Legal & Discretion

Privacy Policy

Last updated: February 2025

This privacy policy explains how Tazouda collects, uses, and protects your personal information. Our approach is built on Confidentiality by Design—we collect only what is operationally necessary and protect it as a working requirement, not a marketing feature.

1. Data Controller

Tazouda is the data controller responsible for your personal information. We are registered in Canton of Zug, Switzerland. For privacy-related enquiries, contact us via our briefing request page.

2. What Information We Collect

Travel Coordination

Name and contact details
Travel dates, destinations, and preferences
Passport or ID information (only when required by providers)
Payment information (processed securely via third-party providers)

Gathering Participation

Name and contact details
Professional background (for fit verification only)
Dietary requirements or accessibility needs

Website Use

Basic technical data (IP address, browser type, pages visited) via analytics
We do not use tracking cookies for advertising purposes

3. How We Use Your Information

To provide our services: coordinating travel or organising gatherings
To verify fit: ensuring participants meet the standards required for discretion and safety
To communicate: sharing proposals, confirmations, or logistical updates
Legal compliance: meeting tax, accounting, or regulatory obligations

We do not use your information for marketing, client lists, case studies, or promotional material.

4. Legal Basis for Processing

We process your personal data on the following legal grounds:

Contract performance: to deliver the services you have requested
Legitimate interest: to verify participant fit and maintain the integrity of gatherings
Legal obligation: to comply with financial and regulatory requirements
Consent: where explicitly provided (e.g., for an NDA or specific communication preferences)

5. Staged Disclosure

We request information only when operationally necessary. You are not required to provide full identity details during initial enquiries. Sensitive information—such as travel movements or participant identities—is requested in stages and only shared with vetted partners essential to execution.

6. NDA-First Policy

If you require formal legal protection before sharing sensitive details, we offer a non-disclosure agreement (NDA) before any substantive exchange of information. This is available upon request during the briefing stage.

7. Data Sharing

Your information is shared only with:

Vetted service providers: accommodation, aviation, yacht charter operators—only to the extent required to execute your request
Payment processors: to handle transactions securely
Legal or regulatory authorities: if required by law

We do not sell, rent, or share your information for marketing or promotional purposes. We do not disclose participant lists, travel histories, or gathering attendees to third parties.

8. Data Retention

Travel coordination: We retain booking and payment records for 7 years to meet legal and accounting obligations. Operational details (e.g., itineraries, preferences) are deleted within 12 months of service completion unless you request otherwise.
Gathering participation: Attendance records are kept confidential and retained for operational continuity. No participant lists are published or shared.
Enquiries that do not proceed: Contact details are deleted within 90 days unless you have requested ongoing communication.

9. Your Rights

Under GDPR and Swiss data protection law, you have the right to:

Access: request a copy of the personal data we hold about you
Correction: ask us to correct inaccurate or incomplete information
Deletion: request deletion of your data (subject to legal retention obligations)
Restriction: request that we limit how we use your data
Portability: receive your data in a structured, machine-readable format
Objection: object to processing based on legitimate interest
Withdraw consent: where processing is based on consent, you may withdraw it at any time

To exercise any of these rights, contact us via our briefing request page.

10. International Data Transfers

Tazouda is registered in Switzerland, which is recognised by the EU as providing adequate data protection. If your data is transferred to providers outside the EU/EEA/Switzerland, we ensure appropriate safeguards are in place (e.g., standard contractual clauses or adequacy decisions).

11. Security

We use industry-standard security measures to protect your information, including encryption for data in transit and access controls for data at rest. However, no system is completely secure. We cannot guarantee absolute security but commit to notifying you promptly in the event of a data breach that affects your rights.

12. Off-Record Communication

All briefing calls and gathering conversations are off-record by default. We do not record calls, meetings, or sessions unless explicitly agreed in writing. Notes taken for operational purposes are minimal and securely stored.

13. Cookies and Tracking

This website uses basic analytics to understand how the site is used (e.g., pages visited, referral sources). We do not use tracking cookies for advertising or retargeting. You can disable cookies in your browser settings without affecting core functionality.

14. Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated to active participants. The "Last updated" date at the top of this page reflects the most recent version.

15. Supervisory Authority

If you believe we have not handled your data appropriately, you have the right to lodge a complaint with the relevant supervisory authority. For Switzerland, this is the Federal Data Protection and Information Commissioner (FDPIC). For EU residents, contact your national data protection authority or the European Data Protection Board (EDPB).

This privacy policy is designed to meet GDPR and Swiss data protection standards. It reflects our operational commitment to confidentiality by design.