Lettermint B.V. - Security Trust Center

Lettermint B.V. - Trust Center

Compliance and Security Portal for Lettermint B.V..

FAQ

Security and compliance answers about Lettermint B.V..

10 results

All our servers and databases are located within the European Union (specifically France and Germany) with OVH Group SA. We do not use US-based regions to ensure your data remains under EU jurisdiction.

Yes. We act as a Data Processor under GDPR. Our Data Processing Agreement (DPA) is available for all customers, covering how we handle, protect, and process personal data on your behalf.

We prioritise EU-based vendors. Any necessary global sub-processors are vetted for Data Privacy Framework compliance and undergo rigorous Transfer Impact Assessments (TIAs).

We enforce TLS 1.2 or 1.3 for all email transmissions. If a recipient server does not support TLS, we fallback to plaintext to ensure emails get delivered.

All persistent data, including subscriber lists and message logs, is encrypted using LUKS-based AES-256 at the storage layer.

Page 1 of 2

Framework overview

An overview of Lettermint B.V.'s compliance status across common frameworks like SOC 2, ISO 27001, ISO 9001, and GDPR.

23Policies

An up to date list of policies published internally by Lettermint B.V..

Data Classification & Handling

Privacy & Data-Subject Rights

Compliance & Regulatory Monitoring

Vendor & Third-Party Risk

Remote Access & BYOD

Secure Configuration & Hardening

Background Screening & On/Off-boarding

Vulnerability & Patch Management

Change & Release Management

Policy Management & Exception Handling

Secure Software Development Lifecycle

Information Security & Privacy Governance

Security & Privacy Awareness Training

Physical Security & Environmental

Lettermint B.V. - Trust Center

FAQ

Framework overview

23Policies

21Controls