CloudFactor Lodge Nature-first hotel retreat · Canada
Respectful data handling · Clear choices · No selling

Privacy Policy

Your data should feel as calm as your stay

This policy explains what we collect, why we collect it, and how you can control it. We aim to keep everything minimal, practical, and easy to understand.

We don’t sell personal data We collect only what we need You can request access or deletion Security is taken seriously

1) Who we are

This website is operated under the domain cloudfactorx.com (“CloudFactor Lodge”, “we”, “us”). If you need help with privacy requests, contact us via the details on the Contact page.

2) What personal data we collect

  • Contact form data: name, email, message content, and any details you choose to share.
  • Communication records: our replies and related history so we can support your request.
  • Optional preferences: if you share sensitivities or requests (e.g., allergies), we use it only to assist you.

We recommend you avoid sharing sensitive personal information unless it’s necessary for your request.

3) Technical data (site reliability)

  • Log data: basic server logs may include IP address, browser type, and timestamps.
  • Security signals: information used to detect abuse, spam, or attacks.
  • Performance signals: basic error logs so we can fix broken pages.

We use technical data for stability and security—not to build personal profiles.

4) Why we use your data (purposes)

We keep usage limited to what supports your request and keeps the website functioning properly.

Core purposes

  • Responding to inquiries and providing requested information.
  • Helping with planning (e.g., room preferences, seasonal notes).
  • Maintaining website stability, security, and performance.
  • Preventing fraud and reducing spam submissions.

Legal bases (high level)

  • Consent: when you choose to submit information.
  • Legitimate interests: running a secure, reliable site and responding to messages.
  • Contract steps: if your message is part of planning a reservation or service request.

Requirements vary by jurisdiction. If you have questions, contact us and we’ll respond clearly.

5) Cookies & similar technologies

Cookies help remember preferences and support core site functions. Details are in our Cookie Policy.

Cookie controls

  • You can manage cookies through browser settings.
  • You can delete cookies already stored on your device.
  • Some site functions may be affected if cookies are disabled.
Read Cookie Policy Ask a question

Embedded content (Google Maps)

  • Our Contact page may include a Google Maps embed.
  • Google may collect technical information when the embed loads.
  • Review provider policies for details and controls.

We use embeds to help you find us—nothing more.

6) Sharing and third parties

We do not sell your personal data. Sharing is limited to what’s necessary to run the site and respond to you.

Service providers

  • Hosting and infrastructure providers (to serve the website).
  • Email or communication tools (to respond to your requests).
  • Security tools (to prevent abuse and spam).

Providers may process data on our behalf under contractual obligations.

When we may disclose

  • To comply with legal obligations when required.
  • To protect the security of our website and visitors.
  • To prevent fraud or respond to abuse incidents.

7) Data retention

We keep data only as long as needed for the purposes described—then we delete or anonymize it when practical.

Contact messages

  • Retained long enough to respond and support follow-up questions.
  • May be stored longer if required for record-keeping or dispute resolution.

Technical logs

  • Kept for security and troubleshooting for a limited period.
  • Access restricted to authorized personnel.

8) Your rights and choices

Depending on your location, you may have rights regarding access, correction, deletion, and portability.

Common requests

  • Access: ask what data we have about you.
  • Correction: update inaccurate information.
  • Deletion: request removal where applicable.
  • Objection / restriction: limit certain processing in specific cases.
  • Consent withdrawal: if processing is based on consent, you can withdraw it.

To make a request, use our Contact page and include enough detail for us to verify and respond.

9) Security

We use reasonable safeguards to protect data, including access controls and standard security practices. No system is perfect, but we take protection seriously.

Practical measures

  • Restricted access to operational data.
  • Monitoring for suspicious activity.
  • Regular updates to reduce vulnerabilities.

Your role

  • Use a secure email account when contacting us.
  • Avoid sharing unnecessary sensitive details.
  • Let us know if you suspect misuse.

10) Changes to this policy

We may update this policy to reflect changes in services or legal requirements. The updated version will be posted on this page.

Contact

If you have privacy questions or requests, please use the Contact page.

Last updated: 2026-02-06