Upchannel – Security & Data Protection
Our Commitment
At Upchannel, we take data protection and security seriously.
All our digital solutions are designed and hosted within the EU, and we continuously review our practices to ensure full compliance with the EU General Data Protection Regulation (GDPR) and modern security standards.
We act as data processor on behalf of our clients, processing only the data necessary to deliver our services — always according to the client’s documented instructions.
Hosting & Infrastructure
Upchannel uses secure cloud infrastructure located within the EU.
We primarily work with AWS and DeepOcean for hosting and data storage.
Upchannel aims to use cloud infrastructure powered by renewable energy whenever available.
Our primary hosting partners operate data centers within the EU and are committed to sustainability and ongoing improvements in energy efficiency.
All data is encrypted both in transit (TLS 1.2+) and at rest (AES-256), and all environments are protected by role-based access control and multi-factor authentication for administrative users.
Subprocessors
Upchannel uses a limited set of trusted service providers to deliver and maintain our solutions.
Each subprocessor operates under a GDPR-compliant Data Processing Addendum (DPA) and meets the same standards of security and confidentiality that we uphold.
| Type | Provider | Region | Purpose |
|---|---|---|---|
| Hosting & Database | AWS / DeepOcean | EU | Application hosting and data storage |
| Email Delivery | Mailjet / Brevo | EU | Transactional and notification emails |
| AI Service | Azure OpenAI / OpenAI (under SCCs) | EU / SCC | AI-assisted functionality |
| Backup & Monitoring | AWS / DeepOcean | EU | Daily backups and uptime monitoring |
Upchannel regularly reviews its subprocessors and updates this list as needed. Any future changes will maintain equivalent or higher levels of data protection.
Technical & Organisational Security Measures
We apply a consistent set of measures to ensure confidentiality, integrity, and availability of all data:
- Encryption in transit and at rest
- Role-based access control (RBAC)
- Multi-factor authentication (MFA) for admin access
- Automated daily backups with secure restore testing
- Regular patching and security updates
- Secure deletion of data after project completion
- Logging and monitoring of system access
Upchannel employees are bound by confidentiality and receive regular training on data protection and secure development practices.
Data Retention & Deletion
Personal data is retained only as long as required to deliver the contracted service.
When a client relationship ends, data is securely deleted or returned within 30 days unless otherwise required by law or contractual obligations.
Environmental and Ethical Responsibility
We believe that good technology should be both responsible and sustainable.
Upchannel continuously works to minimize the environmental footprint of our digital solutions and collaborates with partners that share this commitment.
Contact for Privacy & Data Protection
For questions about data protection, subprocessors, or our security measures, please contact:
support@upchannel.eu