Data Protection & Compliance

Enterprise-grade security for your team's digital business cards

GDPR Compliant

GDPR Compliant

Full compliance with EU data privacy standards

CCPA Compliant

CCPA Compliant

Compliant with California privacy regulations

End-to-End Encryption

End-to-End Encryption

All data encrypted in transit with TLS 1.3

In Progress
SOC 2 Type II

SOC 2 Type II

Audited security controls and processes

How We Protect Your Data

Data Encryption

All data encrypted at rest (AES-256) and in transit (TLS 1.3). No unencrypted data storage.

Access Controls

Role-based access control, multi-factor authentication, and session management for all accounts.

Data Residency

Data hosted in EU-certified data centers. Choose your preferred region for compliance.

Right to Erasure

Complete data deletion on request. GDPR Article 17 right to be forgotten fully supported.

Data Portability

Export all your data at any time in standard formats. No vendor lock-in.

Breach Notification

72-hour breach notification as required by GDPR. Transparent incident communication.

Our Privacy Commitments

  • We never sell your data or your contacts' data to third parties
  • We collect only what's necessary to provide our service
  • You retain full ownership of all content you create
  • We provide complete transparency in our data processing
  • Regular third-party security audits
Read our Privacy PolicyRead our Terms of Service

Frequently Asked Questions

Is Lynqu GDPR compliant?

Yes. Lynqu fully complies with the EU General Data Protection Regulation. We process data under lawful bases, honor data subject rights including the right to erasure, and maintain a Data Processing Agreement (DPA) available upon request.

What data does Lynqu encrypt?

All data is encrypted at rest using AES-256 and in transit using TLS 1.3. This includes contact information, card designs, analytics data, and user credentials. Encryption keys are rotated automatically every 90 days.

Where is my data stored?

Lynqu data is hosted in EU-certified data centers operated by leading cloud providers. Enterprise customers can request specific data residency regions to meet local compliance requirements.

Can I delete all my organization's data?

Yes. Organization administrators can request complete data deletion at any time. We process deletion requests within 30 days as required by GDPR Article 17, and provide confirmation once complete.

Do you offer a Data Processing Agreement?

Yes. A standard DPA is available for all Business and Enterprise customers. Contact our sales team to request a signed DPA or to review our sub-processor list.

Ready to get started with enterprise security?

Get a Demo

Explore next

Team Management

Manage branded cards for your entire team from one dashboard.

Explore Team Management