Trust
Data Privacy
Last updated: June 2026
How IOSYA approaches where your workspace data lives, European operations, and the boundary between your sources and our platform. This is a working template — approved infrastructure and compliance copy will replace it before launch.
Built for European sovereignty
IOSYA is designed for teams that need AI work to stay explainable, auditable, and anchored in European trust expectations — not scattered across disposable chats.
This page covers data location and operational boundaries. For how we handle personal data on the marketing site and in accounts, see the Privacy Policy in the site footer.
Where your data is processed
Workspace data is processed within a sovereign European hosting footprint aligned with IOSYA’s French operations.
Final region lists, provider names, and residency guarantees will be documented here once approved for public release.
Workspace boundary
Disk, operatives, and routines keep sources and evidence inside your workspace — tied to projects, roles, and review habits rather than exported to unrelated surfaces.
You choose which integrations to connect; connected channels only process what your team authorizes.
Governance and auditability
IOSYA treats trust as architecture:
- Explicit roles and review paths for delegated work.
- Evidence retention designed for teams that must explain outcomes.
- Export and reversibility treated as part of the product, not an afterthought.
Compliance posture
We align product design with GDPR and the EU AI Act where they apply to customer data and AI-assisted work.
Independent certifications such as SOC 2 are on the roadmap; until they are complete, we describe controls and intent rather than claiming badges we have not earned.
Questions
For data-location or sovereignty questions, email info@upgraide.me with the subject line “IOSYA data privacy”.
Enterprise teams can also use Request demo from the header to discuss deployment requirements.