Enterprise-Grade Security

Hosted on Hetzner dedicated infrastructure in Germany. All data stays within the European Union.

Daily automated backups with encryption at rest. 7-day retention with point-in-time recovery.

All data in transit is encrypted with TLS/SSL. No unencrypted connections accepted.

UFW firewall with restricted port access. Fail2ban monitors and blocks brute-force attempts.

Each organization's data is logically separated. Queries are scoped to your tenant at every layer.

Granular permissions system with owner, admin, HR manager, manager, and employee roles.

Authentication and sensitive endpoints are rate-limited to prevent brute-force and abuse.

CSV formula injection protection, parameterized queries, and strict input validation throughout.

Cross-origin requests are restricted to hrchronica.com. No third-party domain access.

Your data is yours. We never sell, share, or monetize customer data with third parties.

Data is processed only to deliver the features you use. Nothing more.

Export your data at any time. Request full deletion and we'll remove everything within 30 days.

Data Processing Agreement available on request for enterprise customers.

Built from day one with EU data protection requirements in mind.

All customer data is stored and processed within the European Union.

Ongoing security assessments and dependency auditing to maintain a strong posture.