Built for transport. Built to pass a security review.
EU-hosted by default. Role-based access. Audit trails on every record. Data export on demand. No proprietary lock-in.
Six things we never compromise on.
EU data residency
Hosted in EU data centres by default. Private-region and on-prem on request.
Role-based access
Granular permissions per module, per record. Multi-company support out of the box.
Audit trail
Every record change is tracked via Odoo's chatter. Who, what, when. Auditable.
Token-based APIs
Bearer-token auth, per-integration credentials, rotation on demand. No shared passwords.
DB neutralisation
Restoring a prod backup to staging automatically clears solver URLs, keys, and secrets.
Data export on demand
Your data, exportable in standard formats whenever you ask. No proprietary file lock.
EU-hosted, by default.
Shared instances run from our EU data centres. Private-region and fully on-prem deployments are scoped per customer. We never replicate customer data outside the EU without an explicit contractual choice.
- GDPR-compliant data handling
- Encrypted at rest and in transit
- Daily backups with point-in-time restore
- Data-processing agreement on request
What we ship, and what we are working toward.
In place today
- GDPR-aligned data handling
- EU-hosted infrastructure
- Encrypted backups, point-in-time restore
- Audit trail on every record
- Token rotation and role-based access
On the roadmap
- SOC 2 readiness
- ISO 27001 alignment
- Penetration-test reports on request
- SSO / SAML on request
Need a security questionnaire reviewed? Talk to our team.
Need our security pack?
We send a security questionnaire, data-flow diagram, and SLA on request. Usually within a business day.