Our Technical Security Standard at Secure File Transfer

To ensure your data is protected at all times, we rely on state-of-the-art security and privacy measures. Operations are conducted exclusively in Germany – in accordance with GDPR requirements.

1. Hosting in Germany

Location : Hetzner Online Data Center in Nuremberg, ISO 27001 certified.
Data Storage : Exclusively in Germany, no transfer to third countries.

2. Encryption

Transport Encryption : All connections are made via TLS 1.3 (HTTPS).
End-to-End Encryption : Files are encrypted before transmission, so only sender and recipient can open them.
Key Security : No storage of plain text passwords, exclusively hashing with modern methods (e.g., Argon2/Bcrypt).

3. Access Control

Role Based Access Control (RBAC) for users and administrators.
Multi-Factor Authentication (MFA) optionally available.
Session management with automatic timeout.

4. Server-Level Security

Firewall & Intrusion Detection : Systems are continuously monitored.
Databases encrypted (at rest and in transit).
Regular updates & security patching (OS, frameworks, libraries).

5. Logging & Monitoring

Audit Logs : Every action (upload, download, login) is documented transparently.
Security monitoring with automatic alerts for suspicious activities.

6. Data Protection & GDPR

Data Processing Agreement (DPA) according to Art. 28 GDPR with Hetzner.
Privacy by Design & Default : Only the most necessary data is processed.
Data subject rights (access, deletion, etc.) can be implemented at any time.