GDPR EU AI Act EU-Hosted

Enterprise-grade Security. GDPR by Design.

Built for compliance officers, DPOs, and legal teams. Every layer is designed with data protection at its core.

Contact Security Team
GDPR Compliance

Full GDPR Compliance Across All 24 Roles

Every voice agent role is built with GDPR compliance as a core function, not an add-on.

Recording with Consent

Automatic consent collection before any call recording. Configurable per market.

Data Deletion on Request

Complete data erasure within 72 hours. Automated DSAR workflows.

Right to Access

Full data export capabilities in machine-readable format.

Data Hosting

EU-Only Data Hosting. No US Transfer.

All data processed and stored exclusively in EU data centers. Full data sovereignty.

Hetzner & Azure EU

Primary infrastructure on Hetzner (Germany) and Azure EU. ISO 27001 certified.

Encryption at Rest & in Transit

256-bit AES at rest. TLS 1.3 in transit. Zero plaintext exposure.

No US Data Transfer

Schrems II compliant. All processing within the EU.

AI Safety

Anti-Hallucination by Design

Every response is grounded in your verified knowledge base.

RAG-Based Responses

Retrieval-Augmented Generation ensures grounded answers.

Confidence Scoring

Real-time confidence assessment. Low confidence triggers escalation.

Escalation to Human

Automatic handoff when AI reaches knowledge boundaries.

Employee Privacy

Employee Data Protection

Special protections for internal-facing agent roles (M1-M10).

Works Council Compatible

Designed for Betriebsrat compliance in DACH markets.

Minimal Data Collection

Only strictly necessary data. No employee profiling.

Separate Data Handling

Employee data stored separately with stricter controls.

Global Compliance

Compliant in Every Market We Serve

One platform, market-specific compliance. We adapt to local data protection laws across all 28 markets.

GDPR

European Union — General Data Protection Regulation

revDSG

Switzerland — Revised Federal Act on Data Protection

UK GDPR

United Kingdom — UK GDPR

CCPA

United States — California Consumer Privacy Act

LGPD

Brazil — Lei Geral de Proteção de Dados

PDPL

Saudi Arabia — Personal Data Protection Law

Certifications

Certifications & Audits

Industry-standard certifications and regular third-party audits to verify our security posture.

Hetzner ISO 27001

Infrastructure hosted on ISO 27001 certified data centers

Stripe PCI

Payment processing through PCI DSS Level 1 certified Stripe

SOC 2 Type II

In progress — third-party audit of security controls

Have compliance questions?

Our security team is ready to support your due diligence process.

Contact Security Team
Book a Meeting