Nolt takes data protection seriously and has taken proactive steps to be fully compliant with the European Union General Data Protection Regulation (GDPR).
Nolt collects and stores data from its users (both its own customers and its customers’ end users):
Please note that Nolt uses Paddle to process payments. Therefore, we do not directly store customer payment information, such as credit card numbers, VAT numbers or billing addresses, on our servers.
To request a signed DPA, please reach out to us at hello@nolt.io.
We are committed to providing our users with data protection rights under GDPR:
User data is encrypted in transit with TLS (minimum TLS 1.2 or later) and at rest with industry standard AES-256.
All customer data is hosted on AWS (Amazon Web Services) behind a secure firewall (VPC) that blocks access from everywhere except designated servers on designated ports within the same AWS VPC.
We require all our data subprocessors (e.g. AWS) to maintain rigorous security standards (SOC2 and/or ISO 27001 certifications, where possible), and we complete vendor reviews annually.
Nolt uses third-party vendors and hosting partners, for hardware, software, networking, storage, and related technology we need to run Nolt. More information can be found here.
If you have any questions about this topic, please write to us at hello@nolt.io.
This article was published on April 28, 2023.
Accessibility statement
Learn about our commitment to accessibility.
Data subprocessors
Get to know the subprocessors we use to provide our services.
Privacy policy
Learn about how we keep your data safe.