Trust Center · All systems operational

Security you can take seriously

RecensioAI is built on enterprise-grade infrastructure. Your reviews, your customer data and your brand deserve grown-up security — not the standard SaaS promise.

security@recensioai.com Data Processing Agreement

99.99%

uptime

24/7

monitoring

<4h

incident response

🇪🇺

Frankfurt EU

Trusted by +125 businesses

SSL / TLS 1.3

GDPR

EU Hosted · Frankfurt

2FA

Stripe PCI-DSS

AES-256 at rest

Cloudflare Turnstile

DDoS & bot protection

SSL / TLS 1.3

GDPR

EU Hosted · Frankfurt

2FA

Stripe PCI-DSS

AES-256 at rest

Cloudflare Turnstile

DDoS & bot protection

SSL / TLS 1.3

GDPR

EU Hosted · Frankfurt

2FA

Stripe PCI-DSS

AES-256 at rest

Cloudflare Turnstile

DDoS & bot protection

Foundations

The six pillars

The foundations everything we build rests on.

Encryption

TLS 1.3 in transit. AES-256 at rest for databases and backups.

Active

EU hosting

All data in EU data centers (Frankfurt). No transfers outside the EU.

Active

Access control

2FA for all employees. Least-privilege RBAC. SSO via Google.

Active

Row-Level Security

Database-layer isolation. Your data is technically unreachable to others.

Active

Audit logging

All sensitive actions logged and retained for forensic review.

Active

Penetration testing

Annual third-party pentests + continuous dependency scans.

Active

Bot & spam protection

Cloudflare Turnstile on all public forms. Invisible to humans, brutal on bots.

Active

Attack protection

Rate limiting, HTML escaping, DDoS mitigation via Cloudflare and input validation on every endpoint.

Active

Architecture

How your data flows through our system

End-to-end encrypted. Never leaves the EU.

Browser

TLS 1.3

EU Edge

Frankfurt

RLS Database

AES-256

Encrypted Backup

30d retention

Encryption

TLS 1.3 + AES-256

Location

Frankfurt, DE

Isolation

Row-Level Security

Backups

Daily · 30d

Compliance

Certifications & frameworks

Active

GDPR / AVG

Fully compliant. DPA on request.

In progress

ISO 27001

In progress via our hosting partners.

Planned

SOC 2 Type II

Roadmap 2026.

Active

PCI-DSS

No card data stored. Handled by Stripe (PCI Level 1).

ops.recensioai

Operational practices

Live discipline, not just on paper.

~/status

$ status --all

✓ uptime ............ 99.99%

✓ tls ............... 1.3

✓ region ............ eu-frankfurt

✓ rls ............... enforced

✓ backups ........... daily

✓ monitoring ........ 24/7

$ _

Secrets in vault — never in code or logs.

Mandatory code review on every change.

Automatic backups, daily, 30-day retention.

Incident response within 4 hours, 24/7 monitoring.

Zero-trust network model for internal tools.

Deletion requests processed within 30 days.

Responsible disclosure

Found a vulnerability? Send details to security@recensioai.com. We respond within 48 hours and reward serious findings.

SLA: response within 48 hours

Report a vulnerability

Hosted in 🇪🇺 FrankfurtEnterprise-grade infrastructureGDPR · TLS 1.3 · AES-256