Log to your space

Privacy Policy – Last Updated February 2026

ARTICLE 1: PREAMBLE

This confidentiality policy applies to the site: www.maisonanahe.com.
The purpose of this confidentiality policy is to explain to users of the site:

  • How their personal data is collected and processed. Personal data is any information that can identify a user, such as names, email, phone number, city, country, IP address, or health-related information.
  • What rights users have regarding their data.
  • Who is responsible for processing the personal data.
  • To whom the data is transmitted.
  • The site’s policy on cookies, if applicable.

This confidentiality policy supplements the legal notices available at: Legal Notice/Impressum.

ARTICLE 2: GENERAL PRINCIPLES OF DATA COLLECTION AND PROCESSING

In accordance with Article 5 of EU Regulation 2016/679 (GDPR), data collection and processing complies with the following principles:

  • Lawfulness, fairness, transparency: data is collected and processed only with the consent of the user or when legally justified. Users are informed when their data is collected and why.
  • Limited purposes: data is collected only for specific, legitimate purposes related to site use, bookings, newsletters, or health/safety for sessions.
  • Data minimisation: only data necessary for the stated purpose is collected.
  • Time-limited storage: Data is retained only as long as needed to respond to your request, or longer if required by law. See Article 8. 
  • Integrity and confidentiality: all collected data is secured against unauthorized access.

Data is processed legally when:

  • The user consents explicitly;
  • Processing is necessary for performing a contract (e.g., booking a session);
  • Processing complies with legal obligations;
  • Processing protects vital interests;
  • Processing serves legitimate interests of the controller (e.g., website administration).

ARTICLE 3: PERSONAL DATA COLLECTED AND PROCESSED

3.1 Contact Information

Collected data includes:

  • First name and last name
  • Email address
  • Telephone number
  • City and country

Collected when users:

  • Submit a contact form via Contact Form 7
  • Register for classes or workshops
  • Book individual sessions via Amelia Booking (massages, yoga, harmonisation, energetic work, Ayurvedic anamnesis, workshop, retreat and more)
  • Subscribe to the newsletter (sometimes via Mailchimp)

3.2 Health-Related Information (Special Category Data)

  • Only adults provide health information.
  • Health information is strictly optional and collected only for participant safety (e.g., injuries, physical limitations, medical conditions).
  • Legal basis: explicit consent (Art. 6(1)(a) and Art. 9(2)(a) GDPR).

3.3 Technical Data

  • IP address
  • Browser type
  • Cookies (see Article 6 below)

ARTICLE 4: PURPOSE OF PROCESSING

Collected data is used to:

  • Respond to inquiries
  • Manage class registrations and session bookings
  • Send newsletters and updates
  • Ensure participant safety during sessions
  • Improve website functionality and performance

Purchase details (membership, packages, vouchers) are stored securely for contractual reasons.

ARTICLE 5: LEGAL BASES FOR PROCESSING

  • Consent (Art. 6(1)(a)) – newsletter, cookies, health data
  • Contract performance (Art. 6(1)(b)) – class/session bookings
  • Legal obligation (Art. 6(1)(c)) – accounting obligations
  • Legitimate interest (Art. 6(1)(f)) – website security and administration

ARTICLE 6: DATA STORAGE AND HOSTING

  • Website hosted by OVH SAS, 2 rue Kellermann, 59053 Roubaix Cedex 1, France. All website data hosted in the EU.
  • Personal data may be archived on encrypted external devices (e.g., FileVault on Mac).
  • Accounting and invoice data: Some data (e.g., name and invoice details) may be processed in Google Workspace (Sheets/Docs). Appropriate safeguards are in place for EU data transfers, including Standard Contractual Clauses (SCCs).

ARTICLE 7: THIRD-PARTY SERVICES

Maison Anahé uses the following service providers and platforms to facilitate bookings, online sessions, newsletters, and client communications:

  • Amelia Booking Plugin – booking data stored in the WordPress database hosted by OVH
  • Contact Form 7 – contact form submissions sent to OVH email servers
  • Mailchimp – newsletter service (if used)
  • Zoom – online classes, Ayurvedic anamnesis, and harmonisation sessions
  • WhatsApp / Messenger – communication with clients

These platforms may process personal and health-related information only as necessary to provide their services.  Data shared on these platforms is subject to their privacy policies; Maison Anahé recommends reviewing those before use.

