Privacy Policy — YourBestRetreat.com Last updated: June 2026
1. Introduction
This Privacy Policy explains how YourBestRetreat.com, operated by Your Best Retreat B.V. (hereinafter “we”, “us” or “our”), collects, uses and protects your personal data when you visit or use our website.
We are committed to protecting your privacy and handling your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable Dutch data protection law.
If you have any questions about this policy, please contact us at: welcome@yourbestretreat.com
2. Data Controller
The data controller responsible for processing your personal data is:
Your Best Retreat B.V. KvK: 09129148 Email: welcome@yourbestretreat.com Website: yourbestretreat.com
3. What data we collect and why
3.1 Website visits When you visit our website, we do not store any personal data unless you actively submit a form. Your IP address may be logged temporarily for security purposes (e.g. blocking spam).
3.2 Contact and enquiry forms When you submit a contact or enquiry form, we collect your name, email address and any information you provide in your message. This data is used solely to respond to your enquiry.
3.3 Bookings and reservations When you make a booking through our platform, we collect the personal data necessary to process your reservation, including name, address, email address and payment information. This data is stored securely in our booking system and administrative records. Payment data is processed by our payment provider and is not stored by us directly.
3.4 Newsletter If you subscribe to our newsletter, we collect your email address for the purpose of sending you updates about retreats and programmes. You can unsubscribe at any time via the link in every email.
4. Legal basis for processing
We process your personal data on the following legal grounds:
- Performance of a contract — to process bookings and reservations
- Legitimate interest — to respond to enquiries and improve our services
- Consent — for newsletter subscriptions and marketing communications
5. How we share your data
We do not sell your personal data to third parties. We may share your data with:
- Payment providers — to process transactions securely
- Email service providers — to send newsletters and booking confirmations
- Website hosting and development partners — who have access only to the extent necessary to maintain and operate the website
- Retreat providers listed on our platform — only the data necessary to process your booking with them
All third parties are bound by strict data processing agreements and may not use your data for any other purpose.
6. International transfers
Some of our service providers (including Google) may store data outside the European Economic Area. Where this occurs, we ensure appropriate safeguards are in place, including Standard Contractual Clauses or participation in recognised data transfer frameworks.
7. Analytics
We use Google Analytics to understand how visitors use our website. IP addresses are anonymised and we have disabled data sharing with Google product specialists. Data is retained for 26 months. We have a data processing agreement in place with Google.
8. Cookies
Our website uses cookies for functional and analytical purposes. By continuing to use our website, you consent to the use of cookies in accordance with this policy. You can disable cookies at any time through your browser settings.
For more information on managing cookies, please visit: www.allaboutcookies.org
9. Data security
Our website is secured with an SSL certificate. Access to personal data is restricted to authorised personnel only and protected by password and two-factor authentication where applicable. In the event of a data breach, we will notify the relevant authorities and affected individuals in accordance with our legal obligations.
10. Your rights
Under the GDPR, you have the right to:
- Access — request a copy of the personal data we hold about you
- Rectification — request correction of inaccurate or incomplete data
- Erasure — request deletion of your personal data, where no legal obligation to retain it exists
- Restriction — request that we limit processing of your data
- Data portability — receive your data in a structured, machine-readable format
- Object — object to processing based on legitimate interest
- Withdraw consent — at any time, where processing is based on consent
To exercise any of these rights, please contact us at: welcome@yourbestretreat.com
You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens): www.autoriteitpersoonsgegevens.nl
11. Retention periods
We retain personal data only for as long as necessary for the purpose for which it was collected, or as required by law. Booking data may be retained for up to seven years for administrative and legal purposes.
12. Links to other websites
Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites and accept no liability in this regard.
13. Changes to this policy
We reserve the right to update this Privacy Policy at any time. The most recent version will always be published on this page. We recommend reviewing this policy periodically.
Contact YourBestRetreat.com Your Best Retreat B.V. welcome@yourbestretreat.com