Security
Security Features
- CSRF protection on all forms
- Rate limiting on API endpoints
- Security headers (HSTS, CSP, X-Frame-Options)
- Input validation and sanitization
Compliance
EU Data Protection
Sustainability Reporting
Cybersecurity Directive
Digital Operational Resilience
Data Processing
- All data stored in EU (Frankfurt region)
- DPAs signed with all sub-processors
- Retention policies aligned with regulations
AI Transparency
AI Providers
All AI providers have signed Data Processing Agreements (DPAs) and do not use your data for training.
AI Governance
EU AI Act Compliance
Risk Classification
Regtrue's AI features (Regtrue AI chat, document analysis, smart suggestions) are classified as limited risk under EU AI Act Art. 50 - AI systems that interact with natural persons.
Transparency Controls
EU AI Act Compliance Statement
Regtrue complies with Regulation (EU) 2024/1689 (EU AI Act). Our AI systems are designed with transparency, human oversight, and accountability as core principles. We do not deploy prohibited AI practices (Art. 5) and fulfill all transparency obligations for limited-risk AI systems (Art. 50). All AI-generated content is clearly labeled, and users maintain full control over AI suggestions.
Documents
Questions about security?
Our team is here to help. Contact us for security questionnaires, compliance documentation, or any other trust-related inquiries.