HomeSolutionsCompanyPricingContact

Privacy Policy

Compliance: GDPR / CCPA / FADP (Swiss)Last Updated: February 07, 2026

1. Privacy Commitment

Amadeus Protected LTD is architected around a simple principle: We cannot provide what we do not possess.

We strictly DO NOT log:

  • Traffic destination or content.
  • DNS queries.
  • Original IP addresses connecting to our secure network nodes.
  • Session duration or timestamps.

2. Data We Collect

We practice "Data Minimization". We only collect the absolute minimum required to create an account and process payments.

Account Data: Email address (hashed). No name or phone number required for basic tiers.
Payment Data: Processed via Stripe/Banking partners. We store only the Payment Reference ID, not the full card number.
Support Data: Correspondence sent to our support channels is retained for 30 days, then purged.

3. How We Use Data

Your data is used solely for:

Service Provisioning

To authenticate your access to the secure network and messaging services and to manage your subscription status (Active/Expired).

Legal Compliance

To comply with Swiss financial regulations regarding accounting (keeping records of invoices).

4. Payment Processing

We use Stripe as our primary payment processor for credit card transactions. When you make a payment, your payment information is transmitted directly to Stripe and is not stored on our servers.

What Stripe Collects: Credit card number, expiration date, CVV, billing address, and transaction details.
What We Store: Only the Stripe Payment Reference ID, transaction amount, date, and payment status.
Stripe's Privacy Policy: Available at stripe.com/privacy

We also accept Bank Wire Transfers (SWIFT/SEPA). For wire transfers, we collect your bank account details solely for the purpose of processing the payment. This information is encrypted and stored securely.

5. Third-Party Services

We work with carefully selected third-party service providers to deliver our services. These providers have access to limited personal data only as necessary to perform their functions.

Payment Processing: Stripe Inc. (USA) - PCI DSS Level 1 certified payment processor.
Email Communications: Encrypted email service providers for customer support and notifications.
Infrastructure Hosting: ISO 27001 certified datacenters in Switzerland, Iceland, Germany.

All third-party providers are bound by strict data processing agreements (DPAs) and are required to comply with GDPR and Swiss FADP standards.

6. Storage & Security

UK JURISDICTION: All user databases are hosted in ISO-27001 certified data centers in London, United Kingdom. They are protected by UK Data Protection Act 2018 and GDPR.

All disks are Full-Disk Encrypted (LUKS). In the event of a physical seizure, data remains inaccessible.

7. Data Retention Periods

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Account Data: Retained for the duration of your active subscription plus 90 days after cancellation.
  • Payment Records: Retained for 10 years to comply with UK accounting and tax regulations.
  • Support Correspondence: Automatically deleted after 30 days unless required for ongoing issue resolution.
  • Service Logs: Minimal technical logs are retained for 7 days for security monitoring, then permanently deleted.

Upon account deletion, all personal data is permanently erased from our systems within 30 days, except where retention is required by law (e.g., financial records).

8. International Data Transfers

PRIMARY JURISDICTION: All user data is primarily stored and processed in the United Kingdom, which maintains GDPR compliance and high data protection standards.

When we use service providers located outside the UK/EEA (such as Stripe in the USA), we ensure appropriate safeguards:

  • Standard Contractual Clauses (SCCs): EU-approved data transfer agreements.
  • Adequacy Decisions: Transfers only to countries with adequate data protection levels.
  • Encryption in Transit: All data transfers use TLS 1.3 encryption.

9. Cookies & Tracking Technologies

We use minimal cookies and tracking technologies. Our website is designed to function without extensive tracking.

Essential Cookies: Required for authentication and session management. These cannot be disabled.
Analytics: We do NOT use Google Analytics or similar third-party tracking tools.
Marketing Cookies: We do NOT use advertising or marketing cookies.

You can control cookies through your browser settings. Disabling essential cookies may affect website functionality.

10. Children's Privacy (COPPA Compliance)

Our services are intended for business and enterprise use only. We do not knowingly collect personal information from individuals under the age of 18.

If we become aware that we have inadvertently collected personal data from a minor, we will take immediate steps to delete such information from our systems.

Parents or guardians who believe their child has provided us with personal information should contact us immediately at finance@amadeusprotectedltd.com.

11. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the right to:

  • Right to Access: Request a copy of the minimal data we hold.
  • Right to Rectification: Correct wrong email addresses.
  • Right to Erasure ("To Be Forgotten"): Request total deletion of your account. We execute this instantly.

To exercise these rights, email: finance@amadeusprotectedltd.com

12. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

Data Protection Officer:
Email: finance@amadeusprotectedltd.com
Response Time: Within 72 hours
Company Information:
Amadeus Protected LTD
Registered in England & Wales
Compliance: GDPR, FADP, PCI DSS
Supervisory Authority:
UK Information Commissioner's Office (ICO)
Website: ico.org.uk

Last Updated: February 07, 2026
We reserve the right to update this Privacy Policy. Material changes will be communicated via email to registered users.