We stores all sensitive data encrypted and it is only decrypted inside our applications. Data will never be stored unencrypted to disk. We have strict access controls for who can access production data, and sensitive and confidential data is only retained as long as required for legal, regulatory and business requirements.
Our platform and company are compliant with General Data Protection Regulation (GDPR). This for example means that
- Users can, from within the system, export their data automatically.
- A user can, at any time, remove their data from the platform. We are required to keep certain personal data in accordance with other laws and regulations. For example, some data about a user’s order of a new subscription is stored for compliance with bookkeeping regulations.
Updated 10 months ago