Security & Privacy

All Blina infrastructure is hosted in Germany at a certified provider. No data leaves the European Union. GDPR compliance from EU jurisdiction.

Every customer has its own fully isolated data space. One customer's data can never be accessed by another, even by accident. Isolation is enforced at the database level with certified security mechanisms.

For AI features Blina uses selected third-party providers (OpenAI, Anthropic, Google) via their enterprise APIs under Data Processing Agreements. The full list of sub-processors, purposes, legal bases and data transfers is in our DPA.

You stay in control: from the SuperAdmin panel → RAG section you can enable or disable AI and choose which modules and which data are indexed and shared with the AI provider. Nothing is sent without your consent.

For stricter requirements, the on-premise option keeps every AI computation on the customer's own server, with no external transfer.

You configure your own business email server and send from your own domain. Blina does not centralize the flow and never sees your credentials — they are encrypted. Send history is available inside Blina with audit-friendly export.

Every file uploaded to Blina is automatically scanned by an open-source antivirus engine with daily-updated definitions. Infected files are blocked before being saved or shared with other tenant users.

Your data is backed up daily, with multiple copies kept in European territory. Restore procedures are tested periodically.

Protected login, optional two-factor authentication via email, fine-grained role and module permissions. Every important access and change is recorded in an immutable audit log available to administrators.

For organizations with stricter regulatory needs, Blina is available as a self-hosted installation. In this mode data never leaves your network, and all features — including AI — can run locally.

For Legal, Healthcare and Finance customers we provide dedicated documentation, data processing agreements and additional contractual clauses. Contact us to receive the full dossier.