We operate conscientiously within the requirements of the General Data Protection Regulations 2018 and other electronic marketing legislation. We work within the principles of fair data processing, namely:
Using information in a way that people would reasonably expect
Thinking about the impact of our processing
Being transparent and ensuring that people know how we’ll use their information
This statement, may be amended from time to time, sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us, as data controller and a data processor.
What this Privacy Statement covers
This statement covers how we treat any personal information that we collect and receive either from our website or as part of our broader operating processes.
We do not sell or pass on any personal information about our clients or prospects and we only use any information shared with us for running and improving our services.
This statement tells you what information we collect, the steps we take to protect and secure it, how we use and share information, and finally, how you can contact us with questions or concerns.
Information we collect
(a) Personal Information. We collect personal information (e.g., name, email address, phone number, etc.) when you:
Send us an enquiry through our website
Work with us as a customer, supplier or employee
Exhibitor at an event where we are appointed to organise and / or manage operations and “official contractor” services
Sign-up to participate / attend an event where we are appointed to manage the registration process
*Note: This website is not intended for children and we do not knowingly collect data relating to children.
We also maintain a simple prospect database justified under a Legitimate Interest assessment where we collate names and contact details of B2B decision makers who are known buyers of our type of service.
(b) Other User Information. When you access and use our services, we may collect additional contextual information about your company as well as your design and aesthetics preferences. We do not link this additional data to any other information we collect about you and do not undertake any profiling activity from this type of data.
(c) Billing Information. If you contract us for event services, we will require your billing information in order to process the transaction. Billing information includes your name, address, telephone number, credit, debit or bank details and other information necessary to process the transaction.
(d) Use of our website
The personal data or personal information we collect about you is made up of the information you give us or from which you can be identified during the use of the website and our communications with you. You can access and browse our website without disclosing your personal data. However, there are some exceptions to this which are detailed in the table below. Our website uses email for visitors to request or share information with us. We collect visitor contact information (i.e. name, email address and phone numbers) and unique identifiers (if applicable). Our website does not enable our visitors to communicate with others or to post information to be accessed by others.
(e) IP Addresses and Cookies. We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual. For the same reason, we may obtain information about your general internet usage by using a cookie file which is stored on the hard drive of your computer.
Uses made of the information
We use this information held about you in the following ways:
To ensure that content from our site is presented in the most effective manner to you and to your computer
To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes
To allow you to participate in interactive features of our service, when you choose to do so
To cross reference information you have supplied with information supplied by our client for purposes of verifying whether you are an authorised user
To notify you about changes to our service.
We may also contact you by email, post or telephone. Please note that where you have provided sensitive data to us, we shall only use your sensitive data for the purpose for which the data was provided to us.
You have the right to withdraw consent to marketing at any time by using the ‘unsubscribe’ or ‘opt-out’ mechanism on any emails we send you or by sending an email to email@example.com
We strive to provide you with choices regarding certain personal data uses, particularly around marketing and advertising.
Disclosure of this information
We may disclose your personal information to third parties:
If we need to do so to our selected suppliers to enable us to deal with your request
If Wanderlust Yoga & Adventures or substantially all of our assets are acquired by a third party, in which case personal data held about our customers will be one of the transferred assets.
If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our Terms and Conditions and other agreements; or to protect the rights, property, or safety of our clients, customers or others.
Our site may, from time to time, contain links to and from the websites of our partner networks, clients, affiliates or other external websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these privacy policies. Before you submit any personal data to our site, you may want to check the policies of our client, for whom we are collecting the data, and whom for your purposes is the data controller. In the absence of any details being listed on our site, you may contact us at firstname.lastname@example.org
Information Use, Legal Basis, Sharing, Disclosure, and Retention
(a) Use and Legal Basis.
Sales and Service Delivery. Wanderlust Yoga & Adventures uses personal data for developing and issuing sales proposals and for providing its products and services – and justifies this under the legal basis of “Contract”.
