Privacy Policy

This document was last updated on: 15-04-2023

Article 1. Introduction and Data Controller

La Rosa Maravilla (“us”, “we”, or “our”) owns and operates (the “Site”). We are the data controller of your personal data. 

Our Site collects some personal data from its users.

We are committed to protecting and respecting your privacy. We process your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation 2016/679 (GDPR). 

This Privacy Policy informs you of our views, practices and policies regarding the collection, use and disclosure of personal data we receive from users of the Site.

La Rosa Maravilla is a company registered in The Netherlands with its registered office address at Robert Schumandomein 2, 6229 ES, Maastricht, The Netherlands. (NOT A VISITORS ADDRESS)

Contact email: info {at}

COC NR: 78205085

By submitting personal data to us, you agree to us using your personal data as follows.

Article 2. Collection, Purpose And Use of Personal Data

Personal data is any information from which a person (a data subject) can be identified or potentially identified from. It includes, but is not limited to, your name, e-mail address, password, photo. When you use our Site, certain personal data may be obtained from you. Sometimes personal data is collected directly from you, sometimes information about you is collected in the background, for example using technologies such as cookies (see Article 4).

Like many site operators, we also collect information that your browser sends whenever you visit our Site.

This Log Data may include information such as your computer’s Internet Protocol (“IP”) address, browser type, browser version, the pages of our Site that you visit, the time and date of your visit, the time spent on those pages and other statistics.

In addition, we may use third party services such as Google Analytics that collect, monitor and analyse this data.

It will depend on the actions you take on our Site which personal data will be processed. We may process your personal data for the following purposes:

  • send you our newsletters from time to time
  • manage contacts and send messages
  • ensure that content from our site is presented in the most effective manner for you and for your computer
  • provide you with information, products or services that you request from us which may be of interest to you
  • carry out our obligations arising from any contracts entered into between you and us
  • interact with external social networks and platforms (e.g. social media widgets and share bars)
  • allow registration and authentication (e.g. affiliate portals and membership areas)
  • allow access to third party services’ accounts
  • monitor infrastructure
  • manage hosting and backend infrastructure 
  • carry out remarketing and behavioural targeting
  • display content from external platforms 
  • carry out commercial affiliation 
  • interact with support and feedback platforms
  • manage user database

Article 3. Lawful Basis Of Processing Personal Data under the GDPR

We may only process personal data on one of the following legal bases for processing personal data:

  • users have given their consent for one or more specific purposes;
  • provision of data is necessary for the performance of an agreement with the user and/or for any pre-contractual obligations thereof;
  • processing is necessary for compliance with a legal obligation to which we are subject;
  • processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in us;
  • processing is necessary for the purposes of the legitimate interests pursued by us or by a third party.

Article 4. Cookies

Cookies are text files with a small amount of data, which may include an anonymous unique identifier. 

Cookies are sent to your browser from a website and stored on your computer’s or tablet device’s or mobile device’s part of the hard drive specifically designated for cookies.

It is standard practice to use cookies to make your experience better when using a website.

Like many sites, we use cookies to recognize, collect, and/or track information about, and relevant to, your usage of the Site.

Please refer to our Cookie Policy for information on what cookies we use, for what purposes we use cookies, and how to control cookies. 

Upon your first visit to the Site (and periodically after that), we will request your consent to our use of cookies, except for those strictly necessary.

Article 5. Transfer of Personal Data Outside EEA

Your personal data may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”). With third-party service providers transferring your personal data outside of the EEA we have entered into data processing agreements containing clauses so that an adequate level of protection of your personal data is guaranteed.

By submitting your personal data, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.

Article 6. Data Retention

We process and store your personal data for as long as required by the purpose they have been originally collected for.


  • personal data collected for purposes related to the performance of a contract between us and the user will be retained until such contract has been fully performed;
  • personal data collected for the purposes of our legitimate interests will be retained as long as needed to fulfill such purposes;
  • we may be allowed to retain personal data for a longer period whenever the user has given consent to such processing, as long as such consent is not withdrawn;
  • we may be obliged to retain personal data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.

Once the retention period expires, personal data will be deleted and some of your rights (i.e. the right to access, the right to erasure, the right to rectification and the right to data portability) cannot be enforced after expiration of the retention period. You may find specific information regarding your rights within the relevant section of this Privacy Policy or by contacting us at info {at} /via our contact form.

Article 7. Third-party Disclosure

We do not sell, trade, or otherwise transfer your personal data to third parties. In the event we would change this practice, we will notify our users in advance. 

