RentingPilot

TRUST CENTER

Security & privacy at RentingPilot

Last updated 2026-05-18

Your data lives in the European Union, on Cloudflare's network in Frankfurt and Amsterdam. We use Cloudflare D1 (SQLite at the edge) for tenant records, Cloudflare R2 for files, and Cloudflare Workers for the application logic. None of your customer data leaves the EU. We don't ship it to US data centres for "analytics," we don't train AI models on it, we don't sell it.

Only you and your team see your tenant data. Each shop runs in its own isolated tenant in the database — your customers, bookings and fleet are walled off from every other shop on the platform. RentingPilot staff (currently the founder) can access tenant data only to debug a specific support request you've raised, and only with your verbal or written consent on the same day.

Where your data lives

  • EU-only hosting — Cloudflare Frankfurt + Amsterdam edge
  • Database — Cloudflare D1 with default encryption at rest
  • Files — Cloudflare R2 for license photos & assets, AES-256 encryption
  • Daily backups with 30-day retention

Who can see it

  • You and your team, per the role you assign in Settings → Team
  • RentingPilot founder for live support requests you raise, with your consent
  • Never sold, never shared with third parties for marketing

What we do

  • EU-only hosting — Cloudflare Frankfurt + Amsterdam edge
  • Encryption at rest — Cloudflare D1 + R2 default encryption (AES-256)
  • Encryption in transit — TLS 1.3 on all endpoints, HSTS enforced
  • Tenant isolation — every shop's data is logically separated, no cross-tenant reads possible
  • GDPR-aligned — you are the data controller, we are the processor; DPA available on request
  • Audit log — every booking action is logged with timestamp + actor (Cara, you, your staff)
  • Right to export — your data is yours; you can export everything as JSON or CSV anytime
  • Right to delete — request deletion and we wipe your tenant within 30 days

What we don't do

  • We don't train AI models on your customer data
  • We don't sell, rent or share your data with third parties for marketing
  • We don't ship data to US servers
  • We don't ask your customers to create accounts
  • We don't store payment card details — Stripe handles that
  • We don't read your private WhatsApp messages outside Cara's scope

Honesty note: we're not SOC 2 or ISO 27001 certified yet. We're a small EU-based shop. What we DO have: Cloudflare's infrastructure certifications, GDPR compliance, EU data residency.

Sub-processors

We use a small number of trusted sub-processors to run the service:

  • Cloudflare (hosting, edge compute, DNS) — Frankfurt + Amsterdam
  • Stripe (payments) — EU entity, PCI-DSS Level 1
  • OpenAI / Anthropic (Cara's language model) — calls are ephemeral, no training on your data
  • Microsoft Azure Speech (voice/TTS, default) — EU region, ephemeral calls, no training
  • Retell AI (real-time voice calls, when enabled) — ephemeral session, no recording stored
  • Resend (transactional email) — EU region where available
  • Twilio / Meta WhatsApp (messaging delivery where enabled)

Full sub-processor list and DPA on request: [email protected].

Reporting a security issue

Found something? Email [email protected]. We respond within 24h. No bug bounty programme yet (we're small), but we'll thank you publicly if you allow it.

Need a signed DPA, sub-processor list, or security questionnaire? Email [email protected].