Marketing Emails. Wanderlust Yoga & Adventures uses personal data to update existing clients and prospective B2B client with information about our services. We justify this through a “Legitimate Interests” assessment and offer opt-out functionality for those no longer wishing to hear from us in this way.
We also capture requests for marketing emails through our website sign-up function and justify this through “Legitimate Interests” and, again, offer functionality for those no longer wishing to hear from us in this way.
Engagement Emails and Vital Information to Event Registrants. Wanderlust Yoga & Adventures captures registration details of event attendees where it has been contracted to do so by third party event owners and justifies this through “Consent”. This may include rudimentary medical data captured for an attendees vital interest, such as dietary requirements, allergies or accessibility / inclusivity requirements. Our processes provide full transparency that this data is then shared with the event owner. All our websites are built with password protection to access the administration area. Our websites use a 256 bits data encryption SSL (secure socket layer) to encrypt all data travelling to and from the web server. Our data centres where our websites are hosted have firewalls built into or servers that stop hackers.
Administrative and Legal. We process small amounts of employee and subcontractor data under the legal basis of “Contract” and, if in the Vital Interests of the data subject, or with specific consent, or to comply with Employment or Health and Safety or another Legal requirement will hold special category data such as medical history or driving convictions.
Wanderlust Yoga & Adventures does not share, sell, rent or trade personal information with any third parties for marketing or promotional purposes. It will only share limited data with suppliers where required operationally and with clients (where the data has been collected on their behalf in the first instance). It also reserves the right to share data with relevant authorities if compelled to do so to comply with legal obligations.
Wanderlust Yoga & Adventures may disclose personal information under the following circumstances:
In certain situations, we may disclose personal data in response to lawful requests by public authorities, including but not limited to national security or law enforcement requests. We may also disclose your personal information as required by law, such as to respond to court orders, or similar legal processes, to establish or exercise our legal rights or, defend against legal claims, or if in our judgment in such circumstances disclosure is required or appropriate.
We will retain existing customer information for as long as a customer account is active with us or as needed to provide our services – and where required to comply with our legal obligations, resolve disputes, and enforce our agreements. We will retain all prospective customer data until any such time that we receive a request to opt-out.
Details of retention periods for different aspects of your personal data are available upon request from us.
Confidentiality and Security
We use physical, electronic, and procedural safeguards to protect personal information – Our IT arrangements should be able to detect a significant data breach. Where such a breach could result in discrimination, damage to reputation, financial loss, loss of confidentiality or any other significant economic or social disadvantage we will notify the ICO, if we are the Controller, or our client, in the event they are the Controller. Where a breach is likely to result in a high risk to the rights and freedoms of individual data subjects, we will also notify those concerned directly and at the earliest practical opportunity. We shall then fully investigate a data breach and implement corrective action to prevent recurrence.
By using our services or providing personal information to us, you are consenting to Wanderlust Yoga & Adventures communicating with you electronically regarding security, privacy, and administrative issues related to your use of our services. We may post a notice on our website if a security breach occurs. In these circumstances, we may also send an email to you at the email address you have provided to us.
Data transmissions over the Internet are not 100% secure. Consequently, we cannot guarantee or warrant the security of any information you transmit to us and you do so at your own risk. Once we receive your transmission, we use reasonable efforts to ensure security on our systems.
Right to Be Informed
We strive to ensure that all those engaging with us are informed of our arrangements for processing personal data through this Privacy Statement which is linked to our website home page.
Right of Access
We will respond to data requests within 1 month and will only charge for requests that are manifestly unfounded or excessive. If we have grounds to refuse a request we will inform the data subject and make them aware of their right to complain to the ICO or to seek civil action – again within 1 month of receiving the request
Changes to this Privacy Statement
Wanderlust Yoga & Adventures reserves the right to revise, modify, or update this statement at any time. We will notify you via email about material changes in the way we treat personal data or by placing a prominent notice on this website.
Contacting Wanderlust Yoga & Adventures
If you have a privacy concern regarding Wanderlust Yoga & Adventures, or this statement, you may contact us via email@example.com
Last updated: 7 October 2020