Privacy Policy

Last updated: January 2026

At Funeveryday ("we", "us", "our"), the privacy and security of your personal information are fundamental to the trust we build with every guest. This Privacy Policy explains how we collect, use, disclose and safeguard information when you visit Funeveryday.bond, submit an inquiry or otherwise interact with our services. We comply with the EU General Data Protection Regulation (GDPR) and applicable Polish data protection laws.

1. Information We Collect

We collect information in several ways:

1.1 Information You Provide

• Contact details: name, email address, phone number;
• Inquiry details: selected resort, travel preferences, dates, party size, special requests, message content;
• Communications: correspondence with our concierge team via email, phone or messaging platforms.

1.2 Information Collected Automatically

• IP address, browser type and version, operating system;
• Pages visited, time spent on pages, referring URLs;
• Device identifiers and approximate location (city/region) inferred from IP;
• Cookies and similar tracking technologies (see our Cookies Policy).

2. Legal Basis for Processing (GDPR)

We process your personal data based on one or more of the following legal grounds:

• Consent — when you voluntarily submit information through our forms;
• Contractual necessity — to fulfil inquiry coordination and concierge services;
• Legitimate interests — to improve our services, prevent fraud and ensure site security;
• Legal obligations — to comply with applicable law, tax and regulatory requirements.

3. How We Use Your Information

Your information is used to:

• Respond to inquiries and provide personalised concierge assistance;
• Coordinate reservations and special requests with partner resorts;
• Send confirmations, follow-ups and service-related updates;
• Improve website performance, content relevance and user experience;
• Detect, prevent and address technical, fraud or security issues;
• Comply with legal, regulatory and contractual obligations.

4. Sharing of Information

We share personal data only when necessary, and only with parties bound by confidentiality and data protection commitments. Categories of recipients include:

• Partner properties — luxury hotels, spas, restaurants and concierge providers fulfilling your request;
• Service providers — IT, hosting, analytics, email delivery and customer support vendors;
• Legal authorities — when required by law, court order or regulatory request;
• Successors in interest — in the event of merger, acquisition or business reorganisation.

We do not sell, rent or trade your personal information to third parties for their independent marketing purposes.

5. International Data Transfers

Where personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place — including Standard Contractual Clauses, adequacy decisions or other lawful transfer mechanisms.

6. Cookies & Tracking Technologies

We use cookies and similar technologies to enhance browsing, remember preferences, analyse traffic and improve functionality. For full details, please review our dedicated Cookies Policy. You may adjust browser settings to refuse or delete cookies at any time.

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes outlined in this Policy, including legal, accounting or reporting requirements. Inquiry data is typically retained for up to 36 months from the last interaction unless a longer period is required by law or for legitimate business purposes.

8. Data Security

We implement industry-standard administrative, technical and physical safeguards designed to protect your information from unauthorised access, alteration, disclosure or destruction. These include encrypted connections (HTTPS), restricted access controls, secure servers and regular security reviews. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

9. Your Rights Under GDPR

If you reside in the EEA, UK or similar jurisdictions, you have the following rights regarding your personal data:

• Right of access — request a copy of the personal data we hold about you;
• Right to rectification — correct inaccurate or incomplete data;
• Right to erasure ("right to be forgotten") — request deletion under certain conditions;
• Right to restriction — limit how we process your data;
• Right to data portability — receive your data in a structured, commonly used format;
• Right to object — object to processing based on legitimate interests or direct marketing;
• Right to withdraw consent — at any time, where processing is based on consent;
• Right to lodge a complaint — with a supervisory authority (in Poland: UODO — Urząd Ochrony Danych Osobowych).

To exercise any of these rights, please contact us via the contact page.

10. Third-Party Services & Embeds

Our website includes embedded content from third parties such as Google Maps, web fonts and analytics providers. These services may collect data per their own privacy policies. We encourage you to review their practices.

11. Children's Privacy

Our services are intended for adult travellers aged 18 and over. We do not knowingly collect personal data from individuals under 18. If we become aware that data has been collected from a minor, we will promptly delete it.

12. Marketing Communications

If you consent to marketing, we may send occasional newsletters or curated travel suggestions. You may unsubscribe at any time via the link in any marketing email or by contacting us directly.

13. Updates to This Policy

We may update this Privacy Policy periodically to reflect operational, legal or regulatory changes. The latest version is always posted on this page with the revised effective date. Material changes will be communicated as appropriate.

14. Data Controller & Contact

Funeveryday acts as the data controller for personal information processed through Funeveryday.bond. For questions, requests or concerns regarding your data or this Policy, please use our contact page.