At Burner Studio, your privacy matters. This policy explains how we collect, use, and protect your personal data, including how we use cookies on our website. We comply with the EU General Data Protection Regulation (GDPR) and Swedish data protection law.
Burner Studio AB ("Burner Studio," "we," "us," or "our") is the Data Controller responsible for your personal data when you interact with us through our studios, website, or digital platforms.
Organization Number: 559480-7702
You can contact us at any time with questions about your personal data or this policy.
Email: hello@burnerstudio.com
What Data We Collect
We collect only the data necessary to provide our services, operate the studio, and communicate with you.
Data You Provide
Account and Booking Information
When you create an account or book classes through our booking platform (Mana), we collect your name, email address, phone number, and date of birth. We also process booking and membership information including class reservations, attendance records, and membership status.
Payment Information
Payment details are processed securely by Mana Technology AB, our booking platform provider. Burner Studio never stores or has access to your complete payment card details.
Communication
If you contact us via email, social media, or in person, we may keep records of that communication to provide better service and respond to your inquiries.
Newsletter Subscriptions
If you opt in to receive our newsletter, we collect your email address and track basic engagement metrics (open rates, click rates) to improve our communications.
Preferences and Feedback
Information you share through surveys, preference forms, or direct feedback to help us improve your experience.
Automatically Collected Data
Website Analytics
When you visit our website, we collect technical information including IP address, browser type, device information, pages visited, and time spent on pages through Google Analytics. This helps us understand how visitors use our site and improve performance.
Cookies
Our website uses cookies to ensure proper functionality and improve your experience. See the Cookies and Analytics section below for detailed information.
What We Do Not Collect
Health Information
Burner Studio does not systematically collect or store health or medical information in any digital system. While instructors may ask verbally about injuries, pregnancy, or other conditions relevant to safe class participation, this information is handled confidentially and is not recorded in our booking system or other databases. Any health-related discussions remain private conversations between you and your instructor.
Legal Basis for Processing
We only process personal data when there is a valid legal reason under GDPR:
Contract Performance: Most data processing is necessary to fulfill our contract with you, including managing bookings, memberships, class schedules, and payments.
Legitimate Interest: We process certain data based on our legitimate business interests, such as website analytics to improve services, security monitoring, and maintaining business records. We always balance these interests against your privacy rights.
Consent: When you sign up for newsletters or marketing communications, or when you accept cookies, we rely on your explicit consent, which you can withdraw at any time.
Legal Obligation: We process certain data to comply with legal requirements, such as accounting and tax obligations under Swedish law.
How We Use Your Data
We use your personal data to:
Manage class bookings, memberships, and studio schedules
Process payments securely through our booking platform
Send booking confirmations and important service updates
Respond to your inquiries and provide customer support
Send newsletters and promotional content (only with your consent)
Analyze website usage to improve user experience
Maintain accurate business and accounting records
Ensure studio security and prevent fraud
Fulfill legal and regulatory obligations
We never sell, rent, or share your personal data with third parties for their marketing purposes.
Cookies and Analytics
What Are Cookies?
Cookies are small text files that are placed on your device (computer, smartphone, or tablet) when you visit a website. They help websites remember information about your visit, making your next visit easier and the site more useful to you.
How We Use Cookies
We use cookies to:
Ensure our website functions properly
Remember your preferences and settings
Understand how visitors use our website to improve it
Integrate our booking system for class reservations
Provide a secure browsing experience
Types of Cookies We Use
1. Strictly Necessary Cookies (Essential)
These cookies are essential for our website to function properly. Without them, you would not be able to use basic features like navigation or booking classes.
Purpose Duration Provider Cookie consent status - remembers your cookie preferences 12 months Burner Studio Session management - maintains your session while browsing Session (closes with browser) Burner Studio Security protection - protects against security threats Session Burner Studio Booking system functionality - enables class booking Session Mana Technology AB
Can you disable these? No. These cookies are essential for the website and booking system to work. Disabling them will prevent you from using our website properly.
2. Analytics Cookies (Performance Cookies)
These cookies help us understand how visitors interact with our website by collecting anonymous information. This helps us improve our website's performance and user experience.
What data is collected?
Pages you visit on our website
Time spent on each page
How you arrived at our site
Device type and browser used
Anonymized IP address (last digits removed)
Can you disable these? Yes. You can reject analytics cookies through our cookie consent banner or change your preferences in Cookie Settings. You can also use the Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout
3. Functional Cookies (Preference Cookies)
These cookies allow our website to remember choices you make (such as language preferences) and provide enhanced features.
