dormavel.com ("we", "us", "our") is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use the Morning Balance online yoga program. Please read it carefully.
1. Data Controller
dormavel.com operates the Morning Balance online yoga program. For the purposes of applicable data protection legislation, including the General Data Protection Regulation (GDPR) where applicable, dormavel.com acts as the data controller of personal data collected through this website.
2. Information We Collect
2.1 Information You Provide
- Contact form submissions: Your name, email address, and message content when you contact us through forms on this site.
- Programme enquiries: Plan preferences and notes you include when requesting information about Morning Balance.
2.2 Automatically Collected Information
- Technical data: IP address, browser type, operating system, referring URLs, and pages viewed.
- Cookie data: Information stored in cookies and similar technologies as described in our Cookie Policy.
3. Legal Bases for Processing (GDPR Article 6)
We process your personal data only where we have a lawful basis to do so:
- Consent (Art. 6(1)(a)): Where you have explicitly provided consent, such as ticking a consent box on our contact form or accepting cookies.
- Legitimate interests (Art. 6(1)(f)): For analytics, security, and improving our services, where such interests are not overridden by your rights.
- Contractual necessity (Art. 6(1)(b)): To fulfil service-related obligations when you enrol in Morning Balance.
- Legal obligation (Art. 6(1)(c)): Where processing is necessary to comply with applicable law.
4. How We Use Your Information
- To respond to your enquiries and provide customer support
- To process and fulfil enrolment in the Morning Balance programme
- To send you relevant information about your membership, where consented
- To analyse and improve the performance of our website
- To comply with legal obligations and protect our legal rights
- To detect and prevent fraudulent or harmful activity
5. Data Retention
We retain personal data only for as long as is necessary for the purposes for which it was collected, or as required by applicable law. Contact enquiry data is generally retained for up to 24 months. You may request deletion at any time (see Section 7).
6. Data Sharing and Disclosure
We do not sell your personal data. We may share data with trusted third-party service providers who assist us in operating the website and programme (e.g., hosting providers, email delivery services). These processors act under data processing agreements and are not permitted to use your data for their own purposes.
We may disclose data if required by law, court order, or to protect the rights and safety of dormavel.com, our members, or the public.
7. Your Data Subject Rights
Under GDPR and applicable data protection law, you have the following rights:
- Right of access: To request a copy of your personal data held by us.
- Right to rectification: To request correction of inaccurate or incomplete data.
- Right to erasure: To request deletion of your data, subject to legal retention requirements.
- Right to restriction: To request that we limit processing of your data in certain circumstances.
- Right to data portability: To receive your data in a structured, machine-readable format.
- Right to object: To object to processing based on legitimate interests or for direct marketing.
- Right to withdraw consent: Where processing is based on consent, to withdraw it at any time without affecting prior processing.
To exercise any of these rights, please contact us using the form on our Contact page. We will respond within 30 days.
8. Cookies
We use cookies and similar technologies to enhance your experience. For full details, please read our Cookie Policy.
9. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or destruction. No transmission over the internet can be guaranteed to be fully secure; however, we take reasonable precautions to protect your data.
10. International Transfers
If personal data is transferred outside the European Economic Area (EEA), we ensure adequate safeguards are in place in accordance with GDPR Chapter V, such as Standard Contractual Clauses approved by the European Commission.
11. Supervisory Authority
If you believe your data has been processed unlawfully, you have the right to lodge a complaint with the relevant data protection supervisory authority in your country of residence. A full list of EU supervisory authorities is available at edpb.europa.eu.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with a revised effective date. We encourage you to review this policy periodically.
13. Contact
If you have any questions about this Privacy Policy or how we handle your data, please use the contact form on our website. We will be happy to assist you.