Security & Trust
Your data stays in the EU, encrypted at rest and in transit. We built Peritiq with privacy as a foundation, not an afterthought.
Data Residency
All data is stored on servers in Frankfurt, Germany. Nothing leaves the EU. No US data transfers, no transatlantic routing.
LiveGDPR Compliance
Peritiq is built GDPR-first. We collect only what we need, process with a legal basis, and offer a Data Processing Agreement (DPA) on request for business customers.
LiveEncryption
Data at rest is encrypted with AES-256. All traffic in transit uses TLS 1.3. Database connections are encrypted end-to-end.
LiveAuthentication
Passwords are hashed with bcrypt and never stored in plain text. Session tokens are rotated on login. SSO integration is on our roadmap.
LiveData Isolation
Peritiq uses multi-tenant architecture with strict logical isolation. Each company can only access its own data. Cross-tenant access is impossible by design.
LiveBlind Voting Privacy
Votes in Peritiq are anonymous by design. Not even workspace admins can see who voted what. This removes bias and ensures honest input.
LiveNo Tracking, No CDNs
We self-host all fonts and assets. No Google Fonts, no external CDNs, no third-party tracking scripts. Your visitors stay invisible to big tech.
LiveData Retention & Portability
You control your data. Export it anytime, request deletion under your right to erasure, or close your account and we wipe everything.
LiveSOC 2 Certification
We are working toward SOC 2 Type II certification. This page will be updated when the audit is complete.
In ProgressSub-Processors
We work with a small number of carefully vetted third-party providers. Each one is selected for its compliance posture and data handling practices.
Questions or Concerns?
If you have questions about our security practices, need a DPA, or want to report a vulnerability, reach out to our security team.
mail security@peritiq.com