Skip to main content
itellico.ai
Start Free
Trust & Security

Your data is safe
with us.

GDPR workflows, EU/DACH focus, Trust Center, retention rules, and AI Act readiness for demanding enterprise requirements.

GDPR
SSL/TLS
EU Data Centers
Built in Europe
itellicoAI Trust Center — public compliance surface with retention, audit, and data export controls
Compliance

Secure and compliant.

GDPR Compliant

Full EU data protection compliance.

  • Data processing agreements
  • Right to deletion
  • Data portability
  • Retention rules
  • Lawful basis documentation
GDPR Compliant

EU AI Act Ready

Transparent AI decision-making.

  • Risk assessment
  • Human oversight
  • Documentation
  • Bias monitoring
EU AI Act Ready

SSL/TLS Encrypted

Bank-level encryption everywhere.

  • TLS 1.3 in transit
  • AES-256 at rest
  • End-to-end encryption
  • Regular key rotation
SSL/TLS Encrypted

Built in Europe

European company, European values.

  • Austrian company (itellico AI GmbH)
  • Strong EU/DACH focus
  • European privacy standards
  • 25+ years in Europe
Built in Europe
Data Flows

GDPR-compliant data flows in Europe.

itellicoAI documents data flows in the implementation plan, operates with GDPR-compliant processes, and reviews customer-approved integrations separately.

Data is encrypted at rest using AES-256 and in transit using TLS 1.3. Access is restricted by role-based controls, and all operations are logged for audit purposes.

EU/DACH focus

EU/DACH Focus

Europe and DACH oriented

End-to-end encryption

At rest and in transit

Regular penetration testing

Quarterly by third party

Retention rules

Documented per workflow

Security

How we protect your data.

Encryption at rest

All stored data encrypted with AES-256, the same standard used by governments and banks.

Encryption in transit

All data transmitted over TLS 1.3, ensuring secure communication between every endpoint.

Configurable retention

Retention rules for conversation data, tasks, Quality Studio issues, exports, and deletion workflows are planned per workflow.

Continuous security monitoring

24/7 infrastructure monitoring with real-time alerting for security events and availability.

Role-based access control

Granular permissions ensure team members only access what they need. No more, no less.

Automated threat detection

Real-time monitoring and alerting flags suspicious activity before it becomes a problem.

AI Ethics

Responsible AI.

We believe AI should be transparent, fair, and accountable. Our platform is designed with ethical guardrails from the ground up - so you can deploy AI voice agents with confidence.

  • No training on customer data
  • Explainable AI decisions
  • Human oversight always available
  • Continuous bias monitoring

Our AI commitment

Customer data is never used to train or fine-tune our models. Every AI decision can be explained and audited. Human oversight is always available, and we continuously monitor for bias across all interactions.

Common Questions

Questions,
answered.

How is my data processed?

We operate with GDPR-compliant processes and a strong EU/DACH focus. If a customer approves external integrations, we review and document that data flow in the implementation plan.

Do you train AI on my data?

No. Customer data is never used for model training. Your conversations, recordings, and business data remain exclusively yours. Our AI models are trained on separate, licensed datasets.

Can I delete my data?

Yes. We fully support your GDPR right to deletion. You can request complete removal of all your data at any time, and we process deletion requests within 30 days as required by law.

How do you handle security incidents?

We have a dedicated incident response team and notify affected customers within 24 hours of any confirmed breach. Our response process includes containment, investigation, remediation, and a full post-incident report.

Do you offer a DPA?

Yes. A standard Data Processing Agreement is available on request. For enterprise customers, we also support custom DPA terms reviewed by your legal team.

How does data retention work?

Retention is planned per workflow: conversation history, recordings, transcripts, tasks, Quality Studio issues, and API logs can have different requirements. We document the rules before go-live and configure deletion, export, and access accordingly.

Need more details?

Request our full security whitepaper or schedule a call with our security team. We are happy to answer any compliance or data protection questions.

Response within 24 hours · DPA available on request
Trust Center | itellico.ai | itellicoAI