The Type of Personal Information We Collect

We collect the following information:

When you book a retreat, training, workshop, or 1:1 session:
Name
Email address
Phone number
Billing information (processed securely through Stripe/Wix Payments)
Emergency contact
Health information (only where relevant to your safe participation)

When you join the On-Demand Membership:
Name
Email address
Payment information (handled by third-party processors)
Login details
Usage/activity data (e.g. videos viewed)

When you join the newsletter:
Email address
Name (optional)
Marketing preferences

When you use the website:
IP address
Device and browser information
Cookies and analytics data
We only collect information necessary to provide our services safely and effectively.

​

2. How We Get the Personal Information and Why We Have It
How we get information:
Directly from you (through bookings, forms, membership, email sign-ups)
Automatically through website cookies and analytics
Through third-party platforms you interact with (e.g. Vimeo for video access)

Why we use your data:
We use your information to:
Process and manage bookings
Provide retreat, training, membership, and 1:1 services
Contact you about your booking
Send newsletters or updates (only if you opt in)
Improve our website and offerings
Comply with legal and accounting requirements

Legal reasons we use your information:
Under UK GDPR, we process your data based on:
Contract (to deliver the service you booked)
Consent (newsletter, health forms, marketing)
Legal Obligation (records required by UK law)
Legitimate Interest (business analytics, website functionality)
We never sell your personal information.

​

3. How We Store Your Personal Information
We store your information securely using:
Encrypted payment systems
Password-protected accounts
Secure databases with limited access
GDPR-compliant third-party platforms (Wix, Stripe, Vimeo, Mailchimp/Flodesk)

How long we keep your information:
Booking + payment records: 7 years (required by UK tax law)
On-demand membership data: until your membership ends
Email marketing lists: until you unsubscribe
Health forms: deleted 6–12 months after your retreat or event
Mentorship/1:1 notes: kept only while relevant
When information is no longer needed, it is securely deleted.

​

4. Your Data Protection Rights
Under UK GDPR, you have the right to:
Access the personal data we hold about you
Request correction of inaccurate information
Request deletion of your data
Restrict or object to how your data is used
Withdraw consent at any time (for email marketing or health information)
Request a copy of your data (data portability)

To exercise any of these rights, contact us at:
hello@tanitalessingyoga.com

5. How to Complain
If you have concerns about how your data is used, please contact us first: hello@tanitalessingyoga.com