The General Data Protection Regulation (GDPR) places specific requirements on cloud service providers. Here is an overview of what you need to know.
Data residency
GDPR requires that personal data of EU citizens is processed in compliance with the regulation. OnlineFleska operates data centers in Prague and Frankfurt — all data stays exclusively within the European Union.
Data processing agreement
As a data processor, we provide a Data Processing Agreement (DPA) to all customers who process personal data on our services.
Technical measures
- Data encryption — data encrypted at rest (AES-256) and in transit (TLS 1.3).
- Access control — strict RBAC with audit logging.
- Backups — regular backups with restore capability.
- Monitoring — 24/7 infrastructure monitoring.