Trust Centre

At Joinly and Koppelhet, trust is central. Our customers trust us with their most valuable data: personal data, company data and sensitive information. That is why we ensure that security, privacy and availability are not just promises, but are built into our product, our processes and our team.

GDPR

We fully comply with the requirements of the General Data Protection Regulation (GDPR).

  • Data is processed solely for clear and defined purposes.

  • Customers always retain insight and control over their data.

  • We have appointed a Data Protection Officer (DPO) and perform periodic audits.

ISO 27001

Our processes are designed in accordance with the international ISO 27001 standard for information security. This guarantees that we manage risks and security measures in a structured and controlled manner.

We are ISO27001 certified and are audited annually by Digitrust.

Pentest

Our applications are regularly tested by independent security experts through penetration testing.


Any findings are immediately resolved and integrated into our development process.


The most recent penetration test was conducted by Threadstone.

.

Security

We build security into every part of our infrastructure and application.


Encryption

  • Database: Databases are secured with SHA256 encryption, both at rest and in transit.

  • Application layer: Privacy-sensitive data is additionally hashed and encrypted (SHA256).

  • Communication: All data traffic is sent via SSL/TLS encryption.


Locations

All data and resources are hosted exclusively in Amsterdam (NL).


Secure Development

  • Secure development according to OWASP guidelines.

  • Code reviews and security checks in CI/CD pipelines.

  • Annual penetration testing by external security specialists (Threadstone).

  • We publish a security.txt file for responsible disclosure.

Availability

Our customers rely on continuous access. That is why we monitor our systems 24/7 and use a scalable cloud infrastructure.

Privacy and data

We are a processor of personal data and offer our customers a transparent data processing agreement (DPA). This defines how we handle personal data and how we comply with the GDPR.

Why this is important

We believe that trust is the foundation of collaboration. By making our processes, technology, and certifications transparent, we give customers the assurance that their data is processed securely, reliably, and in compliance with laws and regulations.

Browsing is free

Ready to integrate all your applications?

With Joinly, you turn identity & access management into a streamlined process. From HR data to Entra access: fully automated, secure, and scalable.

Browsing is free

Ready to integrate all your applications?

With Joinly, you turn identity & access management into a streamlined process. From HR data to Entra access: fully automated, secure, and scalable.

Browsing is free

Ready to integrate all your applications?

With Joinly, you turn identity & access management into a streamlined process. From HR data to Entra access: fully automated, secure, and scalable.