Purpose Duration Provider Display preferences - remembers your settings 12 months Burner Studio
Can you disable these? Yes, but disabling them may affect your experience and some features may not work as intended.
Third-Party Cookies
Some cookies are set by third-party services that appear on our pages:
Google Analytics
We use Google Analytics to understand how visitors use our website. Google Analytics sets cookies to collect anonymous information about visitor behavior. We have implemented privacy safeguards:
IP anonymization is enabled (last digits of IP addresses are masked)
Data sharing with Google for marketing purposes is disabled
User ID tracking is not used
Demographics and interest reports are disabled
For more information: https://policies.google.com/privacy
Mana Booking System
Our booking platform (Mana Technology AB) may set cookies necessary for you to book classes and manage your membership. These cookies are essential for booking functionality.
Privacy Policy: https://www.getmana.app/privacy
Managing Your Cookie Preferences
You have several options for managing cookies:
1. Cookie Consent Banner
When you first visit our website, you'll see a cookie consent banner with options to:
Accept All Cookies: Allow all cookies including analytics
Reject Non-Essential Cookies: Allow only strictly necessary cookies
Cookie Settings: Customize which types of cookies you accept
2. Change Your Preferences Anytime
You can change your cookie preferences at any time by clicking the "Cookie Settings" link in our website footer.
3. Browser Settings
You can also manage cookies through your browser settings. Most browsers allow you to view and delete cookies, block cookies from specific websites, or block all cookies.
How to manage cookies in common browsers:
Google Chrome:
Click the three dots (⋮) in the top right
Go to Settings > Privacy and Security > Cookies and other site data
Choose your preferred settings
Safari:
Go to Safari > Preferences
Click Privacy tab
Manage website data and cookie settings
Mozilla Firefox:
Click the menu button (≡) and select Settings
Go to Privacy & Security
Under Cookies and Site Data, adjust your settings
Microsoft Edge:
Click the three dots (...) in the top right
Go to Settings > Privacy, search, and services
Under Cookies and site data, adjust settings
4. Opt Out of Google Analytics
To opt out of Google Analytics tracking across all websites, install the Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout
What Happens If You Disable Cookies?
If you disable all cookies:
You will not be able to book classes through our website
Some pages may not display properly
Your preferences will not be remembered
Website functionality will be limited
If you disable only non-essential cookies (analytics):
The website will function normally
You can book classes and use all features
We will not collect anonymous usage data to improve the site
How We Share Your Data
We only share your data with trusted service providers who help us deliver our services. These providers act as Data Processors under GDPR and may only process data on our behalf according to our instructions and strict contractual terms.
Our Service Providers
Mana Technology AB (GetMana.app)
Purpose: Class booking system, membership management, and payment processing
Data Shared: Name, email, phone number, date of birth, booking history, attendance records, payment information
Location: Sweden (EU)
Privacy Policy: https://www.getmana.app/privacy
Squarespace
Purpose: Website hosting and email newsletter distribution
Data Shared: Email addresses (for newsletter subscribers), website usage data
Location: USA (with Standard Contractual Clauses in place)
Google Workspace
Purpose: Business email communication and internal document storage
Data Shared: Email communications with members, internal business documents
Location: EU data centers (with option for data residency controls)
Google Analytics
Purpose: Website analytics and performance monitoring
Data Shared: Anonymized website usage data, IP addresses (anonymized)
Location: USA (with Standard Contractual Clauses in place)
Fortnox AB
Purpose: Accounting and payroll management
Data Shared: Payment records, accounting data
Location: Sweden (EU)
All service providers are required to comply with GDPR and have Data Processing Agreements (DPAs) in place with Burner Studio.
International Data Transfers
Some of our service providers may process or store data outside the EU/EEA (such as Google and Squarespace). In these cases, we ensure transfers are protected using:
Standard Contractual Clauses (SCCs) approved by the European Commission
Additional safeguards such as encryption and access controls
Regular reviews of third-party security and privacy practices
You can request more information about specific safeguards by contacting us.
