Absolute discretion: what confidentiality really means when your concierge takes care of your daily life

Our non-disclosure agreement covers four dimensions: client identity (prohibition of disclosing clients' identity, family, professional or patrimonial situation), mission information (prohibition of mentioning information related to missions carried out, places visited, habits or preferences of clients), derived information (prohibition of sharing information that the associate could have derived from his work even without explicitly communicating it) and post-mission confidentiality (all obligations apply even after the end of the mission without a time limit restrictions). The liability clause provides for damages commensurate with the nature and possible consequences of the breach.

We distinguish two levels of communication. Common communications — confirmations, practical questions, non-sensitive information — go through secure, standard channels that we've evaluated for protection. Sensitive communications — information about the program, movements, identities of the escort — pass through end-to-end encrypted channels, the security parameters of which we check and regularly evaluate. At the client's express request, we can accept their own secure communication protocols if they meet higher standards than ours.

Unless absolutely necessary, no. Our principle of information minimization is systematically applied to third-party suppliers: we communicate to each external worker only the information absolutely necessary to fulfill their mission. The driver gets the address, time and destination — not the client's name. A private chef will be provided with a meal plan and dietary restrictions. The craftsman is given the location and specifications of the works. If the identity of the client is absolutely necessary, we apply the principle of a specific limited mission — information communicated for this specific mission, the contractor is subject to the same confidentiality obligations as our collaborators.

On a simple request, we will proceed to completely delete the file within forty-eight hours: archived communications, mission history, documented preferences, internal notes. You will receive a written confirmation of this deletion, indicating the categories of data deleted. We only keep data strictly necessary for legal obligations — invoicing, tax compliance — within the time limits set by law, then deleted. GDPR is our floor, not the ceiling.

We distinguish between immediate coping and consequences. Immediately: once a potential or actual breach is identified, we will notify the affected client as soon as possible, identify the scope of the information shared, take available measures to prevent dissemination and immediately suspend the relationship with the affected supplier or associate. It is our internal policy that any breach of confidentiality, even unintentional, terminates the professional relationship with the individual concerned. Trust is not repairable once it is broken in this area.

Yes — and we are ready for it. Some clients have confidentiality needs that go beyond standard protocols: a director of a listed company may be subject to regulatory rules on confidentiality of movements, a diplomat may have anonymity restrictions associated with his function, a public figure may have security reasons requiring enhanced protocols. In all these cases, we will create a customized confidentiality framework with the client — customized communication protocols, limitation of the number of informed collaborators, systematic anonymization in all internal tools and possibly a single dedicated point of contact. This personalization is available at no additional cost.

We apply the "watertight compartment" principle: each worker receives only his part of the information, without being able to reconstruct the overall picture. The driver knows the moves. The chef knows the dietary preferences and the meal program. The cleaner knows the arrival and departure dates and the expected standards. None of the three know the information of the other two. The big picture remains within a very limited number of permanent associates subject to the strictest confidentiality obligations — whose reputation for discretion is our most valuable asset.

Upon request and while respecting the confidentiality of other clients, we can provide you with our internal protocol documentation: the complete confidentiality policy, the NDA structure we use, breach management procedures, data deletion procedures. We can organize a discussion with our Data Protection Officer. We can connect you with existing clients who agree to testify about their experience — anonymously if necessary. And we welcome proposals from clients who wish to have our practices audited by an independent third party. We have nothing to hide about how we protect what you entrust to us. Precisely because you trust us.