top of page
1_edited.png

Privacy Policy - The Layali Collective

1. Introduction

At The Layali Collective ("we," "our," "us"), we value your privacy and are committed to protecting your personal data. This Privacy Policy explains what data we collect, how we use it, how we keep it secure, and your rights under the General Data Protection Regulation (GDPR) and applicable Dutch and EU data protection laws.

By using our website or booking a retreat/trip, you agree to the terms of this Privacy Policy.

2. Personal Data We Collect

We may collect and process the following types of personal data:

  • Contact information: name, email address, phone number, postal address

  • Booking information: retreat details, dates, dietary preferences, room requests

  • Payment details: processed via secure third-party providers; we do not store your full credit card information

  • Travel information: arrival/departure details, passport details if required

  • Health/dietary information: only if voluntarily provided for your safety and comfort

  • Website usage data: IP address, browser type, pages visited (via cookies)

We do not collect sensitive data unless voluntarily provided for retreat/trip purposes.

3. How We Use Your Personal Data

We process your personal data to:

  • Handle bookings, payments, and customer service

  • Communicate important travel information before and during the retreat

  • Comply with legal obligations, such as financial reporting and tax requirements

  • Improve our services and website

  • Send marketing communications if you have explicitly opted in

Legal bases for processing:

  • Contractual necessity for bookings

  • Legitimate interests for service improvement and updates

  • Legal obligations for record keeping

  • Consent for optional marketing and health data

4. Sharing Your Personal Data

We only share your personal data when necessary for:

  • Retreat/trip suppliers, such as accommodation, transport, or activity providers

  • Service providers, like IT support and payment processors, under confidentiality agreements

  • Legal authorities if required by law

We never sell your data to third parties.

5. International Transfers

If we transfer your data outside the European Economic Area (EEA), for example to trip or retreat suppliers in Morocco, we ensure appropriate safeguards such as standard contractual clauses or transfers to countries with adequate protection levels.

6. Data Retention

  • Booking and financial data: retained for 7 years under Dutch tax law

  • Marketing data: retained until you unsubscribe or withdraw consent

  • Health/dietary information: deleted immediately after the retreat/trip unless legally required

7. Your Data Protection Rights

  • Under the GDPR, you have the right to:

  • Access, rectify, or delete your data

  • Restrict or object to processing

  • Request data portability

  • Withdraw consent at any time for processing based on consent

  • Contact us at info@layalicollective.com to exercise these rights.

8. Data Security

We use appropriate technical and organizational measures, such as SSL encryption and restricted access, to protect your data against unauthorized access or disclosure.

9. Third-Party Links

Our website may contain links to external sites. We are not responsible for their privacy practices or content.

10. Complaints

If you believe we have violated your data protection rights, you can contact us at info@layalicollective.com or file a complaint with the Dutch Data Protection Authority via www.autoriteitpersoonsgegevens.nl.

11. Updates to This Privacy Policy

We may update this Privacy Policy from time to time. The latest version will always be posted on our website with the effective date indicated at the top.

bottom of page