Privacy Policy

Data Protocol

We practice "Data Minimalism." We collect only what is necessary to ensure your safety, comfort, and the personalization of your mission.

Return to Base

01. Data Collection

We collect information in three categories:

  • Identity DataYour Name, Email, Phone Number, Date of Birth, and "Callsign" (Nickname). This is used to create your secure account and verify your reservation.
  • Mission DataCheck-in/out dates, room preferences, and transaction history.
  • Technical DataIP address and device information for security logs and ensuring network integrity during your stay.

02. Operational Usage

We do not sell your data. We use it strictly to:

  • Process your booking and payments securely.
  • Facilitate check-in (including generating your digital access codes).
  • Communicate important updates regarding your stay (e.g., weather warnings for helicopter transfers).
  • Maintain the safety of our premises.

03. Biological & Dietary Protocol

To fulfill our "Metabolic Architecture" service, we may collect sensitive health-related data, such as:

  • Dietary restrictions and allergies.
  • Specific nutritional protocols (Keto, Paleo, Vegan).
  • Sleep preferences (temperature settings).

Storage Policy: This data is stored locally within your guest profile for the duration of your membership. It is never shared with third-party advertisers. It is accessible only to our Concierge and Executive Chef teams for service delivery.

04. Third-Party & Sharing

We share data only when operationally necessary:

  • Payment ProcessorsTo securely process credit card transactions (we do not store full card numbers).
  • Search & RescueIn an emergency, your itinerary and last known location (via Garmin/Starlink) may be shared with emergency services.
  • Cloud InfrastructureWe use secure cloud providers (Supabase) to host our encrypted database.

05. Security Infrastructure

Encryption Standards

All data in transit is encrypted via TLS 1.3. User passwords and sensitive tokens are hashed and salted using industry-standard algorithms (Argon2 via Supabase Auth). We employ strict Row Level Security (RLS) to ensure you can only access your own data.

06. Your Rights

You retain full sovereignty over your data. You have the right to:

  • Request a copy of all data we hold about you.
  • Request correction of any inaccurate data.
  • Request the "Right to be Forgotten" (complete deletion of your account and history), subject to legal record-keeping requirements (e.g., tax laws).

07. Contact Privacy Officer

If you have any questions regarding this protocol or wish to exercise your rights, please contact our dedicated team.

ThunderVoyage HQ

306 Bow Valley Trail, Unit 201B
Canmore, AB T1W 0N2
Canada

book@thundervoyage.com