Data Retention
We only keep your personal data for as long as necessary for the purposes it was collected:
Active Membership Data: Retained for the duration of your membership plus two years after your last activity
Inactive Member Data: Automatically deleted two years after your last class booking or membership expiration
Payment and Accounting Records: Retained for seven years as required by Swedish accounting law (Bokföringslagen)
Newsletter Subscriptions: Retained until you unsubscribe or withdraw consent
Website Analytics and Cookies: Retained according to Google Analytics default settings (26 months for website activity data)
Customer Service Communications: Retained for up to two years to maintain service quality and handle any follow-up inquiries
We regularly review and securely delete outdated or unnecessary data.
Your Rights Under GDPR
You have the following rights regarding your personal data:
Right to Access: Request a copy of all personal data we hold about you
Right to Rectification: Correct any inaccurate or incomplete information
Right to Erasure ("Right to be Forgotten"): Request deletion of your data when it is no longer necessary or if you withdraw consent
Right to Restrict Processing: Limit how we use your data in certain circumstances
Right to Object: Object to processing based on legitimate interest, including marketing communications
Right to Data Portability: Receive your data in a structured, commonly used, machine-readable format to transfer to another service
Right to Withdraw Consent: Withdraw consent at any time for newsletter subscriptions, cookies, or other consent-based processing (this does not affect the lawfulness of processing before withdrawal)
Right to Lodge a Complaint: File a complaint with the Swedish Data Protection Authority (IMY) if you believe your data protection rights have been violated
How to Exercise Your Rights
To exercise any of these rights, contact us at hello@burnerstudio.com or visit either studio location.
We will respond to your request within 30 days. We may need to verify your identity before fulfilling your request to protect your privacy and security.
Data Security
We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it:
Technical Measures:
Encrypted data transmission using HTTPS/SSL certificates
Secure access controls and authentication systems
Password protection for all staff accounts with regular password updates
Regular security updates and patches for all systems
Automated backups stored securely
Organizational Measures:
Limited staff access on a need-to-know basis
Mandatory GDPR training for all staff members
Data Processing Agreements with all service providers
Regular reviews of third-party security practices
Incident response procedures for data breaches
Clear internal policies for data handling
Despite our security measures, no system is completely secure. If you suspect any security issue with your account, contact us immediately at hello@burnerstudio.com.
Data Breach Notification
In the unlikely event of a data breach that may pose a risk to your rights and freedoms, Burner Studio will:
Notify the Swedish Data Protection Authority (IMY) within 72 hours of becoming aware of the breach, where required by law
Inform affected individuals without undue delay if the breach is likely to result in high risk to your rights
Document the incident, including facts, effects, and corrective actions taken
Take immediate steps to contain and remedy the breach
If you believe there has been a breach involving your data, please contact us immediately at hello@burnerstudio.com.
Children's Privacy
Our services are intended for adults aged 18 and over. We do not knowingly collect personal data from children under 16 without parental consent. If you believe we have inadvertently collected data from a child, please contact us immediately so we can delete it.
Links to Third-Party Websites
Our website may contain links to third-party websites (such as social media platforms or partner sites). This Privacy Policy does not apply to those external sites. We recommend reviewing the privacy policies of any third-party websites you visit.
Changes to This Policy
We may update this Privacy and Cookie Policy from time to time to reflect changes in our practices, legal requirements, or service offerings.
When we make significant changes, we will:
Update the "Last Updated" date at the top of this policy
Notify you via email or prominent notice on our website
For substantial changes affecting your rights, request your renewed consent where required
We encourage you to review this policy periodically to stay informed about how we protect your data.
Contact Us
For any questions about this Privacy and Cookie Policy, to exercise your data protection rights, or to raise concerns about how we handle your personal data:
Email: hello@burnerstudio.com
Data Protection Lead: Beccah
Address: Burner Studio AB, Jarlaplan 2, 113 57 Stockholm, Sweden
Studio Locations:
Jarlaplan 2, Stockholm (Vasastan)
Humlegårdsgatan 6, Stockholm (Östermalm)
Swedish Data Protection Authority
If you are not satisfied with our response to your privacy concerns or believe we have not complied with GDPR, you have the right to lodge a complaint with:
Integritetsskyddsmyndigheten (IMY)
Box 8114
104 20 Stockholm, Sweden
Phone: +46 8 657 61 00
Website: https://www.imy.se
Email: imy@imy.se
Thank you for trusting Burner Studio with your personal data.
This policy is effective as of January 15, 2026 and applies to all personal data processing by Burner Studio AB.