Important note on security:
While Amelia, Contact Form 7, and Mailchimp are hosted securely and fully GDPR-compliant, platforms like Zoom, WhatsApp, and Messenger are third-party services outside the direct control of Maison Anahé. Data shared on these platforms may be subject to their own privacy policies and security measures. Clients are informed of this and provide consent by using these channels.

Maison Anahé is not responsible for the data protection practices, security measures, or policies of these third-party platforms. Clients are encouraged to review their respective privacy policies before use.

No personal data is sold to third parties. No online payments are currently processed via this website.

Cookies related to these services (if any) are described in the Cookie section of this Privacy Policy.

ARTICLE 8: DATA RETENTION

  • Contact inquiries: up to 3 years after last interaction
  • Client data related to services: up to 7 years (legal accounting obligations)
  • Newsletter subscribers: until withdrawal of consent
  • Health-related notes: deleted when no longer necessary for safety purposes

All data is securely deleted after retention periods.

ARTICLE 9: COOKIES

Cookies are managed through Complianz:

  • Essential cookies – required for site function
  • Analytical cookies – only if explicitly enabled (Google Analytics currently not active)
  • Marketing cookies – only with consent

Users may accept or refuse non-essential cookies; consent can be withdrawn anytime through the cookie banner or users browser settings.

Cookies
Maison Anahé uses cookies to enhance your experience on the website. Cookies are small text files stored on your device.

  • Necessary Cookies: These are essential for the website to function properly (e.g., login sessions, booking form functionality). They cannot be disabled.
  • Optional Cookies: These include analytical or marketing cookies. They are only stored if you give explicit consent (e.g., tracking website performance, newsletter sign-up, or targeted content).

More details:

 

ARTICLE 10: USER RIGHTS

Under GDPR, users may:

  • Access their data
  • Rectify inaccurate data
  • Request deletion
  • Restrict processing
  • Exercise data portability
  • Withdraw consent
  • Object to processing based on legitimate interest

Requests can be sent to info@maisonanahe.com.
If you have any concerns about how your personal data is handled, you can contact Maison Anahé directly and send a request for change and/or deletion. If you have any disagreement with how your data is processed, after your exchange with Estelle, you also have the right to contact the Austrian Data Protection Authority (Datenschutzbehörde) or your local EU data protection authority for further information.

ARTICLE 11: DATA SECURITY

Measures include:

  • SSL encryption for website traffic
  • Secure hosting within the EU
  • Restricted administrative access
  • Secure email infrastructure

In case of a data breach posing risks, users will be informed per GDPR requirements.

ARTICLE 12: USE OF AI TOOLS

AI tools (e.g., ChatGPT) may be used to structure and summarise client reports, including Ayurvedic anamnesis. Health information may be included in the data processed.
AI processing is always done with your explicit agreement and only for the purpose of structuring and summarising reports. All data handled by AI tools is treated securely and confidentially.

ARTICLE 13: CLIENT FILES AND HEALTH DATA STORAGE

For the purpose of providing massage services, Ayurvedic anamnesis, and follow-up care, individual client files may be created and maintained.

These files may include:

  • Contact information
  • Session notes
  • Health-related information relevant to the service provided
  • Follow-up observations

Client files are stored securely on a password-protected computer (with FileVault encryption enabled) and on an encrypted external storage device used for backup purposes. Access is strictly limited to the practitioner only.

Health data is processed solely to provide safe and appropriate services. Technical and organizational measures are taken to protect the data from unauthorized access, loss, or misuse.

Data is retained only for as long as necessary to provide services and fulfill legal obligations.

ARTICLE 14: CLIENT FEEDBACK
Clients may be invited to provide feedback on sessions, classes, or services through optional surveys, forms, or emails. Feedback may include opinions about the session experience and, if voluntarily provided, non-sensitive health-related observations.

All feedback is collected securely and used solely for the purpose of improving services. Feedback data may be stored temporarily and is deleted once it is no longer needed. Participation is entirely voluntary, and consent is obtained when personal or health-related information is included.

ARTICLE 15: POLICY UPDATES

This Privacy Policy may be updated to reflect legal, technical, or operational changes. The latest version is always available on this website.

Up
Monday to Friday See schedule
Saturday See schedule
Sunday Closed