At Epixet Technologies, we build security, privacy, and reliability into every layer of our platform. Enterprise-grade protection without compromising user experience.
Fully compliant with Nigeria Data Protection Act 2023 and GAID 2025.
Data protection measures aligned with EU General Data Protection Regulation.
Payment processing via PCI DSS Level 1 compliant partners (Flutterwave, Paystack).
In progress — auditing for SOC 2 compliance in 2026.
AES-256 encryption for data at rest. TLS 1.2+ for all data in transit.
Role-based access control (RBAC) with multi-factor authentication support.
Logical separation ensures Tenant data is never accessible by other Tenants.
Automated daily backups with 90-day retention for disaster recovery.
Regular penetration testing and automated vulnerability assessments.
Real-time security monitoring and incident response protocols.
99.9% uptime commitment for our multi-tenant cloud environment. Scheduled maintenance communicated 48 hours in advance.
When a new version is deployed, users choose when to reload — no forced interruptions. Continue working or update immediately.
We use trusted third-party providers to deliver the Epixet BOS platform. Each sub-processor is bound by data protection obligations consistent with our DPA.
| Sub-processor | Service | Data Processed | Location |
|---|---|---|---|
| Hetzner Online GmbH | Physical infrastructure (bare-metal servers) | All platform data | Helsinki, Finland |
| Truehost Cloud | Management layer / reseller | Management metadata | Kenya / Nigeria |
| AWS CloudFront | Content Delivery Network (CDN) | IP addresses, request metadata | Global |
| Cloudflare, Inc. | CDN, DDoS protection, DNS proxy | IP addresses, security metadata | Global |
| Backblaze, Inc. | File & object storage | User-uploaded files | Amsterdam, Netherlands |
| Flutterwave / Paystack | Payment processing | Payment details (PCI DSS) | Nigeria, US, Uganda |
| Zoho Corporation | Transactional email | Names, email addresses | Global |
| Google LLC (Analytics) | Usage analytics (anonymized) | Anonymized usage data | Global |
For the complete legal Annex B, please refer to our Terms of Use (Part III – DPA).
Your data is stored on servers located in Helsinki, Finland (Hetzner Online GmbH data center).
Yes. AES-256 encryption for data at rest. TLS 1.2+ for all data in transit.
Yes. A DPA is available as Part III of our Terms of Use. Contact us for a signed copy.
Email our security team at security@epixet.com. We practice responsible disclosure.
Yes. Our data protection measures are aligned with GDPR requirements, and we offer a DPA for EU customers.
For the duration of your active subscription, plus up to 90 days post-termination unless deletion is requested.
Contact our security team or Data Protection Officer (DPO) directly.
Security Team: security@epixet.com
DPO (Data Protection Officer): dpo@epixet.com
Epixet Technologies provides Epixet Business Operating System (BOS) — a multi-tenant SaaS platform for HR, CRM, project management, and operations — plus custom software development for unique business needs.
