dbsof logodbsof logo
dbsof

Data Processing

dbsof is designed with data sovereignty and compliance at its core. This document outlines our approach to data processing and regulatory compliance.

Data Sovereignty

dbsof deployments are designed to respect data sovereignty requirements. Your data remains under your control, within your infrastructure, subject to your governance policies.

Compliance Framework

  • GDPR compliance for European deployments
  • SOC 2 Type II controls
  • ISO 27001 security management
  • Industry-specific compliance (HIPAA, FedRAMP, etc.)

Data Processing Principles

  • Purpose limitation: data is processed only for defined business purposes
  • Data minimisation: only necessary data is collected and retained
  • Storage limitation: data retention policies are enforced
  • Accuracy: data quality and lineage is maintained
  • Security: appropriate technical and organisational measures

Contact

For data processing enquiries, contact compliance@dbsof.com