Legal

Privacy Policy

Last updated: 11 June 2026

1. Who we are

Danu Lodge ("we", "us", "our") is a retreat and healing centre based at Clonroe, Gorey, Co. Wexford, Y25 F772, Ireland. We are the data controller responsible for your personal data. You can reach us at kate@danulodge.com or +353 87 232 5383.

2. What data we collect

• Contact details — name, email, phone number when you contact us or make an enquiry.
• Booking details — retreat chosen, dates, number of participants, dietary requirements and any medical notes you choose to share.
• Newsletter — your email address if you subscribe.
• Technical data — IP address, browser type, pages visited, collected through cookies and standard server logs.

3. How we use your data (lawful basis)

• To respond to enquiries and manage bookings — performance of a contract.
• To send the newsletter — your consent (you may unsubscribe at any time).
• To keep the site safe and improve it — our legitimate interests.
• To meet legal obligations — tax, accounting and health-and-safety records.

Medical notes you provide in a booking are special-category data under GDPR Article 9. We process this only with your explicit consent, solely to deliver the retreat safely, and we never share it for marketing.

4. Who we share data with

We only share data with trusted service providers that help us run the business:

• Website and database hosting (Lovable Cloud / Supabase, EU region)
• Email delivery providers for booking confirmations and the newsletter
• Our accountant, for tax and statutory record-keeping

We never sell your personal data. We do not transfer data outside the EU/EEA unless safeguarded by appropriate standard contractual clauses.

5. How long we keep it

• Enquiries with no booking — up to 12 months.
• Booking records — 7 years (required for Irish tax law).
• Medical notes — deleted within 12 months of your retreat unless you ask us to keep them longer.
• Newsletter subscribers — until you unsubscribe.

6. Your rights under GDPR

You have the right to:

• Access a copy of your data
• Correct inaccurate data
• Have your data deleted ("right to be forgotten")
• Restrict or object to processing
• Withdraw consent at any time
• Lodge a complaint with the Irish Data Protection Commission

To exercise any of these, email kate@danulodge.com.

7. Security

Your data is stored on encrypted, access-controlled servers within the EU. We use HTTPS across the site and limit internal access on a need-to-know basis.

8. Cookies

See our Cookie Policy for full detail.

9. Changes to this policy

We may update this policy from time to time. Material changes will be notified on this page with a new "last updated" date.