Compliant by default
GDPR, the EU AI Act and data residency are built into the ecommerce platform from the start. Here is how we protect your data and your customers'.
01 / Compliance
Compliance and data protection
GDPR and UK GDPR
GDPRDPAs, DSAR, consent records and a sub-processor register.
AI Act ready
EU AI ActArt. 50 disclosure and machine-readable synthetic-media marking.
UK and EU data residency
ResidencyTenant isolation enforced at the data layer.
SOC 2 roadmap
SOC 2Security designed in, with SOC 2 on the path.
02 / Security
Security
Encrypted in transit and at rest
EncryptionTLS in transit and encryption at rest across the platform.
Tenant isolation
IsolationYour data is isolated per tenant, enforced at the data layer.
Least-privilege access
AccessRole-based access, audit logging and continuous monitoring.
SSO and SCIM
SSOSAML SSO and SCIM provisioning on higher plans.
Backups and monitoring
ResilienceAutomated backups and platform monitoring.
Secure development
SDLCSecurity review built into how we design and ship.
03 / AI Act
AI Act and synthetic media
Every AI-generated image, video and 3D view from Sellarix carries machine-readable synthetic-media marking: C2PA content credentials plus a synthetic flag. Our AI assistants also disclose that they are AI, in line with EU AI Act Article 50, whose transparency duties apply from 2 August 2026. Read the EU AI Act compliance guide.
04 / Documents
Policies and sub-processors
We maintain a register of sub-processors (hosting, infrastructure, email and analytics providers) and can share it on request. Data subject requests are supported, and we will sign a DPA with you.
One platform. Every ecommerce AI. Any store.
Join the waitlist or book a demo.