Legal
Data Processing Agreement
Last updated 2026-06-01. Plain-language summary; full terms available on request. FR/EN.
Roles
For customer-controlled personal data, the customer is controller and Pontis is processor. A list of sub-processors is available on request.
Security measures
Encryption in transit and at rest, RBAC, argon2-hashed credentials, signed webhooks, and immutable audit/ledger enforced at the database.
Sub-processors
Regulated banking partners (Swan, Hypothekarbank Lenzburg), EU cloud infrastructure, and screening vendors. Customers are notified of material changes.
Data residency
Personal data is processed in the EU / Switzerland.