English | Nederlands

Bright View Retreats

Privacy policy

Privacy Policy – Bright View AB / BrightView Retreats

Last updated: 02/24/2026

1. Who we are

The website https://brightviewretreats.com is operated by:

Bright View AB
Järnaviksvägen 25
37263 Bräkne-Hoby
Sweden
Phone: 06-20768640
Contact person: Igor Corbeau
E-mail: info@brightviewretreats.com
Registration number: 559519-6683

Bright View AB is the data controller for the processing of your personal data as described in this privacy policy.

2. Scope of this privacy policy

This privacy policy applies to:

  • Visitors of https://brightviewretreats.com
  • People who book or request a retreat or service with us
  • People who subscribe to our newsletter
  • Anyone who contacts us in another way (e.g. via e-mail or contact forms)

3. What personal data we process

Depending on how you use our website and services, we may process the following categories of data:

Identity and contact details

  • Name
  • E-mail address
  • Phone number
  • Address and billing details (where necessary)

Booking and customer information

  • Information about booked retreats (dates, location, type of retreat, number of participants)
  • Preferences and remarks you share with us (e.g. dietary preferences)
  • Correspondence regarding your booking or request

Invoice and payment data

  • Invoice details (name, address, company name, VAT number where relevant)
  • Payment status and payment reference
  • Actual payments are processed by external payment providers or your bank; we do not receive full card or bank account details, only what is needed for our administration.

Special categories of data (only if you provide them and only where necessary)

  • Information about health, allergies or physical limitations, to the extent that this is relevant for your safe participation in a retreat.
    We only process this type of data with your explicit consent and solely for this purpose.

Website and usage data

  • IP address (to the extent not anonymised)
  • Browser and device information
  • Pages visited, date and time, referring URL
  • Information you enter in contact or registration forms

Cookies and similar technologies

  • Functional, analytical and (where used) marketing cookies, managed on our WordPress website via the CookieYes plugin.
    See section 7 (Cookies and CookieYes) for more details.

4. For what purposes we use your data

We process your personal data for the following purposes:

  1. Performance of contracts and handling bookings

    • Processing and managing your booking or request
    • Sending confirmations and practical information
    • Administration and invoicing
      Legal basis: performance of a contract.

  2. Communication and customer support

    • Responding to questions by e-mail or via contact forms
    • Handling feedback or complaints
      Legal basis: performance of a contract and/or legitimate interest.

  3. Safe and appropriate organisation of retreats

    • Using dietary preferences and relevant health information you provide so that your participation is safe and appropriate
      Legal basis: explicit consent (for health data) and performance of a contract.

  4. Newsletters and marketing

    • Sending newsletters and updates about retreats and offers, if you have subscribed or are an existing customer and have not opted out
      Legal basis: consent and/or legitimate interest (for existing customers). You can unsubscribe at any time via the link in each e-mail.

  5. Website management, security and analysis (WordPress)

    • Technical management and security of the WordPress website
    • Analysing website usage to improve our website and services
      Legal basis: legitimate interest and, for non-essential cookies, your consent via CookieYes.

  6. Compliance with legal obligations

    • Fulfilling tax and accounting obligations
    • Handling potential disputes or legal claims
      Legal basis: legal obligation and legitimate interest.

5. Legal bases under the GDPR

We process your personal data on the following legal bases:

  • Performance of a contract
  • Consent
  • Legal obligation
  • Legitimate interest

You can withdraw your consent at any time; this does not affect the lawfulness of processing based on consent before its withdrawal.

6. Use of WordPress and third parties

Our website runs on WordPress. As a result, (personal) data can be processed by:

  • Our hosting provider
  • WordPress plugins that add functionality (e.g. forms, security, caching, analytics)

Where required, we have data processing agreements in place with these parties and we limit processing to what is necessary to provide their services.

