Privacy Policy

ChefPassport, 303 rue de Neudorf, L-2221 Luxembourg City, Luxembourg, is the controller of your personal data. For any privacy question or to exercise your rights, contact us at matteo@chefpassport.com or +352 691 25 87 02.

Information you give us — when you request an estimate, book a discovery call or contact us: your email address, and the event details you provide (format, group size, timeframe, and anything you include in messages).

Information collected automatically — if you consent to analytics cookies, we collect usage data (pages viewed, approximate location, device/browser, and interaction data) via the tools below. With no consent, we collect none of this.

Information from third parties — when you enquire from a business email, we may supplement your record with publicly available professional details (such as job title, company and a LinkedIn profile) from a B2B data provider, so we can prepare properly for our conversation. We rely on our legitimate interest in responding to business prospects (GDPR Art. 6(1)(f)); you can object at any time (see “Your rights”).

• To respond to your enquiry and provide a quote or service — performance of a contract, or our legitimate interest in answering prospective clients (GDPR Art. 6(1)(b)/(f)).
• To understand and improve the website (analytics) — your consent (Art. 6(1)(a)), which you can withdraw at any time.
• To meet legal, accounting and tax obligations — compliance with a legal obligation (Art. 6(1)(c)).

We do not set any non-essential cookies until you accept them. With your consent we use Google Analytics 4 and Microsoft Clarity to understand how the site is used. You can accept or decline when you arrive, and change your choice at any time via the “Cookies” link in the footer. Declining keeps only the essential cookies needed for the site to function.

We never sell your data. We share it only with service providers (processors) that help us run the business, under data-processing agreements:

• Vercel & Supabase — website hosting and our database.
• Google (Analytics) and Microsoft (Clarity) — analytics, only with your consent.
• Email and scheduling tools we use to reply to you.
• People Data Labs — B2B contact-data provider used to enrich business enquiries (job title, company, LinkedIn).

Some of these providers are based outside the EU/EEA (e.g. the United States). Where that is the case, transfers are protected by appropriate safeguards such as the EU Standard Contractual Clauses and/or the EU–US Data Privacy Framework.

We keep enquiry and client data only as long as necessary for the purposes above — typically while we are in contact and for a reasonable period afterwards, and longer where law (e.g. accounting rules) requires it. Analytics data is retained according to the tools’ standard retention settings. When data is no longer needed, we delete or anonymise it.

Under the GDPR you have the right to: access your data; have it corrected or erased; restrict or object to its processing; data portability; and to withdraw consent at any time (without affecting prior processing). To exercise any of these, email matteo@chefpassport.com. We respond within one month.

If you believe we have not handled your data properly, you can lodge a complaint with the Luxembourg supervisory authority, the Commission nationale pour la protection des données (CNPD) — cnpd.public.lu — or with the authority in your EU country of residence.

We use encryption in transit (HTTPS), access controls and reputable infrastructure providers to protect your data. No method is perfectly secure, but we take reasonable steps to keep it safe.

We may update this policy from time to time; the “last updated” date above reflects the latest version. Material changes will be reflected here.