Yes. We employ state-of-the-art measures to ensure a solid level of protection. All personal data that we maintain on behalf of our customers is centralized and encrypted with encryption keys stored separately, which facilitates crypto shredding. Read more under “Encryption”.
We employ several strategies for securing our platform. In the unlikely event of a data breach, we will determine the scope and notify the affected customer immediately. Our development team will consider the incident top priority.
We do not transfer data to non-EU countries ourselves. The service is however available for our customers to use globally.
We are putting a lot of effort into developing a secure platform that is compliant with current laws and regulation. GDPR is no exception. We are constantly making sure that the underlying infrastructure is suitably equipped to meet the GDPR requirements including, but not limited to, the following:
- Right to be informed
- Right of access
- Right to be forgotten
- Only disclose personal information to the right person