Privacy Policy

Zen Jungle is operated by the Zen Jungle Sovereign Trust, a private express trust. Day-to-day administration — bookings, payments, email delivery, and the handling of personal data that flows through those functions — is carried out on behalf of the trust by its bare trustees, which may include companies acting in a bare-trustee capacity. Where those administrative functions touch regulated services (payments, digital communications, data protection), the bare trustees operate within the applicable UK frameworks for that layer.

For anything about this site, your bookings, your data, or any commercial matter, please contact The Trustees at trust@zenjungle.org. Correspondence address: Zen Jungle Retreat, Wooda Lakes, Pancrasweek, Holsworthy, Devon. EX22 7JN.

The personal data we collect falls into these categories:

• Account data. Name, email address, and a password hash when you create an account to access books, courses, or the community. Provided by you via Clerk, our authentication provider.
• Booking data. Your name, email, phone number, party size, dietary requirements, accessibility needs, and any notes you share when you book a cabin, event, or appointment.
• Payment data. Card details are collected and processed directly by Stripe — we never see or store them. We retain a transaction reference, the amount, and the item purchased.
• Mailing list. Email address and (optional) first name when you opt in to our newsletter. Plus engagement signals from our email provider (delivered, opened, clicked, unsubscribed).
• Course progress. Which modules you've completed, quiz answers, audio playback position, and notes you save within a course.
• Community application. The responses you give to the Sovereign Community suitability assessment — these can be personal in nature and are treated accordingly.
• AI conversations. Messages you exchange with our on-site AI Guide (per-course) and the sitewide concierge, so we can hold context during a session and improve the assistant. Phone calls to our voice agent are transcribed for the same reason.
• Technical data. IP address (hashed before storage for the concierge and suitability assessment rate-limiting), browser type, device, pages viewed, and approximate location. Standard server logs retained by our hosting provider.

• To fulfil a contract with you — processing bookings, delivering courses and books, running your account, sending transactional emails (booking confirmations, payment receipts, course access). Without this data we can't provide the service.
• With your consent — marketing emails, the mailing list, non-essential cookies. You can withdraw consent at any time using the unsubscribe link or by emailing us.
• Legitimate interests — keeping the site secure, preventing fraud, understanding which content resonates, improving the AI assistants. We balance our interests against your rights and can explain the assessment on request.
• Legal obligation — the bare trustees that process payments and transactions are subject to UK accounting and tax record-keeping obligations; lawful requests from authorities are handled through those administrative bodies.

We use the following processors to run Zen Jungle. We share personal data with them only to the extent needed to deliver the service, and each is bound by a data processing agreement.

• Stripe (payment processing) — payment and transaction data.
• Clerk (authentication) — account credentials and session management.
• Resend (email delivery) — recipient email, message content, and engagement telemetry for transactional and marketing emails.
• Sanity (content platform) — user-submitted content (bookings, applications, conversations, progress) and editorial content.
• Vercel (hosting) — server logs and everything transits through Vercel's infrastructure.
• Anthropic (AI — Claude) — message content you send to the concierge, the AI Guide, the community assessment, and our editorial drafting tools.
• OpenAI (AI — image generation, speech-to- text) — prompts and generated assets.
• ElevenLabs (voice synthesis) — voice-agent audio.
• Twilio (telephony) — voice-agent call metadata and transcripts.
• Meta and TikTok (social posting, when we post to our own accounts) — we do not share customer data with these platforms; our adapter uses only publicly available content from our website.

We do not sell your data. We do not share it with advertisers for profiling.

Several of the processors above are based in the United States (Stripe, Clerk, Resend, Vercel, Anthropic, OpenAI, ElevenLabs, Twilio). Where data leaves the UK, the transfer is covered by the UK International Data Transfer Agreement, the International Data Transfer Addendum to the EU SCCs, or adequacy decisions where these apply. Sanity is based in Norway (UK GDPR adequacy).

• Account data — for as long as you have an active account, and for up to 2 years after your last sign in, unless you ask us to delete it sooner.
• Booking records — 6 years after the booking, for accounting and tax purposes applicable to the administrative bodies that process bookings.
• Payment records — 6 years, in line with UK accounting and tax retention periods applicable to the administrative bodies that process transactions.
• Mailing list — until you unsubscribe, then a suppression record so we don't accidentally re-add you.
• AI conversation history — 12 months, rolling.
• Community applications — retained for 24 months after submission, or earlier on request.
• Server logs — 30 days.

Under UK GDPR you have the right to:

• Request a copy of the personal data we hold about you.
• Correct anything that's wrong, or ask us to complete anything that's missing.
• Ask us to delete your data, subject to the retention periods above.
• Object to or restrict certain processing (including direct marketing).
• Receive your data in a portable format.
• Withdraw consent where processing relies on consent.
• Lodge a complaint with the Information Commissioner's Office (ico.org.uk).

To exercise any of these rights, email trust@zenjungle.org. We'll respond within 30 days.

We use a small number of first-party cookies strictly needed to run the site: an authentication cookie (Clerk) so you stay signed in, a session cookie to keep your shopping-cart state during checkout (Stripe), and an admin cookie on the admin area. We do not set advertising cookies and we do not embed third-party trackers for profiling.

Our services are for adults (18+). We don't knowingly collect personal data from children. If you believe a child has provided us with data, email us and we'll remove it.

We may update this policy from time to time. The "last updated" date at the top reflects the most recent change. Material changes will be communicated by email to anyone on our mailing list and highlighted on this page for at least 30 days.

Questions, requests, or complaints: email The Trustees at trust@zenjungle.org. Or by post to Zen Jungle Retreat, Wooda Lakes, Pancrasweek, Holsworthy, Devon. EX22 7JN.