“Hosted in Switzerland” appears on a lot of vendor websites. It is worth understanding what it actually means — because data residency is not a marketing badge. It changes who, legally, can reach your guests’ data.
Residency vs. sovereignty
Two different ideas get blurred together:
- Data residency is where the data physically sits — which country’s data centres store it.
- Data sovereignty is whose laws govern it — which jurisdiction can compel access, regardless of where the servers are.
They usually align, but not always. A provider can store data in a Swiss data centre while being a subsidiary of a company subject to foreign disclosure laws. Then the bytes are in Switzerland but the control is not. That gap is the whole point.
Why the jurisdiction is the real question
The reason residency matters is compelled access. Under certain foreign laws, a company can be ordered to hand over data it controls — even data held on servers in another country. If your guest data is controlled by an entity subject to those laws, “the servers are in Switzerland” offers less protection than it sounds.
For a campsite that holds passport numbers and dates of birth, that is not abstract. It is the difference between “our data is governed by Swiss law” and “our data is governed by Swiss law unless someone abroad asks nicely enough.”
What guests are actually trusting you with
A guest handing over an ID at check-in is not thinking about hosting architecture. They are trusting that the small campsite by the lake will look after their passport number. Data residency is how you keep that trust structurally, rather than by promise — the data stays under Swiss law, deleted on schedule, reachable only by people who need it.
What to actually ask a vendor
Don’t accept “hosted in Switzerland” at face value. Ask:
- In which country are the servers, and is that true for backups too?
- Which jurisdiction’s laws govern the operating company and its parent?
- Who can be compelled to disclose the data, and under what law?
- What is deleted, and when — is there a retention schedule, or does data live forever?
- Who at the vendor can access guest data, and is that access logged?
A straight answer to all five is the signal you want. Hesitation on questions 2 and 3 is the answer to question 1.
Why we built it this way
CampOne keeps guest data on servers in Switzerland, under a Swiss operating entity, governed by Swiss law — with access controlled per staff role and a retention schedule that deletes data when its purpose ends. Not because it is a nice line on a page, but because a campsite should be able to promise a guest, truthfully, that their passport number is governed by the same law they are standing under.
The takeaway
Data residency is not a checkbox — it is a statement about who can reach your guests’ data. Look past the “hosted in Switzerland” badge to the jurisdiction of the company that controls it, ask the five questions above, and make sure the honest answer is the one your guests would want to hear.