We may also use:

  • E-mail and newsletter providers (for sending confirmations and newsletters)
  • Payment providers (for processing payments)
  • Analytics services (possibly via a plugin or external tool), subject to your cookie preferences

If personal data is transferred to countries outside the EU/EEA, we ensure appropriate safeguards are in place (such as Standard Contractual Clauses or an adequacy decision).

7. Cookies, CookieYes and tracking

Our website uses cookies and similar technologies. We use the CookieYes plugin to manage cookie consent.

7.1 Types of cookies

  1. Necessary / functional cookies

    • Required for the basic functioning and security of the website
    • Always placed; do not require consent.

  2. Preference and extended functional cookies

    • Remember settings (e.g. language preference, form entries)
    • Legal basis: legitimate interest.

  3. Analytical cookies

    • Measure website usage and performance
    • Where possible, these are anonymised; if they are not fully anonymised, they are only placed with your consent through CookieYes.

  4. Marketing / tracking cookies (if used)

    • For personalised content or advertising
    • For social media integrations or remarketing
    • Only placed if you consent via the CookieYes banner.

7.2 CookieYes

On your first visit, CookieYes will show a cookie banner. You can:

  • Accept all cookies
  • Allow only necessary cookies
  • Enable or disable specific categories

Your preferences are stored by CookieYes. You can change them at any time via the “Cookie settings” link (or similar) on the website or by deleting cookies in your browser.

More detailed information about specific cookies (name, purpose, retention period) is available in the cookie statement on our website, managed by CookieYes.

8. Data retention

We do not keep your personal data for longer than is necessary for the purposes for which it was collected, unless a longer retention period is required by law.

Indicative retention periods:

  • Booking and invoicing data: up to 7 years after the end of the financial year (tax and accounting purposes).
  • Communication and contact requests: up to 2 years after the matter has been handled, unless needed as evidence or for an ongoing dispute.
  • Newsletter data: until you unsubscribe. After that we keep only minimal data to record that you have unsubscribed.
  • Health and other special category data: only for as long as necessary for the specific retreat; then deleted or anonymised.

9. Security

We take appropriate technical and organisational measures to protect your personal data, including:

  • Encrypted connections (HTTPS/SSL)
  • Secure storage and restricted access to data (only for people who need it)
  • Security plugins and regular updates of WordPress, themes and plugins
  • Strong passwords and, where possible, additional security measures

10. Your rights

Under the GDPR, you have the following rights:

  • Right of access to your personal data
  • Right to rectification of inaccurate or incomplete data
  • Right to erasure of data (“right to be forgotten”) in certain cases
  • Right to restriction of processing in certain cases
  • Right to data portability (where technically feasible)
  • Right to object to processing based on legitimate interest
  • Right to object to the use of your data for direct marketing
  • Right to withdraw your consent (where processing is based on consent)

To exercise your rights, please contact:

Bright View AB
E-mail: info@brightviewretreats.com
Contact person: Igor Corbeau

We will respond as soon as reasonably possible and at the latest within one month of receiving your request.

You also have the right to lodge a complaint with the competent supervisory authority in Sweden (Integritetsskyddsmyndigheten, IMY – https://www.imy.se/) or, if you live in another EU country, with your national data protection authority.

11. Children’s data

Our website and services are not specifically directed at children under 16. We do not intend to knowingly collect personal data from children without parental/guardian consent. If you believe we have collected personal data from a child without such consent, please contact us and we will delete this information as soon as possible.

12. Changes to this privacy policy

We may update this privacy policy from time to time, for example when our services change or when required by law. The most recent version is always available on our website. In case of substantial changes, we may inform you more directly (e.g. by e-mail or a notice on the website).

13. Contact

If you have any questions about this privacy policy or how we process your personal data, please contact:

Bright View AB – BrightView Retreats
Järnaviksvägen 25
37263 Bräkne-Hoby
Sweden
Phone: 06-20768640
E-mail: info@brightviewretreats.com
Contact person: Igor Corbeau

Back to homepage