Security
Hosting in Germany. Encrypted. GDPR-compliant.
Hosting & data residency
- ▸We host on European servers (Hetzner Cloud, Frankfurt am Main).
- ▸Databases (PostgreSQL 16) and object storage (S3-compatible, MinIO) are physically in Germany.
- ▸No replication into US regions. Backups stay in EU regions.
Encryption
- ▸TLS 1.3 for all connections. Strict-Transport-Security header active.
- ▸Database connections are encrypted-only.
- ▸Sensitive data (API keys, webhook secrets) encrypted at rest.
- ▸Passwords are handled via Clerk and never stored in plaintext.
Authentication
- ▸Clerk as auth provider — GDPR-compliant, sub-processor list on the privacy page.
- ▸Login via email magic link, Google, GitHub or OTP.
- ▸Optional: two-factor authentication (TOTP).
- ▸Org admins can revoke member sessions as needed.
Access control
- ▸Brand-membership matrix with roles (Viewer / Editor / Admin).
- ▸API keys with per-key scope and rate limit.
- ▸Audit log for critical actions (brand reassign, member add/remove, data export).
- ▸Org-admin privileges separated from brand-owner privileges.
Backups & recovery
- ▸Daily automated database backups, 30-day retention.
- ▸Point-in-time recovery available within 7 days.
- ▸Disaster-recovery drill tested quarterly.
Vulnerability handling
- ▸Dependabot for library updates, auto-merge for patch versions.
- ▸Quarterly external pen test (annual public report).
- ▸security@geonative.ai for responsible disclosure — we reply within 24 h.
What we don't do
- ▸No telemetry data to US-based providers.
- ▸No advertising trackers, no Google Analytics, no Facebook Pixel in the app.
- ▸No re-identification from aggregated measurement data.
- ▸No customer data shared with third parties outside our documented sub-processors.