Data Security

Data security at repleno: TLS encryption, data centers in Frankfurt, GDPR-compliant and complete audit logging.

repleno uses German servers, encrypted transmission and complete logging. GDPR-compliant and transparent.

German Servers

repleno hosts all data in Germany:

Server location: Frankfurt am Main
No data in the USA or other third countries
GDPR-compliant, no uncertainties through international data transfer

Encrypted Transmission

All data is transmitted encrypted:

HTTPS/TLS (encrypted connection, visible as the padlock icon in your browser)
Encrypted API communication
No unencrypted data in the network

Complete Logging

repleno logs all security-relevant actions:

Who created, edited or deleted items?
Who made which bookings and when?

These logs are unchangeable and viewable for admins.

Access Controls

repleno uses role-based access controls:

Admin: View and edit items, suppliers, projects, team and members
Employee: Read-only access for master data, plus scanning, withdrawals, goods receipts, returns and corrections

AI Assistant

repleno only forwards data to third parties when you actively interact with pleno, the AI chat assistant. Your message is transmitted to Mistral AI to generate the response. Mistral is based in the EU and processes data under GDPR. Message text is not stored in repleno.

repleno fulfills all GDPR requirements:

Privacy policy (transparent, understandable)
Right to information, deletion, correction
No transfer to third parties (except suppliers for orders and Mistral AI when actively using the AI assistant)

Updated: Apr 22, 2026