Privacy Statement
The page was last updated at: 04 Jun 2025, 18:06 UTC
AlsoMatters ("we", "us", or "our") respects the privacy of our users ("you" or "your"). This Privacy Policy explains how we collect, use, share, and protect your personal information when using our Services (as defined in Terms of Service, later Terms), how that information is used and what rights you have in relation to your personal data.
We'll use the specified information solely for the purposes outlined in this Privacy Statement, and won't share it with anyone other than specified in this Statement. You can rest assured that we are committed to protecting your data and respecting your rights.
Definitions
Cookies are small text files that are stored on your device and collect information about your device and your use of the websites on the Internet.
What personal data do we collect?
We collect the following data that identifies you:
- your e-mail address
- the IP address of your device
Additionally, we collect the following data about you:
- engagement metrics (for example, e-mail open rate, reactions such as likes or dislikes)
- membership status
- date of User Account registration (see Terms of Service for the definition of User Account)
- your device information (browser type, operating system, and language settings)
Our Services are based on Ghost, which is an open-source publishing platform (read their privacy note at https://github.com/TryGhost/Ghost/blob/main/PRIVACY.md). We have further improved our users' privacy by doing the following:
- removed JSDELIVR for serving the drop-in scripts
- removed identifying your geolocation by IP
We use Hostinger as our hosting provider, meaning all the aforementioned data is stored on the Hostinger's servers and is subject to Hostinger's privacy policy (learn more at https://www.hostinger.com/legal/privacy-policy).
We store your personal data for as long as you retain your User Account, and irreversibly destroy any records containing your personal data after ninety (90) days since your User Account deletion (which is the longest time our backups are stored for).
What personal data do others collect at our request?
We use Stripe for payments, analytics, and other business services. Stripe may collect personal data including via cookies and similar technologies. The personal data Stripe collects may include transactional data and identifying information about devices that connect to its services. Stripe uses this information to operate and improve the services it provides to us, including for fraud detection, loss prevention, authentication, and analytics related to the performance of its services. You can learn more about Stripe and read its privacy policy at https://stripe.com/privacy.
We authorise Stripe only to collect strictly necessary data as a part of their legal obligations or legitimate interests, as described here: https://stripe.com/en-se/legal/privacy-center#end-customers.
We use Tally for occasional surveys, where you might be asked to provide your personal data (e.g. e-mail). You can learn more about Tally's privacy policy at https://tally.so/help/gdpr.
Why and how do we process your personal data?
Providing the Services. In order to use most of our Services, you need to create a User Account, for which you must supply a valid e-mail address and your region of residence (EU or non-EU). We use the e-mail address for sending newsletters, and we use region of residence for checking whether our Services are available for you.
If you create a Paid Subscription (as defined in Terms), you will need to submit necessary billing details to Stripe, which is our payment processor. In this case we transfer your e-mail address to Stripe in order for them to be able to send you a payment confirmation and be able to communicate with you regarding your subscription. We will also access the status of your initialised payments from Stripe and then process them to create your User Account or renew your Subscription using the correct Paid Subscription tier, which in turn will govern which Services you will have access to. We will then use your membership status and the registration date of your User Account to ensure that you retain access to our Services for the duration of your Subscription.
Your billing details and transactional data are stored and processed exclusively by Stripe. We access your transactional data solely to comply with local tax regulations and pay VAT in the correct country. We may also access your transactional data to resolve any payment issues (only with your prior written notice allowing such access).
We need to process your personal data for these purposes in order to fulfill our contractual obligations in the Terms of Service.
Improving the Services. We process the following data to analyse and optimise the Services based on our legitimate interest to improve our Services by making them more operationally stable, relevant and user-friendly.
System logs. We automatically collect system logs, which include information about your IP address, device type, operating system, browser, and other technical details. This data is generated by our servers as you interact with our Services and helps us:
- Monitor and maintain the security of our systems, including automatically banning the IP addresses that attempt to compromise the security of our Services
- Diagnose and troubleshoot technical issues
- Improve the overall performance and reliability of our service
We use system logs solely for these purposes and do NOT share this data with anyone else, unless required by law or in response to a legitimate request from a government agency. Our system logs are stored for twenty four (24) hours unencrypted to allow our firewalls and automatic security guards to maintain security and stability our Services, which is our legitimate interest. Then the logs are anonymised by masking the last bits of the IP addresses, and encrypted. The encrypted anonymised logs are then stored for fourteen (14) days for aforementioned purposes and are then irreversibly destroyed.
