Security
Your data is secure
Data residency EU
Data processed in the EU — on your infrastructure or in Azure West Europe. You choose where.
Single-tenant
Your data isolated from other clients
Encryption
AES-256 (at rest) + TLS 1.3 (in transit)
Access control
Roles, permissions, MFA
Backup
Automatic, RPO <1h
Incident procedure
Notification within <24h
Every AI decision is auditable
Every AI decision is logged: what went in, what came out, why, and with what level of confidence. Full history available in one place.
You can replay every decision — "show me why invoice #123 was posted to account 402".
AI explains its decisions in plain language, not technical jargon. Understandable for the CFO, not just the CTO.
Change history — you know which model made the decision and when. Full traceability.
AI operates according to your rules
You do not give up control. You define the policies:
Business rules
Invoice above 10 000 EUR → always requires manager approval
Confidence thresholds
If AI is not >90% confident → escalate to a human
Human-in-the-loop
Configurable override at every stage
Limits and escalations
Who approves what, when, and why
EU AI Act Ready
From 2 August 2026, the EU AI Act requirements for high-risk systems become mandatory. Non-compliance may result in fines of up to 35 mln EUR or 7% of turnover. Our solutions have all required elements built in.
Risk classification
Risk classification according to the EU AI Act. AI Matchmaker = HIGH-RISK (Annex III, recruitment).
Transparency
Explainability of AI decisions — in plain language, not technical jargon.
Human oversight
Configurable human oversight at every stage of the process.
Data governance
EU residency, retention, data minimisation — built into the architecture.
Technical documentation
Complete system documentation — architecture, models, training data.
Record keeping
Audit trail of every AI decision — who, what, when, why.
Post-market monitoring
Continuous quality monitoring, drift detection, alerts.
Full GDPR compliance
We process personal data in compliance with GDPR. Every aspect of data protection is built into our solutions — not bolted on at the end.
Data retention
Configurable per client — you decide how long we store data.
Right to be forgotten
Full implementation — data deletion on request, with no exceptions.
Data minimisation
We process only what is necessary to complete the task.
DPA
Data processing agreement — ready to sign.
Anonymisation
Data in reports and analytics is anonymised.
List of subprocessors
Transparent list of processors — available on request.
Penetration testing
Regular security audits and infrastructure penetration tests.
Correct decisions (accuracy)
Decision response time
Availability (uptime)
Critical bugfix
Security is not an add-on
Security is built into every stage — from architecture to production monitoring.
Agent architecture
Model-agnostic, observability, audit trail built into the architecture. Not bolted on at the end. → Learn more on the Technology page
Implementation methodology
Security is phase 3 of 6 in our methodology. GDPR, EU AI Act, encryption — from day one of the project. → Learn more on the How to Automate page
Ready to speed up your business?
Schedule a free consultation with our expert and find out in less than 30 minutes: