Cookie Preferences We use different types of cookies and tracking technologies to deliver the best experience. You can customise your preferences below. For full details see our Privacy Policy .
Required Cookies
Strictly Necessary Core site functionality including page rendering, form submission, and navigation state. These cookies are essential for the website to function and cannot be switched off. They are set in response to actions you take such as setting your privacy preferences, logging in, or filling in forms. Always on Authentication & Session Management Manages your login state, magic-link verification tokens, and session persistence so you stay logged in across pages. Without these, you would need to re-authenticate on every page load. Includes CSRF protection tokens and session expiry management. Always on Fraud Prevention & Chargeback Evidence Logs IP addresses, access timestamps, device fingerprints, and download events for purchased digital content. Legally required to demonstrate delivery and access in the event of a payment dispute, chargeback, or refund investigation under card network regulations (Visa CE 3.0, Mastercard Ethoca). Cannot be disabled for customers with active purchases. Always on Payment Processing (PayPal) Required for secure payment processing, order creation, capture, and refund handling via PayPal. Includes order state persistence and purchase verification cookies set by PayPal's SDK during the checkout flow. Subject to PayPal's own privacy policy. Always on
Analytics & Performance
Google Analytics 4 — Page & Event Measurement Measures page views, unique visitors, session duration, and bounce rates using Google Analytics 4. Sets _ga and _ga_* cookies (expires 2 years). Data is sent to Google LLC servers in the United States under Standard Contractual Clauses. Used to understand traffic sources and content performance. Google Analytics 4 — Enhanced Measurement Extends GA4 with automatic tracking of scroll depth (90% threshold), outbound link clicks, site search queries, video engagement (YouTube embeds), and file downloads. No additional cookies beyond the base GA4 set. Provides granular interaction data for UX optimisation. Google Analytics 4 — User & Session ID Linking Connects multiple sessions from the same visitor into a unified user journey using Google's Client-ID and optional User-ID features. Enables cross-session funnel analysis (e.g. quiz start on Monday → purchase on Friday). Data retention set to 14 months in GA4 property settings. Session Replay Recording (rrweb) Records a DOM-level replay of your browsing session using the open-source rrweb library. All form inputs (email, name, phone, payment details) are masked at capture time — no personally identifiable information is stored in replay data. Recordings are stored in Cloudflare R2 (EU region) and retained for 90 days. Click Heatmap Aggregation Aggregates click coordinates from replay sessions to generate heatmap visualisations showing where visitors interact most frequently. No additional data collection beyond what Session Replay captures — this processes existing replay events into spatial density maps. Scroll Depth & Viewport Tracking Measures how far down each page visitors scroll, expressed as a percentage of total page height. Combined with viewport dimensions to understand content visibility — which sections are seen vs. skipped. Derived from replay scroll events; no additional cookies. JavaScript Error & Exception Monitoring Captures uncaught JavaScript errors and unhandled promise rejections during your session. Error messages (truncated to 500 characters) are stored alongside the session replay to help diagnose site bugs. No stack traces or source maps are transmitted to protect intellectual property. Quiz Completion & Funnel Analytics Tracks which quiz step you are on, time spent per question, and whether the quiz was completed or abandoned. Fires GA4 custom events (quiz_step, quiz_complete) for funnel analysis. Used to identify confusing questions or drop-off points so we can improve the assessment experience.
Advertising & Remarketing
Google Ads Remarketing Audiences Allows Google Ads to build remarketing audiences based on pages you visited (e.g. "viewed quiz results but didn't purchase"). Sets _gcl_au cookie (expires 90 days). Audience lists are shared with Google Ads for cross-network display targeting. You can opt out at ads.google.com/settings. Google Ads Conversion Tracking Measures whether a Google Ads click resulted in a purchase, opt-in, or quiz completion. Sets _gcl_aw cookie on ad click (expires 90 days) and fires conversion events back to Google Ads. Used to calculate return on ad spend (ROAS) and optimise bidding strategies. No personal data is shared — only aggregated conversion counts. Google Ads Enhanced Conversions Sends a SHA-256 hashed version of your email address to Google after a purchase to improve conversion measurement accuracy when third-party cookies are blocked. The raw email is never transmitted — only the irreversible hash. Compliant with Google's Customer Data policies and EU Digital Markets Act requirements. Facebook / Meta Pixel — Page View & Standard Events Loads the Meta Pixel (fbevents.js) which fires PageView, Lead, and Purchase events to Meta's servers. Sets _fbp first-party cookie (expires 90 days) for browser identification. Data is processed by Meta Platforms Ireland Ltd (EU) and may be transferred to Meta Platforms Inc (US) under Data Privacy Framework certification. Facebook / Meta Custom Audiences Enables creation of Custom Audiences in Meta Ads Manager based on website actions (e.g. "started quiz but didn't opt in"). Also powers Lookalike Audience expansion for prospecting campaigns. Sets _fbc cookie when a visitor arrives via a Facebook ad click (fbclid parameter). Facebook / Meta Conversions API (Server-Side) Sends purchase and lead events directly from our server to Meta's Conversions API, bypassing browser-side ad blockers for more accurate attribution. Transmits hashed email, IP address, and user agent. Runs independently of the Meta Pixel — disabling the pixel does not disable server-side events unless this toggle is also off.
