Security & permissions
Your data is safe. No compromises.
European hosting, encryption at every layer, role-based access and a full audit trail. We take care of security so you can focus on your clients.
14 days free · no credit card · GDPR compliant
EU Hosting & data sovereignty
Your client data never leaves Europe
All data — from contacts to invoices — is stored exclusively on servers within the European Union. No transfer to third countries, no hidden sub-processors outside the EU. That's not just a GDPR requirement; it's our principle.
- Servers in Amsterdam and Frankfurt (AWS EU)
- No data processing outside the EEA
- Transparent sub-processor list available on request
Encryption & data security
Encrypted at rest and in transit
Data at rest is protected with AES-256 encryption. Every connection runs over TLS 1.3 — no exceptions. Passwords are never stored: only bcrypt hashes. This means even a data breach causes minimal damage.
- AES-256 for data at rest, TLS 1.3 in transit
- Bcrypt-hashed passwords, never plaintext
- Automatic key rotation every 90 days
Role-based access control
Everyone sees exactly what they need to
Assign roles at organisation, team and record level. Decide who can view leads, edit invoices and export reports. Fine-grained permission management without technical overhead.
- Admin, manager, employee and client roles
- Record-level permissions per deal, project or client
- Team-based visibility for multiple departments
Audit logs & compliance
A complete audit trail for every action
Every login, every data change, every export is logged with a timestamp, user and IP address. Export logs for internal audits or regulatory requests. Essential for ISO trajectories and privacy audits.
- Immutable log of all user actions
- Filter by user, action or time period
- Export as CSV or via API for SIEM integration
Built in
Everything included — no extra licences
Enterprise security is not an expensive add-on. Every feature is built into the platform as standard.
SSO & SAML
Connect your identity provider (Okta, Azure AD, Google Workspace) for seamless Single Sign-On and centralised user management.
Daily backups
Automatic nightly backups, retained for 30 days. Point-in-time recovery is available on the Scale plan for maximum data safety.
Two-factor authentication
Enforce 2FA across your entire organisation — via authenticator app or SMS. Admins set the policy, not individual users.
Data Processing Agreement
Download and sign a GDPR-compliant DPA directly from your account settings. No waiting times, no legal fees. Ready for any privacy audit.
99.9% uptime SLA
Built on redundant infrastructure with automatic failover. Statuspage.io gives real-time visibility into availability and incidents.
Dedicated security support
On the Scale plan you have a dedicated contact for security questions, penetration test results and incident response.
"The GDPR compliance checklist was the deciding factor. The data processing agreement was sorted in 10 minutes and the audit logs give us visibility we never had in our old CRM."
Joost van der Berg
Director & DPO · Proximo Consulting
Explore more features
Teams & permissions
Organise your team with roles and departments.
Learn moreReporting
Live insight into revenue, pipeline and activity.
Learn moreAutomation
Workflows that run while you do other things.
Learn moreFrequently asked questions about security
All data is stored exclusively on AWS servers in the EU (Amsterdam and Frankfurt). There is no transfer to servers outside the European Economic Area.
In the product
See it in action