top of page

Privacy Policy

Last updated: 27/09/2025

This Privacy Policy explains how we collect, use, and protect your personal data when you visit our website, engage with our services, or contact us in any way. We are committed to safeguarding your privacy and complying with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the guidance issued by the Information Commissioner’s Office (ICO).

1. Who We Are

We are Kim and Carl, creators of The Manse Method® and operators of The Manse Retreat.
Our registered business address is: The Manse, 4 Mill Lane, Brigstock, Kettering, Northamptonshire. NN14 3HG
Email: contact@themanseretreat.com

2. What Personal Data We Collect

We may collect and process the following types of personal data:

  • Contact details – such as name, email address, phone number, and postal address.

  • Professional information – if you enquire about practitioner training, such as qualifications or occupation.

  • Booking details – including details of services purchased or events attended.

  • Health and wellbeing information – if voluntarily shared in the context of therapy, retreat bookings, or practitioner training.

  • Website usage data – including cookies, IP addresses, browser type, and browsing activity.

  • Marketing preferences – including consent to receive newsletters or updates.

We will only collect the minimum amount of personal data necessary for the purposes outlined below.

3. How We Use Your Data

We use your personal data only where there is a lawful basis to do so. This includes:

  • Providing services: To deliver retreats, therapy sessions, or practitioner training you have requested.

  • Communications: To respond to enquiries, send booking confirmations, or provide requested information.

  • Marketing (with consent): To send newsletters, event information, or promotional updates.

  • Compliance: To meet legal, accounting, or regulatory obligations.

  • Website improvements: To monitor usage and improve user experience.

We do not use personal data for automated decision-making or profiling.

4. Lawful Bases for Processing

We will process your personal data under one or more of the following lawful bases:

  • Consent: Where you have given explicit consent (e.g. for marketing communications).

  • Contract: Where processing is necessary to fulfil a contract with you (e.g. retreat bookings, training enrolment).

  • Legal obligation: Where required by law or regulatory authorities.

  • Legitimate interests: Where it is necessary for our business interests and does not override your rights (e.g. improving services).

5. How We Store and Protect Your Data

  • We take data security seriously and have implemented appropriate technical and organisational measures to protect your information against unauthorised access, loss, or misuse. These include:

  • Secure password-protected systems and encrypted data storage.

  • Limiting access to personal data to authorised personnel only.

  • Regular reviews of security practices and GDPR compliance.

  • We will retain your personal data only for as long as necessary to fulfil the purposes for which it was collected — typically up to 7 years for client records, in line with professional and legal requirements.

6. Sharing Your Data

  • We do not sell or rent your personal data to third parties. We may share information with:

  • Service providers (e.g. secure email or booking platforms) strictly for the purpose of delivering our services.

  • Legal or regulatory authorities where required by law.

  • Any third parties we work with are carefully selected and bound by strict data protection obligations.

7. International Transfers

  • If we transfer data outside the UK or European Economic Area (EEA), we ensure that appropriate safeguards are in place (such as standard contractual clauses) to protect your personal information in line with UK GDPR.

8. Your Rights Under GDPR

  • You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.

  • Rectification: Ask us to correct any inaccuracies.

  • Erasure: Request deletion of your data (“right to be forgotten”) under certain conditions.

  • Restriction: Ask us to limit processing in certain situations.

  • Portability: Request a copy of your data in a machine-readable format.

  • Objection: Object to certain types of processing, such as direct marketing.

  • Withdraw consent: If processing is based on consent, you may withdraw it at any time.

  • To exercise any of these rights, contact us at [Insert email address]. We will respond within one month of receiving your request.

9. Cookies and Website Tracking

  • Our website uses cookies and similar technologies to improve functionality, personalise content, and analyse traffic. You can control cookie preferences through your browser settings.

10. Contacting the ICO

  • If you are unhappy with how we have handled your data, please contact us first. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO):
    Website: https://ico.org.uk

11. Updates to This Policy

  • We may update this privacy policy from time to time to reflect changes in our practices or legal obligations. Any significant changes will be posted on this page with a revised “Last updated” date.

bottom of page