Data Security
Data protection and data security are top priority at convaise and are central to all our products and services.
EU Hosting & Infrastructure
We operate our servers exclusively in certified data centers of Microsoft and Telekom in Germany and the EU.
Data processed by us is always encrypted:
- AES-256 for data at rest
- SSL/TLS for data transfers
GDPR-Compliant AI Chatbot
All convaise products are GDPR compliant. We consistently maintain data processing agreements (DPA) with all our service providers and have implemented processes for exercising data subject rights.
We provide the following data protection documents for our customer products:
- Data Processing Agreement (DPA)
- Technical and Organizational Measures (TOMs)
- Technologies
AI & Language Models (LLMs)
Our products use our own AI models as well as large language models from respective providers (OpenAI, Anthropic, Google, Mistral, Aleph Alpha etc.).
- All models are operated 100% in the EU
- No training of models with product data
- All models operate stateless, so no data is stored long-term
EU AI Act Compliance
All convaise products are designed for EU AI Act compliance and built to meet European regulatory standards.
- Transparency obligations under Article 50: Users are always informed that they are interacting with an AI system
- Risk management: Continuous assessment and mitigation of AI-related risks
- Technical documentation and traceability of all AI systems
Our Principles
We follow central principles in all our products and services:
- Data minimization: Only absolutely necessary data is collected and deleted as quickly as possible
- Privacy by Design: Data protection is an integral part of our product development
- Access rights and resources for this access are treated with particular care