Security & Compliance

Trust Center

We are committed to the security and privacy of your data. Our platform is built with enterprise-grade security controls and compliance at its core.

Compliance

HIPAA

Healthcare Ready

GDPR

EU Data Protection

Resources

Controls

Updated January 2026

Infrastructure Security

Encryption key access restricted

Access control procedures established

Firewall access restricted

View 8 more infrastructure security controls

Organizational Security

Asset disposal procedures utilized

Portable media encrypted

Anti-malware technology utilized

View 8 more organizational security controls

Product Security

Data encryption utilized

Control self-assessments conducted

Penetration testing performed

View 5 more product security controls

Internal Security Procedures

Continuity and Disaster Recovery plans established

Continuity and disaster recovery plans tested

Cybersecurity insurance in place (since Dec 2025)

View 28 more internal security procedures controls

Data and Privacy

Data retention procedures established

Customer data deleted upon leaving

Data classification policy established

View 5 more data and privacy controls

Sub-processors

Supabase

Database & Auth

Vercel

Cloud Hosting

Stripe

Payment Processing

PostHog

Analytics

Data Residency

Your data is stored and processed securely in the European Union. Our primary infrastructure is hosted in Ireland (EU), ensuring your data never leaves the EEA unless strictly necessary for specific sub-processing tasks governed by Standard Contractual Clauses (SCCs) or Data Privacy Framework (DPF) certifications.

🇮🇪 Ireland (Primary)🇧🇪 Belgium (AI)🇩🇪 Germany (Analytics)

View Sub-processors

Enterprise Agreements

For enterprise customers, we offer comprehensive legal agreements that ensure your compliance requirements are met. Our Data Processing Addendum (DPA) incorporates Standard Contractual Clauses approved by the European Commission.

Data Processing Addendum (DPA)

Business Associate Agreement (BAA) for HIPAA

Mutual Non-Disclosure Agreement (NDA)

Have Security Questions?

Our team is happy to answer any security or compliance questions. For enterprise customers, we can provide security questionnaire responses, custom DPAs, and BAAs.

Contact Security Team Legal Inquiries