top of page

Privacy Policy

​1. Introduction

 

Thank you for your interest in Mind over Mountain. The protection of your personal data is very important to us. This privacy policy explains how we collect, use, and protect your personal data when you visit our website.

​

2. Name and Contact of the Controller

 

Mind over Mountain
Represented by: Nanon Wollenhaupt & Vanessa Bastek
Email:  info@mindovermountain.world
Website: www.mindovermountain.com
If you have any questions about data protection, feel free to contact us at the above email address.

​

3. Data We Collect and Process

 

We may collect and process the following data:

​

  • Contact information (e.g. name, email address) when you fill out our contact or booking form
     

  • Technical data (e.g. IP address, browser type, operating system) via cookies and analytics tools
     

  • Booking information when you register for a trip or event (e.g. address, phone number, emergency contacts, dietary or health-related info if necessary)
     

4. Legal Basis for Processing

 

We process your data in accordance with Art. 6(1) GDPR:

​

  • (a) Consent – when you give us permission (e.g. newsletter signup)
     

  • (b) Contract – to fulfill or prepare a contract (e.g. booking a trip)
     

  • (c) Legal obligation – if required (e.g. tax reporting)
     

  • (f) Legitimate interest – for website optimization and customer service, without disproportionately affecting your rights
     

5. Use of Data

 

We use your data to:

​

  • Process bookings and deliver our services
     

  • Communicate with you (e.g. regarding your booking)
     

  • Improve our website and user experience
     

  • Send you occasional updates or newsletters (only if you opted in)
     

6. Cookies and Tracking

 

Our website uses cookies and analytics tools (e.g. Google Analytics) to understand user behavior. You can manage your cookie preferences in your browser settings or via our cookie banner.

​

7. Data Sharing

 

We do not sell your data. Your data may be shared with:

​

  • Service providers (e.g. accommodation, payment processors)
     

  • Authorities, if legally required
     

We ensure that third parties comply with GDPR standards.

​

8. Data Retention

 

We retain your personal data:

​

  • As long as needed to fulfill the purpose for which it was collected
     

  • As required by legal, tax, or contractual obligations (e.g. up to 10 years) 

​

9. Your Rights under GDPR

 

You have the right to:

​

  • Access your data (Art. 15 GDPR)
     

  • Correct your data (Art. 16 GDPR)
     

  • Delete your data (Art. 17 GDPR)
     

  • Restrict processing (Art. 18 GDPR)
     

  • Data portability (Art. 20 GDPR)
     

  • Object to processing (Art. 21 GDPR)
     

  • Withdraw consent (Art. 7(3) GDPR)
    To exercise your rights, email us at [Insert email address].
     

10. Data Security

 

We implement appropriate technical and organizational measures to protect your data against unauthorized access, alteration, loss, or destruction.

​

11. Hosting

 

Our website is hosted by [Insert provider] within the EU. If non-EU services are used, we ensure standard contractual clauses or equivalent safeguards.

​

12. Updates

 

We may update this privacy policy occasionally. The latest version will always be available on our website.

bottom of page