Trust, by default.
Legal data is sensitive. We build Harmonity so that security, privacy, and compliance are part of the design from day one.
Four foundations
Data protection
Your data is yours — protected with least-privilege access and never used to train models.
Encryption & access
Encryption at rest and in transit, role-based access, and full audit logs.
KVKK & GDPR compliance
End-to-end compliance including notices, explicit consent, data subject requests, and İYS.
Infrastructure & resilience
EU-region hosting, regular backups, and incident response plans.
Our approach
Data protection & KVKK
We process personal data in line with KVKK and GDPR principles: purpose limitation, data minimization, and retention discipline.
We have built-in processes to handle data subject requests (access, rectification, erasure) and respond within statutory timeframes.
Infrastructure & hosting
Production data is hosted in the EU region (Stockholm). Encryption is the default at rest and in transit.
Resilience is ensured through regular backups, monitoring, and incident response plans.
Access & auditability
We apply role-based access control and the principle of least privilege. Critical operations are audit-logged.
Sub-processors are carefully selected and governed by contractual safeguards.
Our commitments
Your data is never used to train models.
Encryption at rest and in transit.
Least-privilege access.
KVKK/GDPR-compliant processes and data subject requests.
Regular backups and an incident response plan.
FAQ
Is my data used to train models?
No. Customer content is never used to train foundation models.
Where is data hosted?
Production data is hosted in the EU region (Stockholm).
How do I file a KVKK data subject request?
Email security@harmonity.ai or use the form on our privacy page. We respond within statutory timeframes.
Contact the security team
For questions about security, privacy, or compliance, reach our team directly.
security@harmonity.ai