Infrastructure and data centres

We know exactly where your data is

We process your data within the European Union only, across three countries and two independent European operators. The primary environment runs in Poland, and backups always sit outside it. We run the whole thing under our information security management system.

Map of Europe with our data centre locations.

Warsaw (WAW region)OVHcloud · Primary environment
Frankfurt regionOVHcloud · Redundancy
HelsinkiHetzner · Redundancy and backups
  • Poland

    Warsaw (WAW region)

    Provider
    OVHcloud
    Role in the architecture
    Primary environment

    Facility certifications

    • ISO 27001
    • ISO 50001
    • SOC 1/2/3
    • PCI DSS
  • Germany

    Frankfurt region

    Provider
    OVHcloud
    Role in the architecture
    Redundancy

    Facility certifications

    • ISO 27001
    • ISO 50001
    • SOC 1/2/3
  • Finland

    Helsinki

    Provider
    Hetzner
    Role in the architecture
    Redundancy and backups

    Facility certifications

    • ISO 27001:2022

Why geography matters

Spreading data across several countries and operators is not decoration. It is concrete resilience against failures and legal risk.

  • Geo-redundancy across three countries

    The primary environment, redundancy and backups run in three different European Union countries. Losing one location takes away neither your data nor your continuity.

  • Backups always outside the primary environment

    The backup goes to another country and onto another operator infrastructure, following the 3-2-1 rule. A single event cannot hit both the original and the copy.

  • Independent operators

    We use two independent European operators. A technical failure or a business decision by one of them does not stop your company.

  • Data sovereignty

    Processing is subject to GDPR and to Polish and EU law. No transfers outside the European Economic Area, no operators from outside the European Union.

Physical security of the facilities

The buildings are the responsibility of the operators: OVHcloud and Hetzner. Below is what they confirm in their public specifications.

  • The operator is the sole manager of the facilities. The buildings belong to OVHcloud and Hetzner, and they manage them. There is no shared management with third parties.
  • Access control with identification. Entry to the facilities is restricted and logged, with identification of people, in line with the operators public specifications.
  • 24/7 monitoring and security. The facilities are guarded around the clock, with video monitoring and physical security.
  • Redundant power. Power is duplicated, with UPS units and generators in case of a grid outage.
  • Redundant links. Multiple independent network links, so a failure of one telecom operator does not cut the facility off.
  • Fire protection. Early detection and suppression systems, integrated with emergency services, along with ISO 27001 certifications of the facilities.

The layer we add

The operator protects the building. We protect your environment and your data. That is a difference worth understanding.

  • Encryption in transit and in backups

    We encrypt data in transit and in backups, so even an intercepted medium gives nothing away.

  • Separation of client environments

    Each client works in a separated environment on Proxmox virtualisation. A neighbour cannot see your data or affect your performance.

  • 24/7 monitoring with alerting

    We watch the infrastructure around the clock. An unusual event is an alert to our team, not silence until morning.

  • Backup restore tests

    We regularly verify that data can actually be restored from the copies. A backup without a test is only an assumption.

  • Management aligned with ISO 27001 and NIS2

    We run the whole thing in an information security management system aligned with ISO/IEC 27001, that is our own certificate, not just the facilities, and with NIS2 requirements.

Frequently asked questions about data and locations

Where is my data physically located?

The primary environment runs in Poland, in the OVHcloud Warsaw region. Redundancy and backups sit in further European Union countries, with independent operators. We state the region and the operator and, for security reasons, do not disclose the exact addresses of rooms or racks.

Does my data leave the European Union?

No. Processing and copies happen within the European Union only, with European operators. There are no transfers outside the European Economic Area and no operators from outside the Union.

What happens if a whole location fails?

Data and copies live in several countries at once, so losing one location does not mean losing data. We restore operations from the remaining environments, according to the recovery parameters agreed with you (RPO and RTO), which we test regularly.

Who has access to the servers?

Only the operator has access to the buildings, following its access control procedures. Your environment and data are accessible to designated Jeton engineers, to the extent needed for support, with their actions logged. The scope of access is set in the contract.

Can the locations be written into the data processing agreement?

Yes. The countries and operators where we process data go into the data processing agreement. You have it in writing, not just as a statement on a website.

Can I choose the country of processing?

In most cases, yes. By default the primary environment is in Poland, but we adapt the layout of locations to your requirements, for example when your industry or contract calls for a specific country of processing within the Union.

Want to know where your data would sit?

Tell us about your setup. We will propose a layout of locations and a protection plan, and put the details in the data processing agreement.

  • 2 minutes, no commitment
  • You talk to an engineer, not a salesperson
  • No spam, one contact about your quote