Privacy Policy

Your privacy and confidentiality are central to our service.

Data Minimization

We collect only the minimum data needed to deliver secure vaulting services. We do not sell your data or share it with third parties except where required by law.

Encryption & Transport Security

All communications use modern TLS (SSL) with Perfect Forward Secrecy. Sensitive data at rest is encrypted and access is restricted to senior staff.

Cookies

We use strictly necessary cookies to maintain session security. Optional analytics cookies are disabled by default.

Client Confidentiality

Client identities, access schedules, and holdings are confidential. Information is accessible only to designated senior personnel under dual-control processes.

1. Scope
This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you use our website, create an account, or request services.

2. Information We Collect
We may collect: identity and contact details, account credentials, verification information, service requests, communications, and technical data such as device information and IP address.

3. Why We Collect It
We process information to provide services, secure accounts, prevent fraud, comply with legal obligations (including AML/KYC where applicable), and communicate with you.

4. Lawful Basis
Where required, we rely on contractual necessity, legitimate interests (security and fraud prevention), legal obligations, and your consent (for optional communications).

5. Sharing and Disclosure
We do not sell personal data. We may share information with service providers (hosting, email), professional advisers, and authorities when legally compelled.

6. International Transfers
If data is processed outside your jurisdiction, we apply appropriate safeguards and restrict access to authorized personnel.

7. Retention
We retain information only as long as necessary for service delivery, legal compliance, dispute resolution, and security. Retention periods may vary by category.

8. Security
We use administrative, technical, and physical safeguards. No system is completely secure; however, we continuously improve controls and monitor for threats.

9. Your Rights
Depending on your jurisdiction, you may request access, correction, deletion, restriction, or portability of your information. Some requests may be limited by legal obligations.

10. Cookies
We use strictly necessary cookies for sessions and security. Optional analytics cookies may be disabled by default.

11. Contact
For privacy requests, contact us using the contact details on this website or through your account message center.

We align with the General Data Protection Regulation (GDPR). Depending on your jurisdiction, you may have the following rights:

Access, rectification, and deletion of your personal data
Restriction or objection to processing in specific circumstances
Data portability for information you provided
Information about lawful bases for processing

To exercise rights, contact our privacy office via the secure message center in your account.

FINMA Guidance

We follow Swiss regulatory guidance applicable to our services, including AML obligations under the Anti‑Money Laundering Act (AMLA) and supervision by recognized self‑regulatory organizations (SROs) where relevant.