Abrantix handles a strictly limited set of personal data — including names, email addresses, and billing details — in full compliance with both the EU General Data Protection Regulation (GDPR) and Switzerland's revised Federal Act on Data Protection (CH-FADP / nDSG). Information security is further underpinned by ISO 27001:2022 certification across all Abrantix entities, and ReconHub has successfully completed a SOC 1® Type 2 examination, with controls independently tested over a twelve-month period. Because ReconHub does not process complete PANs or cryptographic key material, it is out of scope for PCI-DSS — upstream providers handle PCI compliance at the source.
For a full breakdown of personal data flows, certifications, the complete subprocessor list, and how to reach our Data Protection Officer, visit our
Data Compliance page,