Trust Center

Trust Center

Security is not an afterthought at ASTAS, it is the foundation. Below is how we handle your data, your privacy and compliance.

Encryption

AES-256 for data at rest and TLS 1.2+ for data in transit.

Data within the EU

Your data is stored and processed within the European Union.

Never trained on your data

We never use your data to train AI models.

Audit trail

Every action is traceable through a complete, immutable log.

Access control

Strict role-based access control and the principle of least privilege.

Human in control

Key decisions stay under human oversight (EU AI Act).

Compliance

ASTAS is GDPR-compliant. We work by the principles of privacy by design and data minimisation. Certifications such as ISO 27001 and SOC 2 are part of our roadmap.

Documents

Privacy policy Data processing agreement Subprocessors Responsible disclosure

Reporting a vulnerability?

See our responsible disclosure policy or email security@astas.ai.