Safeguarding and protecting your data is our priority, which is why we only work with trusted subcontractors, who also comply with the GDPR. We make no concessions on security and can guarantee that Napta is and will always be GDPR compliant.
I talk to an expertWe host your data on a dedicated server located in Europe, where it is backed up daily. The databases are secure (encrypted at rest by AWS, not publicly accessible and segmented by client). Each of Napta's subsequent Subcontractors (AWS, Auth0, Postmark and Crisp) comply with the requirements of GDPR. Any suspicious activity is reported within 24 hours to the security referent.
You are (and will remain forever) the owner of the data integrated in Napta. We do not collect any data considered as 'sensitive' in the sense of the GDPR (gender, salary, Social Security number...). Napta users retain at all times and in all places the right of access, rectification, deletion and opposition, the right to limit processing, the right to data portability, the right not to be subject to an automated individual decision (including profiling).
The data is yours: you must be able to choose precisely who has access to it. This is why we offer you a system of access rights and very detailed authorizations to decide who can see, modify, extract or share each of the information stored in Napta. Moreover, the connection to our solution through the Auth0 solution allows a classic or SSO connection with a multi-factor authentication.