Privacy Policy

Last updated: 1 April 2026. This policy describes how Vlixaroxioyxor (“we”, “us”) processes personal data when you use vlixaroxioyxor.world and related contact channels. We aim to comply with Regulation (EU) 2016/679 (the GDPR) as given further effect in Ireland by the Data Protection Act 2018, together with the UK GDPR where relevant for visitors in the United Kingdom.

1. Irish and EU legal framework

In Ireland the Data Protection Commission (DPC) supervises compliance. The Data Protection Act 2018 supplements the GDPR with national provisions on processing for law enforcement, processing of children’s data in certain services, and other specific matters. Electronic marketing and cookie rules may also engage the ePrivacy Regulations (S.I. No. 336 of 2011 as amended) alongside the GDPR.

2. Data controller

The data controller is Vlixaroxioyxor, with postal address at Burren Yoga Retreat Centre, Normangrove, Kinvarra, Co. Galway, H91 KN72, Ireland. Email: reply@vlixaroxioyxor.world. Phone: +353 91 637 680. Further registration identifiers appear on our Legal Information page.

3. Categories of personal data we process

• Identity and contact data you submit (name, email address, message content).
• Technical data from your device (IP address, browser type, approximate location derived from IP) when you browse or when analytics tools are active with your consent.
• Cookie and similar technologies data as described in our Cookie Policy.
• Records of consent choices and preference timestamps.

4. Purposes and legal bases

We process data only where a legal basis applies under GDPR Article 6:

• Performance of a contract or pre-contract steps (Article 6(1)(b)): responding to enquiries you initiate.
• Legitimate interests (Article 6(1)(f)): securing the website, preventing abuse, improving content structure, and internal reporting, where not overridden by your rights.
• Consent (Article 6(1)(a)): optional analytics and marketing cookies, and certain newsletters or campaigns if offered.
• Legal obligation (Article 6(1)(c)): retaining records where law requires.

5. How we use your data

We use personal data to read and answer messages, operate forms, maintain security logs, honour cookie preferences, measure aggregated traffic when consented, and comply with law. We do not sell personal data. We do not use automated decision-making that produces legal or similarly significant effects on you.

6. Recipients and processors

We may use trusted service providers (for example hosting, email delivery, analytics) who process data on documented instructions. Where they transfer data outside the European Economic Area, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

7. Retention

Contact and feedback messages are kept for up to 24 months after the last interaction unless a longer period is required for legal claims or regulatory obligations. Security logs may be kept for up to 90 days. Cookie preference records are kept for up to 12 months from the last update unless you renew consent.

8. Security measures

We apply technical and organisational measures appropriate to the risk, including HTTPS transport encryption where configured on the server, access limitations for staff and contractors, pseudonymisation where feasible for analytics, and procedures to detect and respond to incidents. No online transmission is completely secure; you should also protect your devices and credentials.

9. Your rights

Depending on your location, you may have the right to: access, rectification, erasure, restriction of processing, objection to processing based on legitimate interests, data portability (where processing is automated and based on consent or contract), and withdrawal of consent at any time without affecting prior lawful processing. You may lodge a complaint with the Irish Data Protection Commission (www.dataprotection.ie) or your local supervisory authority.

To exercise rights, email reply@vlixaroxioyxor.world with “Data request” in the subject line. We may need to verify your identity before responding, within one month in ordinary cases (extendable where complex).

10. Children

The site addresses a general adult audience. We do not knowingly collect data from children under 16 without parental authority. If you believe we have done so, contact us and we will delete the information promptly.

11. Changes

We may update this policy to reflect legal or operational changes. The “Last updated” date will change and, where appropriate, we will provide a notice on the site.