Privacy & Security

πŸ”’ Data sovereignty

Your data stays in the EU. We use a hybrid processing model: cloud APIs for complex tasks and local Mac mini infrastructure (Apple Silicon) for simpler operations. Our long-term trajectory is shifting to primarily local inference for complete data sovereignty.

πŸ›‘οΈ GDPR compliance

Integracio is GDPR-compliant by design. All data is encrypted at rest and in transit. We follow data minimization principles β€” we only collect what's necessary to operate your agents.

🏠 Local processing

We operate our own Mac mini fleet in the EU for local LLM inference. This means your sensitive data can be processed without ever leaving our infrastructure β€” no third-party API calls for eligible tasks.

πŸ” Encryption

  • TLS 1.3 for all data in transit
  • AES-256 encryption at rest
  • Client credentials stored in encrypted vaults
  • Zero-knowledge architecture for sensitive integrations

πŸ“‹ Access control

OTP-based authentication. No passwords to leak. Each agent operates with minimal required permissions for its integrations. You can revoke access to any integration at any time.

πŸ“ Infrastructure

  • Legal entity: sp. z o.o. (Poland, EU)
  • Cloud: Google Cloud Platform (EU region)
  • Local: Mac mini fleet (EU-based)
  • VPN: Tailscale mesh network

πŸ—ΊοΈ Compliance

βœ“GDPR compliance by design
βœ“Data encryption at rest (AES-256) and in transit (TLS 1.3)
βœ“EU data residency (all primary processing in EU)
βœ“Data Processing Agreement (DPA) available