01
EU-only hosting
Production runs in EU regions. No US-only data residency. Sub-processor list available on request.
Trust
Honest about what we run. Honest about what we don't yet.
Procurement asks first. We answer first. Below: what runs today, what's in preparation, what we don't yet claim — and a one-business-day reply ready for your auditor.
Controls in place
GDPR-aligned, EU-hosted, audit-trailed.
Implemented today across the platform. Independent attestation programs are in preparation; we don't claim certifications we don't hold.
02
GDPR controls implemented
Data minimization, purpose limitation, retention, encryption in transit and at rest, DSAR export, right-to-erasure cascade.
03
Tenant isolation
Policy-based scoping plus a defense-in-depth Prisma extension. Tenant safety is a first-class platform concern.
04
Caller governance + audit
Every API key has a CallerProfile. Reads and mutations are audited; mutation policies and budgets cap risk.
05
Mutation lineage
Every tenant-scoped mutation emits a lineage event. Combined with EnrichmentLog, you get one answer to 'where did this value come from?'.
06
Field classification
Every exposed field declares sensitivity (PUBLIC / INTERNAL / RESTRICTED / PII / PHI / FINANCIAL) and a data category. CI rejects unclassified fields.
Compliance status
Where each program stands.
01GDPR
Controls implementedEU-hosted; DPA available; sub-processors disclosed.
02ISO 27001
Program in preparationNot yet certified. We do not claim ISO 27001 conformance.
03SOC 2 Type II
Program in preparationNot yet attested. We do not claim SOC 2 attestation.
04AI Act readiness
Audit by callerType=AI_AGENTCompliance reviewers can answer 'what did the AI agent do?'.
Trust FAQ
Things procurement asks first.
Procurement
Need DPA, sub-processor list, or a security questionnaire?
We respond within one business day. Send a request through the contact form.