This is the privacy policy for The Practical Claude Course, sold by Serenity Brands LLC. We try to keep this short, plain, and honest.
1. What we collect
Email address — only if you give us one (for example, when you request a checklist, buy the course through Lemon Squeezy, or email us for support). Checklist signup records are stored under a one-way SHA-256 hash; the raw email is sent to Resend so the checklist can be delivered.
Order info from Lemon Squeezy — your name, email, the last 4 digits of your payment method, and your country. Lemon Squeezy passes this to us so we can fulfill your order.
License key — issued by Lemon Squeezy and tied to your order so you can unlock the course.
Standard server logs — IP address, User-Agent, and request paths kept by Cloudflare for roughly 30 days for security and abuse prevention.
Product analytics events — pageviews and a small set of course events (e.g. "lesson opened", "lesson completed", "unlock attempted") via PostHog, so we can fix drop-off points and improve the course. Anonymous before you unlock; after unlock, tied to a one-way SHA-256 hash of your email address (your raw email is never sent to PostHog). The same hash is reused across courses you own so we can recognize returning students without storing additional identifiers.
2. What we don't collect
No advertising cookies.
No tracking pixels in our emails.
No selling, renting, or sharing of your data with advertising networks.
3. How we use it
Order fulfillment — delivering course access to people who bought it.
Customer support — replying when you email us.
Checklist and follow-up emails — sending the free checklist you requested and a short related sequence. Every marketing email includes an unsubscribe link.
Occasional product update notifications — sent only to active buyers, and you can opt out anytime by emailing privacy@serenitybrands.com.
4. Who we share with
Lemon Squeezy — our payment processor and Merchant of Record. They handle every transaction, including sales tax, VAT, and GST.
Cloudflare — our hosting and edge layer. They receive server logs for security purposes.
PostHog — our product analytics provider (PostHog Inc.). They receive course usage events so we can understand and improve the learning experience. Their privacy policy: posthog.com/privacy.
Resend — our email delivery provider. They deliver checklist emails, login links, and course access emails. Their privacy policy: resend.com/legal/privacy-policy.
No one else. We don't sell or share your data for advertising.
5. Cookies
pc_lic_<course> — an HTTP-only cookie that stores your license key after you unlock a course. One cookie per course; it's how we recognize you on later visits. Set for 180 days.
pc_id — a non-HTTP-only cookie that stores the email hash described above, so the analytics layer can recognize returning students across courses you own. Cleared in lockstep with pc_lic_<course>.
ph_* — first-party analytics cookies set by PostHog to keep an anonymous session ID. After you unlock, the session is tied to your email hash so we can measure things like lesson-to-lesson drop-off honestly. You can opt out by enabling Do Not Track in your browser; we honor it.
No advertising cookies.
6. Data retention
Order and buyer email data: kept while you have an active license. Deleted on request — email privacy@serenitybrands.com.
Checklist signup records: kept until you unsubscribe or ask us to delete them. Unsubscribe links create a suppression record so we do not re-add you by accident.
Server logs: roughly 30 days, then purged by Cloudflare.