Privacy and Data Protection

This section clarifies the terms used in the policy so you can better understand what types of data are involved and how we handle them.

We collect a limited set of information necessary to deliver retreat services safely, manage bookings and communicate effectively. Data collection is driven by care needs and administrative requirements.

Directly provided data includes information you submit when booking, completing intake forms, communicating with staff, or using our online services.

• Contact details: name, postal address, email address and telephone number for booking and communications.
• Medical and health information provided for care planning: current diagnoses, medications, mobility needs, dietary restrictions and therapy notes shared during intake.
• Payment and billing information submitted to process bookings and invoices, including billing address and transaction records.
• Preferences and accessibility needs: room preferences, mobility aids required and dietary or cultural considerations.
• Emergency contact details and consent records for designated contacts and authorized representatives.
• Feedback and communications: messages, satisfaction surveys and follow-up notes used to improve services.

Some information is collected automatically when you visit our website or use online booking tools to help us maintain and improve service quality and security.

• Technical data: IP address, browser type and version, device identifiers and operating system for site performance and security.
• Usage data: pages visited, time on site, buttons clicked and form interactions to analyze and optimize user experience.
• Location data derived from IP or device settings when necessary to provide local information and comply with booking logistics.
• Analytics data collected via cookies and similar technologies to understand how visitors interact with the site.
• Error and diagnostic data when issues occur so our technical team can resolve problems promptly.
• Aggregated or anonymized reports created from usage data for service improvement without identifying individuals.

We may receive data about you from trusted third parties that support the delivery of retreat services or provide legally required information.

• Healthcare partners and referring professionals who provide clinical summaries necessary for safe care coordination.
• Payment processors and business services for billing and accounting purposes.
• Technical service providers such as hosting and analytics platforms that process data on our behalf under contract.

We process personal data for specific, limited purposes that directly relate to providing safe and effective health retreat services.

• To deliver retreat programs and associated therapeutic services adapted to each client’s needs.
• To manage bookings, payments and administrative records required for service delivery.
• To communicate important pre-arrival instructions, safety notices and follow-up recommendations.
• To assess care needs and coordinate with health professionals when clinically necessary.
• To improve service quality, training and facility operations through aggregated feedback and analysis.
• To comply with legal and regulatory obligations such as accounting, taxation and health reporting where applicable.
• To conduct legitimate business operations including risk management, dispute resolution and fraud prevention.
• To send marketing communications only with explicit consent and an option to opt out at any time.

We rely on appropriate legal grounds for processing personal data depending on the purpose and data type.

• Performance of a contract: processing necessary to book and provide the retreat services you request.
• Consent: where you have given clear permission for specific processing such as marketing communications.
• Legal obligation: processing required to comply with statutory duties such as accounting or public health reporting.
• Legitimate interests: for operational needs like fraud prevention, safety and service improvement, balanced against your rights and expectations.

Our website uses cookies and similar technologies to ensure functionality, remember preferences and analyze usage to improve the site.

Types include strictly necessary cookies for site operation, preference and functionality cookies, analytics cookies for usage insights, and marketing cookies if you opt in.

Necessary: enable core functions. Functional: remember choices. Analytics: measure and improve. Marketing: personalized offers with consent.

You can manage cookie preferences via your browser settings or the cookie settings tool on our site. Blocking some cookies may affect site features and booking functionality.

View our full cookie policy for details on duration and third-party cookies.

We share personal data only with entities that have a legitimate need to process it for the purposes described, and always under contractual or legal safeguards.

• Healthcare professionals involved in your care to ensure safe delivery of therapeutic services.
• Payment processors and banks to complete transactions and handle invoicing.
• Technical service providers such as website host and secure data storage vendors that process data under our instructions.
• Regulatory bodies and authorities when required by law or for public health obligations.
• Emergency contacts or authorized representatives where consented or necessary for safety.
• External auditors or legal advisors under confidentiality obligations when required for compliance or dispute resolution.

Some service providers may process data outside Switzerland. When personal data leaves Swiss borders, we apply safeguards such as contractual protections, vetted provider reviews and appropriate technical controls to maintain privacy standards.

Safeguards include standard contractual clauses, data processing agreements, restricted access controls and assessments of third-party data protection practices before transfer.

