Security & residency

EU-hosted by default. Plainly documented.

Documents in the EU. Servers in London. Email through an EU endpoint. Our DPA is on the website, not behind a sales call.

GDPR-clean UK ICO registered SOC 2 — in progress DPA on request

Documents at rest

AWS S3 (eu-west-2)

London region · AES-256 SSE-S3 · per-room key rotation

Application

AWS eu-west-2

London · multi-AZ · daily snapshot

Email delivery

EU endpoint

DKIM, SPF, DMARC out of the box

Erasure SLA

≤ 30 days

Or sooner on written request

status.beamprobe.com — all systems nominal 99.98% · last 90d

In detail

How we protect your data.

UK data residency

All documents, metadata, user data stored exclusively in AWS eu-west-2 (London). Operating under UK GDPR, registered with the ICO. Data never leaves the UK or EEA.

Encryption in transit and at rest

All traffic TLS 1.2+. Documents encrypted at rest with AES-256. Database backups encrypted. Presigned URLs expire after 15 minutes.

Access controls

Every link a unique cryptographic token. Links can be disabled, expired, password-protected. NDA-gating captures name, email, IP, timestamp before access. View counts and expiry enforced server-side.

Authentication

Passwords hashed with bcrypt (cost 12). Google OAuth supported. Email verification required before account activation. Reset tokens expire after 1 hour.

GDPR compliance

Right-to-erasure endpoint removes all personal data, documents, analytics. NDA records retained for legally required period, then purged. We never sell your data.

Bot filtering

Email security scanners follow links to scan for malware — inflating analytics. Beamprobe detects bots by user-agent and excludes them from view data automatically.

Security questions for due diligence?

Email security@beamprobe.com