IT asks: Where are Empatyzer's data hosted (EU) and how is customer data separated?

Empatyzer hosts all data on AWS servers physically located in the European Union and operates under strict EU regulations and contractual safeguards such as a Data Processing Agreement and completed Data Protection Impact Assessments. Customer data are kept in separate data stores to enforce multi-tenant separation and reduce the risk of cross-tenant leaks. Information is stored encrypted and is not shared with external parties; administrative access is limited to authorized personnel and fully logged to enable auditing and reconstruction of actions. Contracts and terms explicitly limit data use, including a prohibition on using customer data to train production models. Data retention and deletion follow legal requirements and customer requests; data can be removed after the contract ends. In the event of a security incident Empatyzer notifies affected customers as soon as possible and no later than five business days after detection, and cooperates in analysis and mitigation. Technical security relies on AWS-provided features together with internal access controls and logging, giving layered protection and compliance with EU rules. For IT teams deployment typically requires only network access or whitelisting, while data operations remain with the provider according to the agreement. This model lets companies use the tool without transferring raw individual results to employers and minimizes abuse risk while keeping aggregated organizational reports transparent. All practices are documented in legal and technical materials provided to clients before signing.

In short, Empatyzer hosts data in the EU on AWS, separates customers through dedicated encrypted stores and enforces strict access controls, with retention, deletion and incident notification procedures set out in the contract and compliant with EU law.