Your data stays with you.
Updated April 2026
Kabaun is built for teams handling sensitive data: financial, operational, supplier. This page describes the technical principles that protect your data, especially when using Klem, our AI agent.
European hosting
All Kabaun data is hosted in Europe, on OVH servers located in France. No data is transferred to servers outside the EU.
European hosting ensures GDPR compliance at the infrastructure level.
No external LLM, no data sent to OpenAI
Klem, Kabaun's AI agent, operates within a strictly in-app perimeter. No data is sent to OpenAI, Google, Anthropic or any external LLM service.
The MCP (Model Context Protocol) architecture is entirely internal to your Kabaun tenant: no public server, no exposed API, no outbound calls.
Signed audit trail
Every Klem action is logged in a signed, timestamped audit trail that is replayable on demand.
This traceability meets the requirements of your internal auditors, IT security team and CSRD third-party verifiers.
Multi-tenant isolation
Each customer's data is strictly isolated. One tenant can never access another's data, including at the level of AI queries and emission factor calculations.
Data access is enforced by database-level policies (Row Level Security).
GDPR compliance
Kabaun applies GDPR principles: data minimisation, defined retention periods, access and deletion rights. Processing register available on request at legal@kabaun.com.