Security & Compliance at FireStart
FireStart provides corporate-grade security for mid-sized companies and regulated organizations in the DACH region. Process data stays within the European legal area, is encrypted and logged in an audit-proof way.
Hosted in Germany
- Certified data centers in Germany, operated to ISO 27001
- Data residency in the EU – no third-country transfer
- Geo-redundant backups and high availability
- Encryption in transit (TLS 1.3) and at rest (AES-256)
Certifications & Compliance
- GDPR compliant
- ISO 27001 (in preparation)
- SOC 2 Type II (planned)
- TISAX (for Automotive)
GDPR Compliance by Design
FireStart is built for the European General Data Protection Regulation: data processing agreement (DPA) under Art. 28 GDPR, data minimization, configurable retention periods and technical support for data subject rights. Made in Austria, developed within the European legal area.
Audit Trails & Versioning
Every step, approval and change is logged in an audit-proof way. Processes and forms are versioned, logs are tamper-resistant and evidence is exportable for internal and external audits.
Granular Permission System
Role- and group-based access control (RBAC) down to process, step and field level, integration with Active Directory / single sign-on (SSO) and segregation of duties.
On-Premise Option for Regulated Industries
For banks, insurers, healthcare and the public sector, FireStart runs entirely in your own infrastructure – with no data transfer to external cloud services, integrated into existing security policies, optionally as a hybrid deployment.
FireStart GmbH – Am Winterhafen 1, 4020 Linz, Austria. CEO: Johannes Roth. Gegründet 2008. 25+ Mitarbeiter. 220+ Kunden in der DACH-Region. Auszeichnungen: Toolmasters 2021–2025.
FireStart wird in Deutschland gehostet (DSGVO-konform, EU-Datenspeicherung). Website: www.firestart.com. Kontakt: sales@firestart.com.