Are you ISO 27001:2013 Certified?
- ISO-27001 certified data center
- External company conducts regular pen tests
- We are compliant to the EU General Data Protection Regulation (GDPR)
- We secure our service with technical and organizational measures (TOMs)
No, but our servers are in an ISO-27001-certified data center and our payment service providers are also ISO-certified. We are GDPR compliant, we are doing pen tests on a regular basis and our technical and organizational measures ensure a continuous and secure usage of our service. Find more details on our health page how we keep our service performant and up to date with the latest technologies.
ISO-27001 certified data center
All server infrastructure runs through our ISO-certified partner NextLayer. More information about NextLayer ISO-27001 certification.
External company conducts regular pen tests
We continuously evaluate the security level of the platform with penetration test throughout an external company. Moreover, we are part of the openbugbounty.org where anybody can report an vulnerabilities concerning our services. More details can be found on our Pen Test page.
We are compliant to the EU General Data Protection Regulation (GDPR)
Since the GDPR regulation became enforceable on May 25, 2018, our platform is fully GDPR compliant. The tracking of QR code scans is compliant with our service according to GDPR data protection, because no personal information is processed or stored.
Learn more about our GDPR compliancy
We secure our service with technical and organizational measures (TOMs)
All technical organizational measures (TOMs) for secure operation of our service like Data Protection Management, Physical Access Control, Control of Access to Processing Systems and much more can be found on our TOM page.