In this section, you can find a summary of our policies with frequently asked information.

Table of Contents

Architecture

Modern Cloud Architecture

Warren's infrastructure is built on AWS eu-central-1 (Frankfurt) with security-first principles.

Data Residency & Sovereignty

• All data hosted exclusively within the European Union
• No data transfer outside EU jurisdiction
• Compliance with EU data sovereignty requirements

Infrastructure Security Controls

• Multi-environment Isolation: Strict separation between production and lower environments (dev/staging) using separate AWS accounts.
• Infrastructure as Code: All infrastructure managed through versioned, auditable code
• Encryption Standards: AES-256 encryption at rest, TLS 1.3 for data in transit

Security Monitoring & Incident Response

• 24/7 Security Monitoring: Continuous monitoring of all systems and data access

• Threat Detection: Advanced threat detection with automated response capabilities

• Incident Response Plan: Documented procedures for security incident management

• Regular Security Assessments: Annual penetration testing and vulnerability assessments

  AI Providers

When integrating AI services, we prioritize providers that offer data hosting within the EU. Additionally, we ensure that our contractual agreements explicitly prohibit the training of AI models on our data.