Legal

Data Processing Agreement

Last updated 2026-06-01. Plain-language summary; full terms available on request. FR/EN.

Roles

For customer-controlled personal data, the customer is controller and Pontis is processor. A list of sub-processors is available on request.

Security measures

Encryption in transit and at rest, RBAC, argon2-hashed credentials, signed webhooks, and immutable audit/ledger enforced at the database.

Sub-processors

Regulated banking partners (Swan, Hypothekarbank Lenzburg), EU cloud infrastructure, and screening vendors. Customers are notified of material changes.

Data residency

Personal data is processed in the EU / Switzerland.