Trust Center

Made and hosted in Germany

Protecting your data is our priority – here you will find all documents and information about our processes and partners.

ISO-certified data center
DPA included

We place the highest value on responsible handling of sensitive data.

doccape was built to make working with secure data simpler – while treating data protection in innovative projects not as a blocker, but as a benchmark.

That's why we rely on modern technologies and carefully selected partners ourselves.

— The doccape team

Our commitment to secure data

Data in Germany

All servers run at Hetzner in Nuremberg and Falkenstein. ISO 27001-certified data centers. No US cloud for document processing.

Short retention

Uploaded documents are deleted after 24 hours by default. Extend in project settings. No use of your data for AI training.

No training on your data

Customer documents are not used for training or developing AI models.

Access & isolation

We use industry-standard, modern security mechanisms and limit system access as strictly as possible. We ensure strict tenant isolation and offer dedicated databases for the highest level of security.

Key documents at a glance

Legally binding texts and technical evidence for your compliance review.

Privacy policy

Our privacy policy describes in detail what data is processed, for what purpose, and where – covering doccape.de, the app, APIs, and all subdomains.

Privacy policyAs of May 2026 · Version 2.1

Data processing agreement (DPA)

The DPA sets out the specific obligations of scitlab as processor: your right to issue instructions, subprocessors engaged, and deletion duties under Art. 28 GDPR.

Data processing agreementAs of May 2026 · Version 1.1

Technical and organizational measures (TOM)

The TOMs describe the processes and procedures we apply to protect your data – from access controls and encryption to backup and incident response.

Technical and organizational measuresAs of May 2026 · Version 1.1

Terms of service (cloud)

Our terms govern the conditions for using doccape Cloud: scope of services, availability, liability limitations, notice periods, and payment terms.

Terms of serviceAs of May 2026 · Version 1.1

Security & privacy FAQ

Exclusively in Germany at Hetzner Online GmbH. Customer documents are not processed in US clouds.

We require confidentiality from all staff with system access and review security measures when material changes occur. Production servers run in ISO 27001-certified data centers in Germany.

Privacy contacts

For security and privacy questions, contact us at:

info@scitlab.de

Postal address

scitlab UG (haftungsbeschränkt) Beethovenstraße 69 73207 Plochingen, Germany

Data protection contact: Management of scitlab UG

Trust Center

Made and hosted in Germany

Protecting your data is our priority – here you will find all documents and information about our processes and partners.

ISO-certified data center
DPA included

We place the highest value on responsible handling of sensitive data.

doccape was built to make working with secure data simpler – while treating data protection in innovative projects not as a blocker, but as a benchmark.

That's why we rely on modern technologies and carefully selected partners ourselves.

— The doccape team

Our commitment to secure data

Data in Germany

All servers run at Hetzner in Nuremberg and Falkenstein. ISO 27001-certified data centers. No US cloud for document processing.

Short retention

Uploaded documents are deleted after 24 hours by default. Extend in project settings. No use of your data for AI training.

No training on your data

Customer documents are not used for training or developing AI models.

Access & isolation

Key documents at a glance

Legally binding texts and technical evidence for your compliance review.

Privacy policy

Our privacy policy describes in detail what data is processed, for what purpose, and where – covering doccape.de, the app, APIs, and all subdomains.

Privacy policyAs of May 2026 · Version 2.1

Data processing agreement (DPA)

The DPA sets out the specific obligations of scitlab as processor: your right to issue instructions, subprocessors engaged, and deletion duties under Art. 28 GDPR.

Data processing agreementAs of May 2026 · Version 1.1

Technical and organizational measures (TOM)

The TOMs describe the processes and procedures we apply to protect your data – from access controls and encryption to backup and incident response.

Technical and organizational measuresAs of May 2026 · Version 1.1

Terms of service (cloud)

Our terms govern the conditions for using doccape Cloud: scope of services, availability, liability limitations, notice periods, and payment terms.

Terms of serviceAs of May 2026 · Version 1.1

Security & privacy FAQ

Exclusively in Germany at Hetzner Online GmbH. Customer documents are not processed in US clouds.

We require confidentiality from all staff with system access and review security measures when material changes occur. Production servers run in ISO 27001-certified data centers in Germany.

Privacy contacts

For security and privacy questions, contact us at:

info@scitlab.de

Postal address

scitlab UG (haftungsbeschränkt) Beethovenstraße 69 73207 Plochingen, Germany

Data protection contact: Management of scitlab UG

Trust Center

Made and hosted in Germany

Protecting your data is our priority – here you will find all documents and information about our processes and partners.

ISO-certified data center
DPA included

We place the highest value on responsible handling of sensitive data.

doccape was built to make working with secure data simpler – while treating data protection in innovative projects not as a blocker, but as a benchmark.

That's why we rely on modern technologies and carefully selected partners ourselves.

— The doccape team

Our commitment to secure data

Data in Germany

All servers run at Hetzner in Nuremberg and Falkenstein. ISO 27001-certified data centers. No US cloud for document processing.

Short retention

Uploaded documents are deleted after 24 hours by default. Extend in project settings. No use of your data for AI training.

No training on your data

Customer documents are not used for training or developing AI models.

Access & isolation

Key documents at a glance

Legally binding texts and technical evidence for your compliance review.

Security & privacy FAQ

Exclusively in Germany at Hetzner Online GmbH. Customer documents are not processed in US clouds.

We require confidentiality from all staff with system access and review security measures when material changes occur. Production servers run in ISO 27001-certified data centers in Germany.

Privacy contacts

For security and privacy questions, contact us at:

info@scitlab.de

Postal address

scitlab UG (haftungsbeschränkt) Beethovenstraße 69 73207 Plochingen, Germany

Data protection contact: Management of scitlab UG

Trust Center

Our commitment to secure data

Data in Germany

Short retention

No training on your data

Access & isolation

Key documents at a glance

Privacy policy

Data processing agreement (DPA)

Technical and organizational measures (TOM)

Terms of service (cloud)

Security & privacy FAQ

Where is my data stored?

Who can see my documents?

How is data transmitted?

Is my data separated from other customers?

Do your AI models learn from my documents?

How long is data stored?

What happens when I cancel or delete my account?

Are there backups?

Do I need a DPA?

Privacy contacts

Trust Center

Our commitment to secure data

Data in Germany

Short retention

No training on your data

Access & isolation

Key documents at a glance

Privacy policy

Data processing agreement (DPA)

Technical and organizational measures (TOM)

Terms of service (cloud)

Security & privacy FAQ

Where is my data stored?

Who can see my documents?

How is data transmitted?

Is my data separated from other customers?

Do your AI models learn from my documents?

How long is data stored?

What happens when I cancel or delete my account?

Are there backups?

Do I need a DPA?

Privacy contacts

Trust Center

Our commitment to secure data

Data in Germany

Short retention

No training on your data

Access & isolation

Key documents at a glance

Privacy policy

Data processing agreement (DPA)

Technical and organizational measures (TOM)

Terms of service (cloud)

Security & privacy FAQ

Where is my data stored?

Who can see my documents?

How is data transmitted?

Is my data separated from other customers?

Do your AI models learn from my documents?

How long is data stored?

What happens when I cancel or delete my account?

Are there backups?

Do I need a DPA?

Privacy contacts