Are you ISO 27001:2013 Certified?

No, but our servers are in an ISO-27001-certified data center and our payment service providers are also ISO-certified. We are GDPR compliant, we are doing pen tests on a regular basis and our technical and organizational measures ensure a continuous and secure usage of our service. Find more details on our health page how we keep our service performant and up to date with the latest technologies.

All server infrastructure runs through our ISO-certified partner Hetzner. More information about Hetzner ISO-27001 certification.

We continuously evaluate the security level of the platform with penetration test throughout an external company. Moreover, we are part of the openbugbounty.org where anybody can report an vulnerabilities concerning our services. More details can be found on our Pen Test page.

Since the GDPR regulation became enforceable on May 25, 2018, our platform is fully GDPR compliant. The tracking of QR code scans is compliant with our service according to GDPR data protection, because no personal information is processed or stored.

Learn more about our GDPR compliancy

All technical organizational measures (TOMs) for secure operation of our service like Data Protection Management, Physical Access Control, Control of Access to Processing Systems and much more can be found on our TOM page.