Trust Through Transparency
Every agent action is logged, auditable, and reversible. Your data stays in the EU. Self-host when you need full control.
EU-Based Infrastructure
Your data stays in Europe. Application hosting, database storage, email, and backups run on Hetzner data centers in Germany and Finland. No US transfers, no cross-Atlantic replication, no exposure to non-EU access requests.
Data Protection & Compliance
GDPR Compliant
Neuphlo complies with the EU General Data Protection Regulation. Personal data is processed only within the EU/EEA, on a clear lawful basis, and the artifacts your DPO needs are produced by the product itself rather than reconstructed per deal.
- Lawful, fair, transparent processing (Art. 5)
- Data minimization by design
- Right to access, correct, erase, and port your data
- DPA available on request
- Sub-processor list published and kept current
Security Practices
Industry-standard security measures applied at every layer — at rest, in transit, and across the agent pipeline.
- TLS 1.2+ in transit, encryption at rest
- Tamper-evident audit log on every agent action
- Role-based access control per workspace
- Session-only cookies — no advertising or tracking
- Breach-notification process per GDPR Art. 33
Third-Party Processors
We keep the sub-processor list short and EU-resident. Any addition is announced before it goes live and reflected here.
| Service | Purpose | Location | Privacy Link |
|---|---|---|---|
| Stripe | Payment processing | EU | stripe.com/privacy |
| Hetzner | Application hosting, delivery, database storage & email | EU (Germany) | hetzner.com/privacy |
Ready to See It in Action?
Start free. Every plan includes the full audit trail, EU hosting, and the self-host option.