Frequently asked questions
Short answers on hosting, compliance, AI, and contacts.
Where is my data stored?
EU customer data stays in the EU: application data in Amsterdam, authentication data in Frankfurt. Data is encrypted in transit and at rest.
Is AUVY GDPR compliant?
Yes. Subprocessors are listed on this site, and a DPA is available on request. Exercise data subject rights via privacy@auvy.ai.
What certifications does AUVY have?
SOC 2 Type II and ISO 27001 are in progress. We do not claim certifications we have not received.
How does AUVY use AI with customer data?
AI runs scoped to your workspace via managed production model endpoints in the EU. Only the composed context for each turn crosses to model providers; your workspace content stays in your tenant. Your data is never used to train foundation models.
Which provider handles speech-to-text?
Gladia SAS (EU, France) is the speech-to-text subprocessor for voice-enabled features. See the subprocessors register for data categories and DPA.
Which terms apply to me — business or consumer?
Geschäftskunden (B2B) use the business terms; Privatkunden (B2C, § 13 BGB) use the consumer terms. Both are listed under Resources with English and German versions.
Terms (Geschäftskunden) → Terms (Privatkunden) → All legal documents →
Who do I contact?
Security: security@auvy.ai. Privacy: privacy@auvy.ai. Support: support@auvy.ai.