Personalisation & Customer Experience
Lead Profile & Quiz Answer Storage Stores your name, email address, quiz answers, and computed result profile in our database when you submit the opt-in form. This data powers your personalised training plan and determines which email sequence you receive. Retained until you request deletion via [email protected] . Purchase & Entitlement Tracking Records which products you have purchased, your entitlement status (active/revoked), and order history. Required to grant access to gated content in the members area. Linked to your email address. Retained for 7 years per EU tax record-keeping obligations (Estonian Tax and Customs Board). Cross-Device Visitor Identity Sets a persistent first-party cookie (pc_vid, expires 1 year) containing a random visitor identifier. When you later provide your email on any device, all devices sharing that email are linked into a single visitor profile. Enables a seamless experience when switching between phone and desktop. Returning Visitor Recognition Uses the persistent visitor cookie to recognise you on return visits so we can pre-fill known preferences, skip redundant onboarding steps, and resume your progress. Without this, every visit appears as a new anonymous session and personalisation resets. Content Recommendation Engine Analyses your quiz result profile, browsing history, and content consumption patterns to surface the most relevant training modules, articles, and product recommendations. Recommendations are computed on our servers — no data is shared with third parties for this purpose. Email & Communication
Transactional Email Delivery Tracking Tracks delivery status, bounces, and failures for transactional emails (purchase confirmations, magic-link logins, password resets). Managed by Resend (resend.com) under their Data Processing Agreement. Required to ensure critical emails reach your inbox and to retry on soft bounces. Marketing Email Open Tracking Embeds a 1×1 transparent tracking pixel in marketing emails (nurture sequence, product announcements) to detect opens. Open data is used to measure engagement rates, optimise send times, and suppress emails to consistently unengaged addresses to protect sender reputation. Marketing Email Click Tracking Wraps links in marketing emails through Resend's click-tracking redirect so we can measure which links are clicked, how many times, and in what order. Click data informs which content topics drive the most engagement and helps us send less email about topics you ignore. Drip Sequence & Automation State Tracks your position in automated email sequences (welcome series, buyer onboarding, re-engagement campaigns). Stores which emails have been sent, on which day, with which Resend message ID — ensuring the idempotency guard prevents duplicate sends even if the daily dispatch runs multiple times. Unsubscribe & Suppression List Sync Maintains a suppression list of email addresses that have unsubscribed, bounced, or filed a complaint. Checked before every send to ensure compliance with CAN-SPAM, GDPR Article 21, and ePrivacy Directive requirements. Suppression records are retained indefinitely to prevent re-subscription.
Content Consumption & Members Area
Audio Module Playback Progress Records which audio training modules you play, your current playback position (in seconds), and completion status. Progress is saved so you can resume where you left off across sessions and devices. Milestones are logged at 25%, 50%, 75%, and 100% completion for each module. Audio Streaming Quality & Buffering Metrics Monitors audio stream bitrate, buffer underrun events, and playback stalls to ensure smooth delivery from Cloudflare R2. When buffering exceeds acceptable thresholds, the system may switch to a lower bitrate encoding. No audio content is recorded — only delivery performance metadata. Workbook & PDF Download Tracking Logs when you download companion workbooks, checklists, and PDF guides from the members area. Tracks which files were accessed, download timestamps, and IP address. Used for content consumption analytics and as evidence of delivery in refund/chargeback scenarios. Members Area Session Persistence Maintains your authenticated session in the members area so you don't need to re-verify your magic link on every page. Session tokens are stored as HttpOnly secure cookies with a configurable expiry. Invalidated server-side on logout or when a new magic link is issued. Learning Path & Curriculum Progress Tracks your overall progress through each purchased training program — which modules are complete, which are in progress, and which are locked. Powers the progress bar and "continue where you left off" feature in the members dashboard. Synced across devices via your email identity.
Apply settings Accept all