-
Introduction
-
Getting Started
- First Login
- Dashboard
- Navigation
- User Profile
-
Administration
- User Management
- Tenant Settings
- Activity Log
-
Risk Management
- Risks
- Risk Assessments
- Threats
- Incidents
- Findings
-
Control Management
- Controls
- Control Objectives
- Effectiveness Reports
-
Tasks
- Task Management
-
Compliance
- References
- Requirements
- Requirement Groups
- Evidence
-
Assessments
- Baselines
- Challenges
-
Organization & Assets
- Legal Entities
- Locations
- Teams
- Persons
- IT Assets
- Information Assets
- Physical Assets
- Products
- Processes
- Capabilities
- Third Parties
- Engagements
- Scope Groups
-
Blueprints
- Blueprints
-
Structures
- Standards
- Domains
- Categories
- Projects
- Assurances
-
Compliance ID
- Overview
- General Settings
- VUCA Score Sharing
- Control Sharing
- Requirement Sharing
- Assurance Sharing
- News & FAQ
- Access Management
- Subscriber Management
- The Public ID Page
Introduction
European Infrastructure
Our Commitment
vucavoid runs entirely on European infrastructure. Every company in our supply chain is headquartered in Europe. Your data never leaves European data centers.
This is a deliberate choice, not an accident.
Why This Matters
The European technology ecosystem is mature, innovative, and capable of powering world-class software. We believe European companies should have the option to run their GRC operations on infrastructure that shares their regulatory context and business values.
By choosing European providers:
- Data residency is guaranteed by corporate structure, not just contractual clauses
- Regulatory alignment means our providers operate under strong European data protection frameworks
- No third-country transfer risks that complicate your own compliance posture
- Economic investment stays within the European technology ecosystem
Our Infrastructure Stack
| Service | Provider | Country |
|---|---|---|
| Application hosting | Hetzner | Germany |
| Database hosting | Hetzner | Germany |
| Transactional email | Scaleway | France |
| Payment processing | Paddle | United Kingdom |
| Status & monitoring | Oh Dear | Belgium |
Your Data Stays Yours
Beyond infrastructure choices, we maintain a strict policy: customer data is never shared with third parties outside of what's required for development and operations. No analytics vendors mining your GRC data. No AI training on your risk assessments. No "partners" with access to your compliance posture.
The providers listed above receive only the data necessary to deliver their specific service. Your GRC content stays in vucavoid.
What This Means for You
If you're evaluating GRC platforms, you won't need to conduct Schrems II transfer impact assessments for vucavoid. You won't need to negotiate Standard Contractual Clauses with providers in jurisdictions with conflicting data access laws. Your data stays in Europe because our entire stack stays in Europe.
For organizations outside Europe, you can still use vucavoid. Your data will be processed and stored within European data centers, which many international organizations prefer for strong data protection standards.
Not a Marketing Claim
This page isn't marketing. It's a statement of architecture. We regularly audit our supply chain to ensure compliance with this commitment. If a provider we depend on moves operations outside Europe, we migrate to an alternative.
European technology is ready. We use it.
Related Resources
- System Requirements - Browser and technical requirements
- Overview - Introduction to vucavoid