OPSKAP OS
Security & Compliance

Trust isn’t a feature.
It’s the foundation.

Security and GDPR are the base layer, not an upsell.

🇪🇺

GDPR by design

EU (Estonian) controller. Lawful bases, data-subject rights, and a full DPA for business customers.

🔒

Encryption & isolation

TLS in transit, row-level security, and private signed-URL file storage.

🪪

KYB / KYC ready

Registration and VAT fields, plus an optional identity-verification flow.

🗑

Your data, your call

Export everything as JSON and delete your account at any time.

🏛

Statutory retention

Invoicing records kept per the Estonian Accounting Act (Raamatupidamise seadus); the rest deleted after closure.

🤝

Vetted sub-processors

A short, transparent list under DPAs with EU SCC / UK IDTA safeguards.

Read the Privacy Policy, DPA and Terms.