We do, however, work with third-party service providers who assist us in operating our Site, conducting our business, or serving our users, such as, Mailerlite (privacy policy), Woocommerce (privacy policy), Bookfunnel (privacy policy), and Stripe (privacy policy), but these parties must agree to keep your personal data confidential. 

We may also share your personal data when we are obliged to under applicable law, to enforce our Terms of Use and policies, or to protect our own or third parties’ rights, property or safety.

Non-personally identifiable (anonymized) user information may be provided to other parties for marketing, advertising, or other purposes.

Third-party Websites

Users may find advertising or other content on my Site that link to the sites and services of third parties. We do not control the content or links that appear on these sites and we are not responsible for the practices employed by websites linked to or from my Site. In addition, these sites or services, including their content and links, may be constantly changing. These sites and services may have their own privacy policies and customer service policies. Browsing and interaction on any other website, including websites which have a link to my Site, is subject to that website’s own terms and policies.

Embedded Content From Third-Party Websites

Articles on this Site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Article 8. Your Rights Under The GDPR

Users based in the European Union have the following rights, which can be exercised free of charge:

• Withdraw their consent at any time. Users have the right to withdraw consent where they have previously given their consent to the processing of their personal data.

• Object to processing of their data. Users have the right to object to the processing of their data if the processing is carried out on a legal basis other than consent. 

• Access their data. Users have the right to learn if data is being processed by us, obtain disclosure regarding certain aspects of the processing and obtain a copy of the data undergoing processing.

• Verify and seek rectification. Users have the right to verify the accuracy of their data and ask for it to be updated or corrected.

• Restrict the processing of their data. Users have the right, under certain circumstances, to restrict the processing of their data. In this case, we will not process their data for any purpose other than storing it.

• Have their personal data deleted or otherwise removed. Users have the right, under certain circumstances, to request the erasure of their data.

• Receive their data and have it transferred to another controller. Users have the right to receive their data in a structured, commonly used and machine-readable format and, if technically feasible, to have it transmitted to another controller without any undue delay. 

• Lodge a complaint. Users have the right to bring a claim before their competent data protection supervisory authority. In the Netherlands, the supervising authority is the Autoriteit Persoonsgegevens

You can exercise your rights by contacting us at info {at} /via our contact form.

Your rights can be exercised free of charge and will be addressed by us as soon as possible but always within 30 days, under certain circumstances such as complex cases, this can be prolonged to 60 days. To avoid misuse of your personal information we may ask you to provide us with adequate identification (such as a passport copy with your photo blurred) before we process your request. We can only process requests from data subjects about their own data. 

Article 9. Security

The security of your personal information is important to us.

Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our Site as safe as possible.

We use regular Malware Scanning.

Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential.

In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

We implement a variety of security measures when a user places an order, enters, submits, or accesses their information to maintain the safety of your personal data.

All transactions are processed through a gateway provider and are not stored or processed on our servers. 

Unfortunately, no method of transmission over the internet is completely secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.


We agree to users visiting our Site anonymously.

Do not track signals

Pursuant to the California Online Privacy Protection Act (CalOPPA), we hereby disclose that we do not currently honor “do not track” signals issued by browsers or other third-party sources.


For the collection of personal information from children under the age of thirteen (13) years old, we comply with the Children’s Online Privacy Protection Act (COPPA).

The Site is intended for individuals who are at least eighteen (18) years of age or have the applicable legal age of majority in their country of residence. 

By visiting and using the Site, you represent and warrant that you are at least 18 years of age or have the applicable legal age of majority in your country of residence and meet all of the foregoing eligibility requirements.

We do not specifically market to children under thirteen (13) years of age. We do not knowingly collect personal information from children under thirteen (13) years of age. 

If you are under thirteen (13) years of age, please do not use the Site or provide any information on the Site, including your name, screen name, username, address, telephone number, email address, and payment details.

If we learn we have collected or received personal information from a child under thirteen (13) years of age without verification of consent from a parent or guardian, the personal information collected or received shall be deleted with no delay.

If you believe we might have any information concerning a child under thirteen (13) years of age, please contact us at info {at} /via our contact form and we will endeavour to delete such information with no delay.

Article 12. Changes To This Privacy Policy

This Privacy Policy is effective as of 15-04-2023 and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on our Site.

We reserve the right to update or change our Privacy Policy at any time and you should check this Privacy Policy periodically. Your continued use of our Site after we post any modifications to the Privacy Policy will constitute your acknowledgment of the modifications and your consent to abide and be bound by the modified Privacy Policy.

If we make any material changes to this Privacy Policy, we will notify you either through the email address you have provided us, or by placing a prominent notice on our Site.

Article 13. Contact Us

If you have any questions about this Privacy Policy, please contact us at info {at} /via our contact form.