Privileged content deserves more than a checkbox.
Origo treats every document as material that may, one day, need to stand up in front of a counterparty, an auditor or a court. The defaults reflect that.
European data residency
All client content is stored in EU regions. No transatlantic data movement for storage. Sub-processors are contractually bound to EU hosting.
Encryption at rest and in transit
AES-256 at rest, TLS 1.3 in transit. Per-workspace encryption keys. Object-level encryption for documents in Vault.
Tenant isolation
Strict row-level security at the database layer. A workspace cannot read another workspace, ever, regardless of application bug or token scope.
No training on your data
Client content is never used to train foundation models. Inference only. Prompts and outputs are scoped to the originating workspace.
Qualified signatures
eIDAS-qualified signatures via Scrive. Signer identity, document hash and timestamp are anchored on Witniumchain.
Verifiable audit trail
Every state change emits a hash to Witniumchain. The trail is independently verifiable without trusting Witnium as a party.
GDPR-aligned by design. ISO 27001 and SOC 2 Type II audits scheduled for Phase 2. DPA available on request. Subprocessor list maintained at /legal/subprocessors.
Responsible disclosure: security@witnium.com. PGP key available on request.