TRUST
“Compliant by design, audited in practice.”
Strawbay is built for regulated European finance, and we make our posture easy to see. Here is where we stand on compliance, how we secure the platform, and how we keep it running.
Compliance
Where we stand on GDPR, EU data residency, DORA, ISO 27001, ISO 20022, PEPPOL and PSD2/PSD3, plus our compliance pack on request.
Security
EU hosting, per-customer isolation, MFA, minimal data and real-time monitoring. Security built into the platform.
What we can provide on request
The compliance pack
DPA, ICT Third-Party Provider Information Sheet (Register of Information data), DORA ICT Services Addendum, Incident Notification SLA, Exit and Transition Plan, Business Continuity and Disaster-Recovery summaries, and a penetration-test summary. Shared under NDA where needed.
