Privacy & GDPR
This policy is a base template prepared for the Longevity Resort website. The company details in square brackets and the final wording should be confirmed by legal counsel before the site goes live.
This Privacy Policy explains how Longevity Resort(“we”, “us”, “our”) collects, uses and protects your personal data when you visit this website or contact us, in line with the EU General Data Protection Regulation (GDPR) and applicable local law.
1. Who is responsible for your data
The data controller for this website is:
- [Legal entity name]
- [Registered address]
- [Company / registration number, if applicable]
- Email: info@longevityresort.com
2. What data we collect
We only collect data you choose to give us, plus the minimum needed to run the site securely:
- Enquiry form: your name, email address, preferred villa and any message you send through the “Reserve” form.
- Brochure download: the email address you enter to receive the brochure.
- Technical data: standard server and security logs (for example IP address, browser type, pages viewed) created automatically when any website is accessed.
We do not knowingly collect special-category data, and the site is not intended for children.
3. Why we use your data and our legal basis
| Purpose | Legal basis (GDPR Art. 6) |
|---|---|
| Responding to your enquiry and providing information you request | Steps taken at your request prior to a contract — Art. 6(1)(b) |
| Sending the brochure you asked for | Consent — Art. 6(1)(a) |
| Operating, securing and improving the website | Legitimate interests — Art. 6(1)(f) |
| Meeting legal and accounting obligations | Legal obligation — Art. 6(1)(c) |
We do not send marketing emails or share your data with third parties for their own marketing, as stated next to the enquiry form.
4. Cookies and similar technologies
We use only strictly necessary storage by default and ask for your choice through a consent banner. Full details are in our Cookie Policy.
5. Who we share your data with
We may share data with trusted service providers who process it on our behalf, under contract:
- Website hosting / infrastructure: Vercel Inc.
- Email and enquiry handling: [email provider]
- Customer relationship management (CRM): [CRM provider, e.g. Zoho Bigin — if used]
We may also disclose data where required by law or to protect our legal rights.
6. International transfers
Some providers may process data outside the European Economic Area. Where that happens, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or an adequacy decision.
7. How long we keep your data
We keep enquiry and brochure data only as long as needed to handle your request and for a reasonable follow-up period, then delete or anonymise it, unless a longer period is required by law. Security logs are kept for a short, limited period.
8. Your rights
Under the GDPR you have the right to:
- access the personal data we hold about you;
- have inaccurate data corrected;
- have your data erased;
- restrict or object to processing;
- data portability;
- withdraw consent at any time, without affecting prior processing;
- lodge a complaint with a data protection supervisory authority.
To exercise any of these rights, contact us at info@longevityresort.com.
9. How we protect your data
We use appropriate technical and organisational measures to protect your data against unauthorised access, loss or misuse. No method of transmission over the internet is fully secure, but we work to keep your data safe.
10. Changes to this policy
We may update this policy from time to time. The current version is always available on this page, with the “last updated” date shown above.
11. Contact
Questions about this policy or your data? Email info@longevityresort.com. You also have the right to complain to the supervisory authority in your country of residence.