Privacy Policy

Cocoon Yoga – We take your personal info seriously.

As online shoppers and web surfers ourselves, we know how important it is to have personal information securely stored and to be assured that it will never be sold on to third parties or get into the hands of the bad guys! This is why we treat all information given to us with the utmost care and respect. Down below we have described what information we collect from you, how we use it and the lengths we go to protect it. We also have highlighted what to do and how to contact us if you wish for your information to be removed.


Attending a class –

The information we collect on registration is to ensure your safety and well-being in class. We may also use it to contact you if a class you are booked in to is cancelled. Your personal information is treated as strictly confidential and is stored in a secure location. It is never shared. It is never copied. If you would like your any or all of your personal information destroyed, please contact us.

Placing an order –

We use an eCommerce WordPress platform called WooCommerce to present and sell our products. When placing an order, you will need to supply your Name, and address, as well as contact information like your phone number and email address. This is to make sure that your order gets to you as easily as possible and ensure that, in the unlikely event there is something wrong with your order, we can contact you to resolve it as quickly as possible. You also need to agree to our Terms & Conditions before placing an order.
Once you have inputted this info, you will then be direct to a payment method. Our payments are taken by either Paypal or direct bank transfer, where you initiate the payment from your bank to ours. We have included PayPal’s Privacy Policy  > here  if you wish to read it, for added peace of mind.  We DO NOT take orders by Credit or Debit card either online or over the phone, and therefore do not store any customer card information.
As stated previously we will not sell, distribute or lease your personal information to third parties unless we are required by law to do so.

What We Do With The Information We Collect –

Basically, nothing other than the services you directly requested from us (eg: as delivering an order or tracking a parcel). WE WILL NEVER PASS ON YOUR DETAILS TO ANY OTHER COMPANY. We hate SPAM as much as you do, and we are committed to ensuring none ever comes about as a result our our actions.

Links to other websites –

Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

How We Protect Your Data (Server Information) –

This website is hosted by CWCS within a UK data centre located just outside London and Nottingham.
Some of the data centre’s more notable security features are as follows:
CWCS ISO 27001 certification demonstrates that they protect the confidentiality, integrity and availability of all the information within our organisation. This includes your information.
All staff at CWCS Managed Hosting take security seriously. Very Seriously. This includes security of our data centres, public cloud, private clouds, dedicated servers, shared servers, software, infrastructure, buildings, information, people and equipment. Everything in fact.

ISO 27001 Certification –

To prove that they have the strictest security measures in place, CWCS Managed Hosting is formally certified to the internationally accepted global Information Security Management System standard ISO 27001. However, we endeavour to go beyond this and have additional measures in place to really enforce the security and safety of our hosting.

A Trusted Hosting Company –

Trust is important to our customers because they know their data, information, applications and infrastructure are in safe hands with CWCS. Time and again, security comes up as a major concern with businesses considering outsourcing their managed hosting, and particularly those considering moving to cloud servers.
Colourmedia rely on their knowledgeable, dedicated and friendly staff who do not over or under specify hosting solutions; they focus on the customer’s genuine business needs. That’s how they’ve built high levels of trust over the years, and also have high customer retention rates.

Physical and Cyber Security –

As well as taking wide-ranging technical measures to keep the servers, data centres and software safe from cyber-attacks, CWCS Managed Hosting also has extensive physical security controls. They systematically examine the information security risks within their organisation and take account of the threats, vulnerabilities and possible effects. This is all backed up with on-going processes to ensure the controls are adequate, maintained and effective. In this way, CWCS and Colourmedia customers have reassurance that the data, websites, business applications and other information held on their cloud hosting infrastructure, shared servers and dedicated servers is as secure as possible.
  • Trustworthy hosting
  • ISO 27001 certified
  • Physical security
  • Strict management processes
  • Cyber security
  • CCTV
  • Strict HR policies
  • Restricted entry

CWCS Staff –

CWCS induct, train and reinforce security to all their employees at all levels. Security is an integral part of everyone’s day to day role. It’s become engrained in CWCS company culture. Everything from information storage processes and HR practices to internal and external CCTV monitoring, access restrictions and management. Even photography is covered by security procedures.

ISO 27001 and Beyond –

ISO 27001 confirms CWCS Managed Hosting is a company committed to security. It provides existing, new and potential customers with proven assurance that they operate to the very highest security standards. However, their commitment to safe and secure hosting goes beyond ISO 27001. Security of our data centres, offices and everything in them is essential to the success of our business. That’s why they take it so seriously.

Full details of CWCS Hosting’s data centre can be found here.

All traffic (transferral of files) between this website and your browser is encrypted and delivered over HTTPS.

Site visitation tracking –

Like most websites, this site uses Google Analytics (GA) to track user interaction. We use this data to determine the number of people using our site, to better understand how they find and use our web pages and to see their journey through the website.
Although GA records data such as your geographical location, device, internet browser and operating system, none of this information personally identifies you to us. GA also records your computer’s IP address which could be used to personally identify you but Google do not grant us access to this.
GA makes use of cookies, details of which can be found on Google’s developer guides.
Disabling cookies on your internet browser will stop GA from tracking any part of your visit to pages within this website.

In addition to Google Analytics, this website may collect* information (held in the public domain) attributed to the IP address of the computer or device that is being used to access it.

Cookies –

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual such as tracking what you add to your basket and allows the process to go to payment.
We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.
Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us. You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.
Data collected from this website will also help us work towards improving our website content and for internal marketing analysis and promotional purposes. We will not disclose your personal details to third parties.

Our blog –

Should you choose to add a comment to any posts that we have published on our blog, the name and email address you enter with your comment will be saved to this website’s database, along with your computer’s IP address and the time and date that you submitted the comment. This information is only used to identify you as a contributor to the comment section of the respective blog post and is not passed on to any of the third party data processors

Your comment and it’s associated personal data will remain on this site until we see fit to either:

1.) remove the comment or
2.) remove the blog post. Should you wish to have the comment and it’s associated personal data deleted, please email us using the email address that you commented with.
If you are under 16 years of age you MUST obtain parental consent before posting a comment on our blog.

NOTE: You should avoid entering personally identifiable information to the actual comment field of any blog post comments that you submit on this website.

Accounts –

In addition, if you are a registered user and have signed in or placed an order when you enter this information, it will automatically be saved in your “my account” area for ease of reference.
When you become a registered user, we collect information from you including your name, mailing address, email address and password. This information is gathered to make your shopping experience as a registered user as quick and easy as possible.
Our primary goal in collecting personal information – including your first name, last name, purchase history, phone number(s), valid email and residential address is to provide you with a smooth, efficient, customised shopping experience.
If you wish to have your account permanently deleted please contact us, using the information provided on the Contact Page and we will be more than happy oblige.

Whom to Contact –

If you believe that any information we are holding on you is incorrect or incomplete, contact us as soon as possible using the information provided on our Contact page. We will promptly correct any information found to be incorrect. Similarly if you have submitted Personal Data through the Site and would like that information to be deleted from our records please contact us using the information provided on our Contact page. We will use all reasonable efforts to delete this information from our existing files.

Changes to our Privacy Policy –

This privacy policy may change from time to time inline with legislation or industry developments. We will not explicitly inform our clients or website users of these changes. Instead, we recommend that you check this page occasionally for any policy changes. Specific policy changes and updates are mentioned in the change log below.

Change log 30/05/2018