IceGo Privacy Policy & GDPR Compliance

At IceGo, we recognize that the high-stakes nature of commercial media production and luxury expedition planning requires not just operational efficiency, but absolute administrative reliability. We process data with the understanding that every detail — from service specifications to personnel logistics — must be handled with confidentiality. Our platform's data security protocols are aligned with GDPR standards, ensuring that your organizational data remains protected against unauthorized access and processing errors. By centralizing your procurement and administrative oversight, we simultaneously create a secure environment where data visibility is restricted to necessary parties only.

IceGo operates as an entity subject to the laws of Iceland. Consequently, our data processing activities are governed by the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) and the national implementation found in Act No. 90/2018 (The Icelandic Data Protection Act). These regulations mandate stringent transparency requirements regarding how personal data is collected, stored, and utilized. Persónuvernd, the independent Icelandic Data Protection Authority, maintains oversight of these operations. We integrate these legal requirements into our core architectural design, ensuring that compliance is a foundational component of our service delivery.

To facilitate our multi-vertical procurement services, IceGo collects specific categories of data necessary for provider matching and itinerary coordination. This includes contact details for account management, professional credentials for provider verification, and logistical preferences. We collect only the information required to effectively coordinate services with our vetted professional network.

In accordance with GDPR and Act No. 90/2018, all users possess defined rights concerning their personal information. You retain: • The right to access the data we hold about you • The right to request rectification of inaccurate information • The right to request the erasure of your data under specific conditions ('right to be forgotten') • The right to data portability • The right to object to certain types of processing We provide mechanisms for users to manage these requests directly through their account settings or via direct outreach to our data management team at info@icego.is.

Our platform is designed with a 'security-by-design' approach. We implement technical and organizational measures to prevent unauthorized disclosure, loss, or alteration of data. This includes encrypted data transmission, regular system updates, and strict access controls within our team. Our platform adheres to current data security protocols; we recommend independent audit for specific, high-stakes enterprise compliance requirements. While we utilize robust infrastructure, the evolving landscape of digital threats necessitates continuous vigilance. We advise all users to maintain security best practices, including the use of strong authentication credentials when accessing our platform.

If you have concerns regarding our data processing activities that cannot be resolved through our standard support channels, you maintain the right to contact the relevant supervisory authority. In Iceland, this is Persónuvernd (The Icelandic Data Protection Authority): Rauðarárstíg 10, 105 Reykjavík postur@personuvernd.is personuvernd.is We encourage all users to reach out to us first at info@icego.is to address any questions or concerns, as we are committed to transparent communication and rapid remediation of any data-related issues.