PRIVACY, COOKIE & GDPR POLICY

Last updated: 4th August 2025

At The Collective, we respect your privacy and are committed to protecting your personal data. This policy explains how we collect, use, store, and protect your information when you engage with our website, retreats, and related services. It also outlines how we use cookies and how we comply with the UK GDPR and, where applicable, the EU GDPR.

1. WHO WE ARE
The Collective On Retreat (“The Collective”, “we”, “us”, or “our”) provides wellness retreats and related services. You can contact us at: hello@welcometothecollective.co.uk

2. WHAT INFORMATION WE COLLECT
We may collect and process the following types of personal data:

  • Contact details (e.g. name, email, phone number)

  • Booking information (e.g. retreat preferences, payment details)

  • Health or dietary information (where provided voluntarily)

  • Newsletter sign-up information

  • Technical data (e.g. IP address, browser type, device type)

  • Usage data (e.g. page views, time spent on site)

3. HOW WE USE YOUR DATA
We use your information to:

  • Manage bookings and provide retreat services

  • Send you important updates and confirmations

  • Respond to enquiries and provide customer support

  • Send newsletters or marketing communications (if you have opted in)

  • Improve our website and retreat experience

4. LEGAL BASIS FOR PROCESSING
We process your personal data based on the following lawful grounds:

  • Consent (e.g. for marketing emails)

  • Performance of a contract (e.g. managing your retreat booking)

  • Legal obligations (e.g. accounting or tax records)

  • Legitimate interests (e.g. improving our services)

5. SHARING YOUR DATA
We only share your data when necessary, including with:

  • Retreat facilitators and service providers (e.g. catering, instructors)

  • Payment processors and booking systems

  • Email marketing platforms (for newsletters)

  • Legal authorities if required to comply with the law

We never sell your data to third parties.

6. COOKIES AND WEBSITE TRACKING
Our website uses cookies to enhance your experience and help us understand how visitors use our site.

What are cookies?
Cookies are small text files placed on your device that store preferences or track activity.

Types of cookies we use:

  • Essential cookies (for website functionality)

  • Performance cookies (e.g. Google Analytics)

  • Preference cookies (to remember user settings)

Managing cookies:
You can adjust your browser settings to block or delete cookies. You can also manage consent using our website’s cookie banner. Disabling cookies may impact your browsing experience.

7. YOUR RIGHTS UNDER GDPR
Under the UK GDPR and EU GDPR, you have the right to:

  • Access the personal data we hold about you

  • Correct inaccurate or outdated data

  • Request deletion of your data (“right to be forgotten”)

  • Withdraw consent at any time (e.g. for marketing)

  • Restrict or object to certain processing

  • Request data portability

To exercise any of your rights, please contact: hello@welcometothecollective.co.uk

8. DATA STORAGE & SECURITY
We store your data securely and only retain it as long as necessary. Booking records may be kept for up to 6 years. Newsletter data is retained until you unsubscribe. We use SSL encryption and limit access to sensitive data.

9. INTERNATIONAL TRANSFERS
Some third-party services we use may transfer data outside the UK or EU. In these cases, we ensure that appropriate safeguards are in place to protect your data (such as Standard Contractual Clauses).

10. THIRD-PARTY LINKS
Our website may include links to other sites. We are not responsible for their content or privacy practices.

11. POLICY UPDATES
We may update this policy from time to time. Changes will be posted on this page with an updated date. Continued use of our site or services indicates your agreement with the revised policy.

12. CONTACT
If you have questions about this policy or how your data is used, please email us at: hello@welcometothecollective.co.uk