Skip to main content
Stigg is designed with privacy and security at its core. We maintain SOC 1, SOC 2 Type II, and ISO 27001 certifications, reflecting our commitment to the highest standards of information security and data protection. While there is no formal EU certification process that allows a company to declare itself “GDPR certified,” Stigg provides functionality and safeguards that support GDPR compliance requirements:
  • Customer data archiving: when a customer is archived in Stigg, all Personal Identifiable Information (PII) previously stored is automatically nullified.
  • Flexible access: archiving can be done via the Stigg app UI or programmatically using the API and SDKs.
  • Data Processing Agreements (DPAs): we sign DPAs with customers to govern data processing activities in line with GDPR.
  • Privacy by design: our platform provides the controls needed to respect data subject rights and ensure lawful processing.
It is important to note that GDPR compliance is a shared responsibility between Stigg and our customers. Stigg provides the certifications, security practices, and platform features necessary to enable GDPR-aligned usage, while our customers remain responsible for how data is ingested, managed, and retained within their applications.
I