Trust center
Where your data lives.
kirimana.io is hosted in the European Union. Below: every sub-processor we use, what they process, and where.
Sub-processors
| Provider | Purpose | Region |
|---|---|---|
| Fly.io | Hosting (app + Postgres) | Stockholm (arn) |
| Resend | Transactional email | Multi-region; EU available |
| Anthropic | AI inference (Kiri chat) | US; classification-gated |
| GoDaddy | Domain registrar (DNS only) | N/A — no data flows |
Data Processing Agreement
Available on request for Enterprise Support customers. Email enterprise@kirimana.io.
Attestations + reporting
- SOC 2 Type II — scoped under Professional Services for managed deployments
- ISO 27001 — scoped under Professional Services for managed deployments
- Built-in generators — Digital Operational Resilience Act (DORA), European Union Artificial Intelligence Act (EU AI Act), General Data Protection Regulation (GDPR)
Contact
/security for vulnerability disclosure · privacy@kirimana.io for privacy queries · enterprise@kirimana.io for DPA + procurement.