GDPR compliance

Visit the Trust Center

The General Data Protection Regulation (GDPR) is a joint proposal by the European Commission, the European Parliament, and the Council of the EU, which provides individuals with even greater control over the collection and use of their personal data. Continia is committed to ensuring that our customers are able to comply with their requirements under the GDPR. 

  • The GDPR strengthens the rights of individuals with respect to personal data. This means that Continia, as a software provider, must strengthen the security measures that protect the personal data of our customers and individuals registered in our systems as well as the features that enable our customers and individuals that use our services to exercise their rights. 
  • It also means we must design our systems to enable you, as our customer, to meet your own obligations as the data controller for the data you process using our systems and services. 
  • Continia sets out to ensure that all our software services, to the very best of our efforts, are compliant with the GDPR. Consequently, we are annually audited according to the ISAE 3402 standard framework, specifically with the GDPR in mind. This framework is comprised of the following main components: 

    • Training of our employees. 

    • Privacy and data protection built into development and production.

    • Dedicated Data Protection Officer.

    • Ongoing control and measurements.

    • Data processed and stored in the EU.

    • Data processed according to the DPA (Data Processing Agreement)


For more comprehensive information, we direct your attention to both our ISAE 3402 Assurance report and our Data Processing Agreement (DPA). All requests and communications are to be directed to our Data Protection Officer at

Download Data Processing Agreement (DPA)

Download our DPA

DPA change summary


Download the ISAE3402 Assurance Report

Get all the latest news on our DPA Updates

Sign up now!