How a private concierge service really protects the privacy of its clients: reinforced NDAs, Signal, ProtonMail, partitioned agendas, travel aliases. Unique technical article in France.
The promise of discretion is universal in the concierge sector. Its operational implementation is much rarer. Here, in complete transparency, are the protocols we apply — because our founder has 20 years of experience in VIP security and confidentiality is not a marketing argument, but a skill forged in the field.
Level 1: Legal protection
The strengthened NDA
Each employee, each service provider, each partner signs a reinforced non-disclosure agreement before any interaction with a client. This NDA goes beyond the legal standard:
- Unlimited duration — confidentiality does not end when the mission ends
- Penal clauses — with fixed compensation in the event of violation
- Extended scope — covers not only direct information but also inferred information (estimated assets, habits, network)
- Annual audit — our law firm verifies the compliance of each NDA in progress
No employee has access to a client's entire file. The “need-to-know” principle, inherited from military protocols, is systematically applied: the driver knows the address and time, not the name. The chef knows the number of place settings and allergies, not the identity of the host.
Level 2: Secure communications
No customer information is transmitted by unencrypted email or general public messaging. Our channels:
- Signal — end-to-end encrypted messaging, ephemeral messages enabled by default
- ProtonMail — encrypted emails, servers in Switzerland, outside French jurisdiction
- Digital safe — document sharing via secure platform with access traceability
- No consumer cloud — no Google Drive, no Dropbox, no WeTransfer for client files
Operational reflexes
Beyond the tools, it is the reflexes that make the difference:
- Never customer name in an email, even encrypted — we use internal codes
- Never customer conversations on an unsecured phone
- Proactive deletion of messages after mission execution
- Security debriefing after each sensitive mission
Level 3: Crisis management
Our crisis protocol can be activated in less than 4 hours. It's been tested — and it works:
- Alert — the customer or their representative contacts us via secure channel
- Assessment — our team assesses the nature and seriousness of the situation in 30 minutes
- Activation — changing numbers, securing residences, filtering communications
- Coordination — putting you in touch with a criminal lawyer, if necessary with law enforcement
- Daily protection — school support for children, family logistics management
- Follow-up — post-crisis debriefing and protocol update
Level 4: GDPR+ compliance
We go beyond standard GDPR:
- Minimum retention — we only keep the data strictly necessary for the current mission
- Proactive deletion — sensitive data is deleted at the end of the mission, not after a legal deadline
- Half-yearly audits — a specialized firm checks our practices twice a year
- Continuing education — eachThe team member undergoes annual data protection training
Why it’s different
Most concierge services promise discretion. We practice it — with protocols from 20 years of protecting exposed people. The difference is measured in results: zero documented leaks since the creation of our house.
Frequently asked questions
Are your protocols certified?
Our practices are audited annually by a specialized legal firm and comply with the reinforced GDPR. Our founder is trained in government security protocols.
Do you use subcontractors who could compromise confidentiality?
Each service provider signs a reinforced NDA before any mission. The need-to-know principle limits the information transmitted to what is strictly necessary.
What happens in the event of a legal request for access to data?
Our minimum retention policy means that we retain very little data. In the event of legal requisition, we inform the customer (unless prohibited by law) and only transmit the data strictly required by law.
