Confidentiality policy

Yogazaz — Elsa Keraudren

Last updated: 16/02/2026

‍

1. Responsible for the treatment

‍

The data controller is:

‍

Elsa Keraudren

Yogazaz

belgium

E-Mail: info@yogazaz.com

Sito web: https://yogazaz.com

‍

As data controller, we are committed to complying with the General Data Protection Regulation (GDPR) as well as applicable Belgian data protection legislation.

‍

2. Personal data collected

‍

We only collect the data necessary for the organization and management of our activities (courses, workshops, retreats, theme days, training).

‍

2.1 Identification and contact data

‍

• First and last name
• Email address
• Phone number
• Postal address (if required for billing)

‍

2.2 Health Data

‍

Information concerning injuries, pathologies or medical conditions relevant to the practice of yoga.

⚠️ This data is considered sensitive data within the meaning of the GDPR. They are collected only with your explicit consent and for the sole purpose of ensuring your safety and well-being during practice.

‍

2.3 Technical data

‍

• IP address
• Navigation data
• Cookies

‍

3. Purposes and legal bases of the treatment

‍

We process your data only for specific purposes and on a valid legal basis:

‍

Purpose and legal basis

Management of registrations and reservations: Execution of a contract

Organization of courses, workshops and retreats: Execution of a contract

Invoicing and accounting obligations: Legal obligation

Communication of information relating to services: Legitimate interest

Ensuring safety during practice: Explicit consent

Site improvement and traffic analysis: Consent (analytical cookies)

‍

‍

4. Shelf life

‍

Your data is stored:

‍

• 3 years from data collection
• 2 years after the last participation in a service
• 7 years for accounting data (Belgian legal obligation)

‍

Health data is kept only for as long as is necessary for the contractual relationship.

‍

5. Data sharing

‍

Your data is never sold or given to third parties.

‍

They can only be shared with providers necessary for the functioning of the services:

‍

• Momoyoga (reservation management)
• Google Analytics (traffic analysis)
• Web site hosting
• Payment tools

‍

These service providers act as subcontractors and are required to comply with the GDPR.

‍

6. Transfer outside the European Union

‍

Some tools (e.g. Google) may involve a transfer of data outside the European Union.

‍

In this case, we ensure that appropriate guarantees are put in place (standard contractual clauses approved by the European Commission).

‍

7. Cookies

‍

The site uses cookies:

‍

• Technical cookies necessary for proper functioning
• Analytical cookies (Google Analytics)

‍

During your first visit, a banner allows you to accept or refuse non-essential cookies.

‍

You can change your preferences at any time via your browser settings.

‍

8. Your rights

‍

In accordance with the GDPR, you have the following rights:

• Right of access
• Right to rectification
• Right to erasure
• Right to limitation of treatment
• Right to object
• Right to data portability
• Right to withdraw your consent at any time

‍

To exercise your rights:

📧 info@yogazaz.com

‍

You also have the right to file a complaint with the competent authority:

‍

Data protection authority: https://www.autoriteprotectiondonnees.be 

‍

9. security

‍

We implement appropriate technical and organizational measures to protect your data against unauthorised access, loss, or disclosure.

‍

However, no data transmission over the Internet is completely secure.

‍

10. Changes

‍

This policy may be amended at any time.

The current version is the one published on the site on the date indicated at the top of the document.

‍