Your data. Your code. Your rules.
Where your data lives, who controls the code, and what happens if we ever part ways — stated plainly. We mark what's true today and what's still being finalised.
Most operators ask for your data and your trust. We'd rather earn it — by writing down exactly what we hold, where, and what you keep. We won't claim a certificate we don't have.
Where it lives
Republic of Armenia
HQ and data-controller jurisdiction in Yerevan, under RA Law on Personal Data (HO-49-N). For EU/EEA guests we additionally apply GDPR standards.
- No forced US data transfers
- Local-law paths per market
Sovereign by design
Designed to run independently of US hyperscaler lock-in — to-be-finalised per deployment.
HTTPS, hardened — on this very site
TLS via auto-renewed certificates, HTTP→HTTPS, HSTS, nosniff and a strict Referrer-Policy are live right now. Verifiable, not promised.
Encrypted storage
Guest & operational data encrypted at rest — cipher & key management to be finalised.
Independent audit
We'll publish an independent security audit before scale. SOC 2 / ISO — planned, not yet held.
Your code, in escrow
Source held with an independent agent, by agreement — continuity if we ever fail to deliver.
If we ever part ways
Full data export
Your guest data, exported in a standard format — it was always yours.
Keep running
Escrow means you can keep operating the system — no naked licence.
No silent sharing
Data is never sold or shared with third parties without your consent.
Backup & recovery
A maintained backup policy — RTO/RPO targets to be finalised.