1. Architecture
Our entire infrastructure is hosted in Switzerland at Infomaniak (datacenter CH-DC3, ISO 27001 certified). No user data is stored on servers outside of Switzerland.
Hosting
Infomaniak Jelastic — Switzerland (CH-DC3)
Database
PostgreSQL 16 — encrypted connections (TLS)
File Storage
Infomaniak S3 — Switzerland (CH-DC3)
Redis Cache
Redis 7 with TLS — cache and job queue
2. Encryption
- •HTTPS enforced on all communications (TLS 1.2+)
- •S3 storage encrypted server-side (AES-256)
- •Passwords hashed with bcrypt (unique salt)
- •Secure HttpOnly JWTs — no client-accessible tokens
3. Access Control
- •Secure authentication via NextAuth.js (credentials + Google OAuth)
- •Team-based roles: Owner, Admin, Member
- •IDOR protection on all admin APIs (session-level validation)
- •Rate limiting: 5 uploads/min per user (HTTP 429)
- •Automated image moderation before GPU processing (Sightengine)
4. Audit Logs
All sensitive actions are logged immutably.
- •Admin actions: logAdminAction() → AuditLog table (nFADP)
- •B2B team actions: logAuditEvent() → member management, API keys, subscriptions
- •Consents: each agreement is timestamped with IP in ConsentLog
5. Data Retention
We enforce a strict retention policy in compliance with data minimization principles.
| Data type | Retention period |
|---|---|
| Source photos (selfies) | 72 hours |
| Previews | 7 days |
| Final HD portraits | 30 days |
| LoRA models | 90 days |
| Account data | Until account deletion |
6. Regulatory Compliance
nFADP (Switzerland)
Compliant with the Swiss Federal Act on Data Protection (art. 5, 6, 19 nFADP)
GDPR (EU)
Compliant with the European regulation — legal bases, data subject rights, processing register
Biometric Data
Explicit consent required before any facial data processing (art. 5 para. 7 nFADP)
Consent
Mandatory checkbox with policy link — recorded in ConsentLog
7. Subprocessors
| Provider | Purpose | Location |
|---|---|---|
| Infomaniak | Hosting, S3 storage | 🇨🇭 Suisse (CH-DC3) |
| Neon.tech | PostgreSQL database | 🇪🇺 EU |
| Fal.ai | AI generation (GPU) | 🇪🇺 EU |
| Sightengine | Image moderation | 🇪🇺 EU |
| Stripe | Payments (PCI-DSS) | 🇪🇺 EU / 🇺🇸 US (PCI-DSS) |
| Brevo | Transactional emails | 🇪🇺 EU (France) |
| Sentry | Error monitoring | 🇪🇺 EU |