We retain personal data only as long as necessary for the purposes described and to meet legal, accounting or safety obligations.

Account and booking details are retained for the duration of the client relationship and for a reasonable period after closure to meet legal or administrative needs.

Communications, intake forms and consent records are kept as required to support care continuity and for legal compliance; retention periods are determined by the record type and applicable law.

Technical logs and analytics data are retained in aggregated or anonymized form where possible and for limited periods needed to diagnose issues and improve the service.

When data is no longer needed, we securely delete or irreversibly anonymize it, following documented procedures to prevent unauthorized recovery.

We use administrative, physical and technical measures to reduce the risk of unauthorized access, disclosure or misuse of personal data. Security is reviewed regularly and aligned with industry practices.

• Encryption in transit and at rest for sensitive data where appropriate.
• Restricted access controls and role-based permissions for staff handling personal data.
• Regular backups, vulnerability assessments and staff training on data protection and confidentiality.

You have rights regarding your personal data and may request access, correction or other actions as described below. We handle requests in line with applicable law and our operational procedures.

• Right of access: request a copy of personal data we hold about you.
• Right to rectification: ask us to correct inaccurate or incomplete data.
• Right to deletion or restriction: request deletion or limitation of processing subject to legal or care-related exceptions.
• Request correction of inaccurate personal data held by VitalNowSenior, including updates to contact details, medical notes provided by you, and preferences related to communications.
• Request deletion of personal data where processing is no longer necessary, subject to legal or contractual retention obligations or the need to preserve health records for continuity of care.
• Request restriction of processing in specific circumstances, for example while a dispute about accuracy is being resolved or where processing is unlawful but deletion is not possible.
• Object to processing based on legitimate interests or direct marketing; VitalNowSenior will review and respect valid objections in line with applicable Swiss and EU privacy principles.
• Portability: where applicable, receive a copy of personal data you provided in a commonly used, machine-readable format to transfer to another service provider.

Although VitalNowSenior operates in Switzerland, we align our privacy practices with widely recognised standards for personal data protection. We aim to handle health-related and personal information with extra care, ensuring transparency about what we collect, why, and how you can exercise your rights.

This policy applies to all personal data collected by VitalNowSenior via our website VitalNowSenior.pro, booking forms, intake assessments and on-site interactions at our facility in Twann-Tüscherz. If you are resident in the EU, certain data protection rights may apply in addition to Swiss regulations.

• Lawful basis for processing: we process personal data to perform contracts (retreat bookings and care planning), comply with legal obligations, and pursue legitimate interests such as improving service quality and safety.
• Special category data: health information provided during intake or treatment is processed only when necessary for care, under strict confidentiality and additional safeguards.
• Data minimisation and purpose limitation: we collect only the data needed for the stated purposes and do not repurpose personal data without informing you and seeking consent if required.
• Retention and disposal: personal data is retained only as long as necessary for care, billing, legal obligations and quality assurance; secure deletion and anonymisation processes are in place when retention periods end.

If you believe your rights under applicable data protection laws have been infringed, you may submit a complaint to VitalNowSenior via the contact details below. You may also lodge a complaint with the relevant supervisory authority in Switzerland or your country of residence.

To exercise any data subject rights (access, rectification, deletion, portability, restriction, objection), please contact our Privacy Officer at the address below. Provide sufficient information to identify yourself and describe the request so we can respond effectively.

[email protected]

We aim to respond to valid requests within 30 days. Complex requests or those requiring identity verification may take longer; we will notify you of any necessary extension and the reason for the delay.

We may send information about new retreat packages, seasonal offers and educational events if you opt in. Marketing communications are designed to help you make informed choices about services that can support active ageing and wellbeing.

You can opt out of marketing messages at any time using the unsubscribe link in emails or by contacting us. Opting out will not affect administrative messages related to bookings or essential service updates.

VitalNowSenior services are intended for older adults and adults. We do not knowingly collect personal data from children for our retreat services. If we become aware that we have collected data from a minor without proper consent, we will take steps to delete it promptly.

Our website may include links to third-party sites for resources or partner services. We are not responsible for the privacy practices of external sites; review their policies before sharing personal information.

We may update this privacy information from time to time. Material changes will be posted on VitalNowSenior.pro with an updated effective date. We encourage you to review this page periodically to stay informed.