Privacy policy

Liebling Carty Ltd t/a The360 is committed to protecting your privacy & complies with all relevant data protection regulations including the Data Protection Act (DPA) & General Data Protection Regulation (GDPR).

The following details how your personal data is collected, used & stored securely. If you have any questions about this please email

What We Do

The360 is a yoga & health retreat business providing in person experiences for clients. Retreats take place at individual international locations, all food, excursions, activities, yoga classes & 1:1 consultations are included within your booking unless otherwise clearly stated.

How Your Data Is Collected

You may provide data in the following ways:

  • By completing our booking form
  • During a 1:1 session on a retreat
  • Through email correspondence, video calls, over the telephone or by post
  • By paying with a credit/debit card or online

This may include:

  • Basic details e.g name address & contact information
  • Other physicians/professionals you are under the care of, or details of a pre-existing medical condition or prescribed therapies you are currently taking.
  • Bank details

This information is utilised to provide appropriate care when attending a retreat, which provides legitimate legal basis for the holding of your personal data.

Data From External Sources

Sensitive medical information (e.g test results or operative notes) may be obtained from other physicians with your explicit consent if you wish to tailor your experience even further.

How Your Data Is Used

We act as a data processor to provide supportive care when on a retreat & to process payments.

Your data is protected at all times & stored in a manner consistent with the requirements of the GDPR.

We may use your personal data where there is an overriding public interest, or when legally required to do so. We may use your data for marketing purposes but only where you have given direct consent.

All information is kept confidential & will only be disclosed to third parties with your express consent except in the following instances.

  • To our professional associations for the processing of a complaint made by you.
  • To anyone to whom we may transfer our rights & duties under any agreement we have with you.
  • To any legal or crime prevention agencies &/or to satisfy any regulatory request if we have a duty to do so or if the law allows us to do so.

We may share your information with supplement companies and biochemical testing companies as part of providing you with direct healthcare support.  No sensitive information will be included.

We will seek your express consent before sharing your information with your GP or other healthcare providers.  However if we believe that your life is in danger then we may pass your information onto an appropriate authority (such as the police, social services in the case of a child or vulnerable adult, or GP in case of self-harm) using the legal basis of vital interests.

We may share your case history in an anonymised form within our organisation for the purpose of professional development.

What are your rights?

Every individual has the right to see, amend, delete or have a copy, of data held that can identify you, with some exceptions. You do not need to give a reason to see your data.

If you want to access your data you must make a subject access request in writing to Phoebe Liebling or Teri-Ann Carty. You will receive a response within 20 working days from the point of receiving the request & all necessary information from you.  Our response will include the details of the personal data we hold on you including:

  • Sources from which we acquired the information
  • The purposes of processing the information
  • Persons or entities with whom we are sharing the information

You have the right, subject to exemptions, to ask to:

Have your information deleted

Have your information corrected or updated where it is no longer accurate

Receive a copy of your personal data, which you have provided to us, in a structured, commonly used & machine readable format and have the right to transmit that data to another controller, without hindrance from us.

Object at any time to the processing of personal data concerning you

All safeguarding measures are employed in accordance with GDPR & records will be kept for a standard period of 10 years from your last booking.


Like most websites, we make use of analytics software in order to help us understand the trends in popularity of our website & of different sections. We make no use of personally identifiable information in any of the statistical reports we use from this package.

Social media

This website uses social media plugins to connect with social networks in various ways. For these to work the following social media sites including; Instagram, LinkedIn, Facebook, Twitter; will set cookies through our website which may be used to enhance your profile on their site or contribute to the data they hold for various purposes outlined in their respective privacy policies.


If you have a complaint regarding the use of your personal data then please contact us by email

If your complaint is not resolved to your satisfaction & you wish to make a formal complaint to the Information Commissioner’s Office (ICO), you can contact them on 01625 545745 or 0303 1231113.

Reviewing the Policy

This policy will be reviewed on an annual basis & as & when necessary following any legislative changes or relevant best practice recommendations.