Compliance

The Protocol App combines technical security with clear compliance processes. Data security, traceability, and legally compliant archiving are systematically integrated – for reliable and transparent documentation.

Certifications & Security Standards

Recognized standards and certifications of the storage infrastructure for trust and compliance.

ISO/IEC 27001 – Information Security Management

International standard for information security and risk management.

SOC 2 Type II – Security & Availability

Audited processes for data protection and system availability.

Tier III+ Data Center Standard

High fault tolerance and redundant infrastructure.

GDPR Compliance (EU Data Protection)

European data protection standards and defined storage regions.

Encryption in Transit and at Rest

Protection during transmission and at rest.

Data Residency & Region Control

Storage in defined regions according to requirements.

Archiving & Integrity

Audit-proof storage and technical verification of integrity.

Audit-proof S3 archiving

Stored audit-proof, versioned, and traceably documented.

MD5 checksums & integrity verification

Cryptographic checksums act as a digital fingerprint for integrity verification.

Retention period system

Individual retention periods per protocol type with automatic inactivation and support for deletion obligations.

Rights & Access

Granular permission control and privacy-aware management.

Role & user rights management

The system distinguishes between Admin and User roles with different access rights.

Intelligent data management

Structured data management across the entire lifecycle.

GDPR-compliant rights concept

Clear responsibilities to support the implementation of GDPR requirements.

Traceability & Signature

Transparent logging and tamper-resistant documentation.

Digital signature with timestamp

Simple digital signature including timestamp in accordance with eIDAS regulation.

Audit trail (activity log)

Important system actions are documented in a traceable manner.