Backups. To ensure operational stability of our Services we make multiple backups of our servers and databases. We backup our servers on the weekly basis to the servers located in Germany and operated by Hostinger. We store such backups for six (6) weeks, after which they are irreversibly destroyed. We backup our databases on the daily basis, and store such backups on our own servers located in Sweden for up to ninety (90) days, after which they are irreversibly destroyed. We may additionally take system snapshots from time to time to ensure the continuous delivery of our services, especially in connection with system upgrades. Such snapshots are stored on the servers located in the Netherlands and operated by Hostinger for up to twenty one (21) days, after which they are irreversibly destroyed.
Behaviour data. We collect user behaviour data (e.g., page views, engagement metrics) to identify trends and patterns in how you interact with our Services. This information helps us:
- Optimise content and features to better meet your needs
- Refine our recommendations and suggestions for improved relevance
- Further develop our Services
Marketing. We may use your e-mail to send you promotions or special offers.
Where do we store your personal data?
Your data is securely stored primarily on the servers located in the Netherlands, operated by Hostinger. Your data may also be stored in our backups on the servers located in Germany, also operated by Hostinger, or on our own servers in Sweden.
Where do others store your personal data at our request?
Your payment-related data (referred to as "End Customer data" by Stripe) is stored and processed in the United States, subject to the Data Processing Agreement with Stripe accessible at https://stripe.com/en-se/legal/dpa. In order to deliver its services, Stripe engages a number of sub-processors available at https://stripe.com/en-se/legal/service-providers (please note that we do NOT use Stripe Identity or Stripe Atlas).
As of 2025-02-22 (and at least up until 2025-08-10) Stripe is an active participant in the EU-U.S. Data Privacy Framework (which can be verified by heading to https://www.dataprivacyframework.gov/list and searching for "Stripe"), meaning that Stripe has committed to undertake adequate technical and organisational security measures to ensure that your data is processed with a corresponding level of security as within the EEA.
How do we store children's personal data?
In order to use our Services you need to be at least 18 years of age.
Cookie policy
Our Services are based on Ghost, which is an open-source publishing platform, which itself does NOT set any non-essential cookies (read more at https://ghost.org/help/cookie-notice/), and we do NOT use any additional cookies. The following essential cookies are set by Ghost for authentication:
| Cookie | Duration |
|---|---|
| ghost-members-ssr | 6 months |
| ghost-members-ssr.sig | 6 months |
However, some of the embedded content we display (e.g., audio, video, maps, social media feeds) may be hosted by third-party providers who use tracking cookies or other technologies for their own purposes. We have NO control over these third-party providers and cannot guarantee that they adhere to the same standards as we do.
Our payment processor Stripe sets a number of essential cookies, as described at https://stripe.com/en-se/cookie-settings. By default, Stripe sets the following two essential cookies necessary for fraud prevention purposes for every visitor of our Services:
| Cookie | Duration |
|---|---|
| __stripe_mid | 1 year, as of Feb. 2025 |
| __stripe_sid | 30 minutes, as of Feb. 2025 |
We do NOT use any Stripe services requiring non-essential cookies.
What are your rights?
You always have the following rights in relation to your personal data.
The right to access. You always have the right to understand what personal information we collect and share. You have the right to ask us for supplementary information on why we process your data, what data we process, how long we store your data (or what criteria we use for determining the storage period), who we share your data with, and whether your data is transferred to countries outside of the European Economic Area.
The right to rectification. You always have the right to correct or ask us to correct any inaccurate data about you.
The right to request erasure or restriction. You have the right to have us erase or restrict the use of your data that is no longer needed for the purposes for which we collected the data. You also have a right to object to any processing you find unlawful or unnecessary for the informed purposes.
The right to information on the source of data we collect. You have a right to be informed about the source the collected personal data that is NOT provided by you and about automated decision-making, such as profiling.
The right to data portability. When technically possible, you have the right to get your data transferred to another service, or directly to you.
Right to non-discrimination. You have the right NOT to receive discriminatory treatment for the exercise of your privacy rights.
You may request the disclosures described above by sending a request to data@alsomatters.com. You have the right to make two (2) free requests during any 12-month period. We will make the disclosure within 30 days of receiving your request, unless we request an extension, in which case we will notify you of the extension within the given time period.
Please note that there may be restrictions for us to erase certain personal data, such as personal data we (or our partners) are required to store by law or regulations.
If you have questions or complaints regarding our processing of your personal data, we kindly ask you to contact us over email at data@alsomatters.com. You also have the right, at any time, to file a complaint to the The Swedish Authority for Privacy Protection (IMY), which is the supervisory authority for data protection matters in Sweden.
Changes
We may update this privacy statement as necessary to reflect changes in our Services and offerings and to satisfy legal requirements. We will inform you over email of any substantial changes that affect your rights before such change taking effect. You can always view the most current privacy statement on this page.
Contact
If you have any questions or feedback about this privacy policy, or would like to exercise any of your data protection rights, please contact us at data@alsomatters.com.