Compliance
We understand that data compliance is non-negotiable. Here is how we meet the highest standards.
GDPR Compliance
We are fully compliant with the General Data Protection Regulation (GDPR). We provide tools for data portability, the right to be forgotten, and transparent data processing agreements.
SOC 2 Type II
We are currently in the observation period for SOC 2 Type II certification. Our infrastructure is built on AWS and Supabase, inheriting their world-class security controls.
Data Residency
Our primary data centers are located in the United States (US-East-1). For Enterprise customers, we offer data residency options in the EU (Frankfurt) and APAC (Singapore) to meet local regulatory requirements.
Sub-processors
We use a limited number of third-party sub-processors to provide our service. We maintain a current list of these partners and conduct regular security reviews of their practices.
- Supabase: Database and Authentication infrastructure
- Vercel: Hosting and Edge Network
- Stripe: Payment Processing
- Resend: Transactional Emails