Privacy Policy
Last updated: May 2026
Eminzora Ltd (“Eminzora”, “we”, “our”, “us”) is committed to protecting the privacy and confidentiality of our clients. This Privacy Policy explains how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
1. Who We Are
Eminzora Ltd is a UK-registered luxury concierge and lifestyle management company. We are the data controller for personal information collected through this website and our services.
Contact: enquiries@eminzora.com | Website: https://eminzora.com
2. What Data We Collect
We may collect the following categories of personal data:
- Contact information: full name, email address, phone number, WhatsApp number
- Service preferences: travel dates, locations, service types, tier preferences
- Financial information: billing details processed through our secure payment partners
- Technical data: IP address, browser type, pages visited (collected via cookies)
- Communications: records of correspondence, inquiry submissions, and service requests
3. How We Use Your Data
We use your personal data to process and fulfil your service requests; communicate regarding your enquiries and arrangements; manage your membership and provide personalised concierge services; send service updates and, where consent has been given, relevant communications; and comply with legal obligations and prevent fraud.
4. Legal Basis for Processing
We process your data under the following legal bases: (a) Contract performance — where processing is necessary to provide services you have requested; (b) Legitimate interests — to improve our services and ensure security; (c) Consent — for marketing communications, which you may withdraw at any time; (d) Legal obligation — where required by applicable law.
5. Data Sharing
Eminzora does not sell your personal data. We may share it with vetted supplier partners solely for the purpose of fulfilling your service request; payment processors operating under PCI-DSS compliance; and legal or regulatory authorities where required by law. All third-party partners are bound by confidentiality obligations.
6. Data Retention
We retain personal data for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Client records are typically retained for 7 years for accounting purposes. Marketing consents are reviewed annually.
7. Your Rights
Under UK GDPR, you have the right to: access your data; correct inaccurate data; request deletion; restrict or object to processing; data portability; and withdraw consent at any time. To exercise any of these rights, please email: enquiries@eminzora.com
8. Cookies
We use cookies to enhance your experience on our website. Please see our Cookie Policy for full details.
9. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure.
10. Contact & Complaints
For any privacy-related questions, contact us at enquiries@eminzora.com. If you are unsatisfied with our response, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO): ico.org.uk | 0303 123 1113.
