Security and data protection
We store your data on EU servers over an encrypted connection. GDPR-compliant data handling, with every action recorded in a log.
Encryption
AES-256 encryption for stored data, TLS 1.3 for all data in transit. The same standard banks rely on.
EU data hosting
All data is stored on servers located within the European Union. GDPR-compliant data handling, with a data processing agreement (DPA) for every customer.
Per-customer isolation
Every customer's data is strictly separated from the rest. Database-level isolation ensures data never gets mixed up.
Searchable audit log
Every action is recorded in a detailed log. Who changed what and when — always traceable.
Two-factor authentication
2FA support with TOTP apps (Google Authenticator, Microsoft Authenticator). Can be enforced company-wide.
API security
JWT-based authentication, rate limiting, IP filtering and API key management for secure integrations.
Compliance and certifications
Your data is handled in line with the highest security standards.
Full EU data protection compliance
Information security management system
Service organization controls
Encrypted communication on every channel
How we handle your data
We only ask for what we need
We collect and store only the data required to run the service. We don't ask for or keep anything unnecessary.
Your data belongs to you
Export everything anytime in CSV or JSON format. No vendor lock-in — if you want to leave, you take your data with you.
No rush after cancellation
After cancellation, all your data stays available for export for 30 days. After that, we delete it permanently and irreversibly.
Regular security checks
Penetration tests and security reviews keep the system protected at all times.