Compliance, ready to review

Built for EU GDPR and UK GDPR. Amaigo is the data processor; you are the controller. Everything your DPO needs to sign off, in one place, with no gated portal.

Personal data is hosted in the EU (application and database in Amsterdam, site in Frankfurt). Free-text chat is redacted before AI processing, and the AI provider is contractually barred from training on it.

Please note. These are GDPR-aligned templates and must be reviewed by a qualified data-protection lawyer or DPO before commercial reliance. Not legal advice.

Stay informed of changes

Every document is versioned; the change log is the canonical record, and clients get 30 days' advance email notice of sub-processor changes.

Subscribe to sub-processor updates

Certification roadmap

We do not yet hold SOC 2, ISO 27001 or Cyber Essentials; they are on the roadmap as the platform matures. In the meantime the security questionnaire pre-answers the due-diligence questions those reports cover. Every document here prints cleanly to PDF for your records.