Security & Compliance
Your data is your most valuable asset. Here's how we protect it.
Enterprise-grade reliability with automated failover and real-time status monitoring.
Security Practices
Encryption at Rest & In Transit
All data encrypted with AES-256 at rest and TLS 1.3 in transit. Zero plain-text storage of sensitive information.
Infrastructure Security
Hosted on SOC 2-certified infrastructure with automated threat detection, DDoS protection, and continuous monitoring.
Access Controls
Role-based access control (RBAC), multi-factor authentication, and audit logs for every administrative action.
Penetration Testing
Regular third-party penetration tests and vulnerability assessments. Responsible disclosure program.
Compliance Certifications
SOC 2 Type II
In ProgressSecurity, availability, and confidentiality trust principles. Audit in progress.
GDPR
CompliantFull compliance with EU General Data Protection Regulation. DPA available on request.
EU AI Act
CompliantOur Sentinel engine ensures our own AI systems — and our customers' — meet EU AI Act requirements.
ISO 27001
PlannedInformation security management certification. On our 2026 roadmap.
Data Handling
Data Residency
Data processed and stored in EU data centers. We never transfer personal data outside the EU without adequate safeguards.
Data Retention
Configurable retention periods. When you delete data, it's removed from all systems within 30 days, including backups.
Data Processing Agreement
GDPR-compliant DPA available for all customers. Covers sub-processors, data categories, and processing purposes.
Your Data, Your Control
Full data export at any time. No vendor lock-in. We never use your data to train AI models without explicit consent.
Questions about security?
Our team is happy to walk you through our security architecture and provide documentation for your compliance reviews.
Contact Security Team