the privacy policies of these third parties to understand their cookie practices.

8.4 Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to:

  • View and delete cookies
  • Block third-party cookies
  • Block cookies from specific sites
  • Block all cookies

Please note that disabling certain cookies may affect website functionality and your user experience.

You can also manage cookie preferences through the cookie consent banner that appears when you first visit our website.

9. Data Security

We take the security of your personal information seriously and implement appropriate technical and organizational measures to protect it.

9.1 Security Measures

Encryption:

  • All data transmission is protected using Secure Socket Layer (SSL) encryption
  • Passwords are encrypted and stored securely
  • Payment information is encrypted by our payment processor

Access Controls:

  • Access to personal data is restricted to authorized personnel only
  • Staff are trained on data protection and confidentiality
  • Regular security audits and updates

Secure Storage:

  • Personal data is stored on secure servers
  • Regular backups to prevent data loss
  • Firewall and intrusion detection systems

9.2 Your Responsibility

While we implement strong security measures, you also play a role in protecting your data:

  • Keep your password confidential
  • Use a strong, unique password
  • Log out after using shared devices
  • Notify us immediately if you suspect unauthorized access

9.3 Data Breach Notification

In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours as required by GDPR.

10. Data Retention

10.1 Retention Periods

We retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Account Data:

  • Retained while your account is active
  • Retained for a reasonable period after account closure to comply with legal obligations

Order and Financial Data:

  • Retained for at least 7 years to comply with Swedish tax and accounting laws
  • Order history may be retained longer for customer service and warranty purposes

Marketing Data:

  • Retained until you withdraw consent or unsubscribe
  • Deleted within 30 days of unsubscribe request

Analytics Data:

  • Anonymized website usage data may be retained indefinitely
  • Personal identifiers are removed or anonymized

Correspondence:

  • Customer service communications retained for record-keeping and quality assurance purposes

10.2 Deletion Requests

You have the right to request deletion of your personal data at any time (subject to legal retention requirements). See Section 11 for more information about your rights.

11. Your Rights Under GDPR

As a data subject under GDPR, you have the following rights regarding your personal data:

11.1 Right to Access

You have the right to request confirmation of whether we process your personal data and to obtain a copy of your data.

11.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data.

11.3 Right to Erasure (“Right to be Forgotten”)

You have the right to request deletion of your personal data when:

  • The data is no longer necessary for the purposes collected
  • You withdraw consent (where processing is based on consent)
  • You object to processing and there are no overriding legitimate grounds
  • The data has been unlawfully processed
  • The data must be erased to comply with a legal obligation

Please note: We may be required to retain certain data to comply with legal obligations (e.g., tax and accounting records).

11.4 Right to Restrict Processing

You have the right to request restriction of processing when:

  • You contest the accuracy of the data
  • The processing is unlawful, but you prefer restriction over erasure
  • We no longer need the data, but you need it for legal claims
  • You have objected to processing, pending verification of our legitimate grounds

11.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.

11.6 Right to Object

You have the right to object to processing based on legitimate interests or for direct marketing purposes. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests.

11.7 Right to Withdraw Consent

Where we rely on consent as the legal basis for processing, you have the right to withdraw consent at any time. This does not affect the lawfulness of processing before withdrawal.

11.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe we have violated your data protection rights.

Swedish Data Protection Authority (Datainspektionen):
Website: https://www.imy.se/
Email: imy@imy.se

11.9 Exercising Your Rights

To exercise any of these rights, please contact us at:

We will respond to your request within one month. In complex cases, we may extend this period by two additional months and will inform you of the extension.

12. Marketing Communications

12.1 Consent and Subscription

We will only send you marketing emails (newsletters, promotional offers, educational content) if you have:

  • Explicitly opted in to receive marketing communications, or
  • Made a purchase and have not opted out (soft opt-in for existing customers)

12.2 Unsubscribe

You can unsubscribe from marketing emails at any time by:

  • Clicking the “unsubscribe” link at the bottom of any marketing email
  • Using our contact form: https://8020japanese.com/contact/
  • Managing your preferences in your account settings

You will be unsubscribed within 48 hours of your request. Please note that you will continue to receive transactional emails (order confirmations, receipts, etc.) even after unsubscribing from marketing.

12.3 What We Send

Marketing emails may include:

  • Newsletter with Japanese language learning tips
  • New product announcements
  • Course updates and new content notifications
  • Special offers and promotions
  • Educational content related to Japanese language and culture

13. Children’s Privacy

Our services are not directed to children under the age of 16, and we do not knowingly collect personal information from children under 16.

If you are under 16, please do not provide any personal information through our website or services. If we become aware that we have collected personal information from a child under 16 without parental consent, we will take steps to delete that information as soon as possible.

If you believe we have collected information from a child under 16, please contact us immediately through our contact form: https://8020japanese.com/contact/

14. Changes to This Privacy Policy

14.1 Updates

We reserve the right to update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

14.2 Notification of Changes

When we make changes to this Privacy Policy:

  • We will update the “Last Updated” date at the top of this page
  • For material changes that significantly affect your rights, we will notify you via email (to the address associated with your account) or through a prominent notice on our website
  • We may also notify you through our course platform if you have an active account

14.3 Your Acceptance

Your continued use of our website, products, or services after changes to this Privacy Policy constitutes your acceptance of the updated policy. If you do not agree with the changes, please discontinue use of our services and contact us to close your account or exercise your data rights.

14.4 Review Recommendation

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal information.

15. Contact Us

15.1 Privacy Questions

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Contact Form: https://8020japanese.com/contact/

15.2 Data Protection Officer

For data protection inquiries specifically, you may contact us through the contact form with “Data Protection” as the subject.

15.3 Response Time

We aim to respond to all privacy inquiries within 5 business days. For formal data subject requests under GDPR, we will respond within one month as required by law.

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and disclosure of your personal information as described herein.