1. Data flow
Three parties ever see your data during a chat session:
- Zentriq backend (app.zentriqsoftware.com) — orchestrates your chat, calls the BC API on your behalf, stores your conversation history.
- Anthropic (Claude) — processes your messages + the BC data needed to answer them. Subject to Anthropic's zero data retention policy for API customers — your data is not retained beyond the API call and is never used to train models.
- Your Business Central tenant — the Zentriq backend issues API calls on your behalf using an OAuth refresh token you provisioned during setup. Every call is subject to your BC user's own permissions.
2. What we access
- Your Microsoft account email, name, and tenant ID (from sign-in)
- The BC data the agent fetches in real-time to answer your questions (customer cards, purchase orders, ledger entries — only what the query requires)
- Your chat messages and AI responses (stored so you can resume past conversations)
- Anonymous usage metrics (page views, feature usage, error rates) — no personal data
3. What we don't access
- We do not export your full BC database.
- We do not store BC credentials in plaintext — refresh tokens are encrypted at rest with AES-256.
- We do not share your data with third parties beyond the infrastructure providers listed below.
- We do not train AI models on your data. Anthropic's zero-retention policy applies to all our API usage.
4. Encryption
| Channel | Standard |
|---|
| In transit (browser → Zentriq) | TLS 1.3 (minimum TLS 1.2) |
| In transit (Zentriq → Anthropic) | TLS 1.3 |
| In transit (Zentriq → BC API) | TLS 1.3 |
| At rest (database) | AES-256 (Neon managed encryption) |
| At rest (BC refresh tokens) | AES-256-GCM, application-layer, key rotated quarterly |
| At rest (attachments) | AES-256 (Vercel Blob) |
5. Data residency
| Data | Where |
|---|
| Database (conversations, accounts, org settings) | EU (Neon Postgres, Frankfurt) |
| Application runtime | EU (Vercel, Frankfurt + Paris edges) |
| File attachments | EU (Vercel Blob) |
| Sentry error reports | EU (Sentry SaaS, Frankfurt region) |
| AI inference | US (Anthropic, zero retention) |
| Your BC tenant | Wherever Microsoft provisioned it (we never move your BC data) |
Enterprise customers with EU-only requirements: we're evaluating Anthropic's EU region (beta). Contact sales@zentriqsoftware.com if this is a deal-breaker.
6. Retention
- Conversations and captures — kept until you delete them or close your account.
- Usage logs — 90 days.
- Sentry error reports — 90 days (rolling).
- BC refresh tokens — until you disconnect BC from the app, or 90 days of inactivity.
- Stripe billing records — 7 years (legal obligation).
7. Access controls
- Production database access — restricted to 2 Zentriq employees. MFA mandatory. Access logged.
- Code deploys — via GitHub → Vercel. All deploys signed by known committers.
- Third-party admin consoles (Stripe, Anthropic, Neon, Vercel, Sentry) — all MFA-protected.
- Your BC permissions are the ultimate gate — even a compromised Zentriq backend can't do more in BC than your individual user's permissions allow.
8. Incident response
In the event of a security incident:
- We notify affected customers within 72 hours of discovery (in line with GDPR Art. 33).
- Disclosure includes: what happened, what data was involved, what we did to contain it, and what you should do.
- For post-mortems, we publish a redacted summary once the incident is closed.
- Report a suspected issue: security@zentriqsoftware.com (PGP key on request).
9. Third-party processors
| Service | Purpose | DPA |
|---|
| Microsoft Entra ID | Authentication | Yes |
| Anthropic | AI inference | Yes (+ zero retention) |
| Stripe | Payment processing | Yes |
| Vercel | Application + blob hosting | Yes |
| Neon | PostgreSQL database | Yes |
| Sentry | Error tracking | Yes |
| Resend | Transactional email | Yes |
10. Your rights (GDPR / nFADP)
You can:
- Export — request a JSON export of all your data. Email privacy@zentriqsoftware.com (fulfilled within 30 days).
- Delete — trigger full account deletion from your dashboard. Cascades delete all captures, conversations, and memberships; Stripe subscriptions cancelled automatically.
- Disconnect BC — revoke the OAuth refresh token anytime, in your dashboard. Zentriq immediately loses all access to your BC tenant.
- Object / restrict — email us, we honor your request.
11. Certifications and roadmap
- GDPR + nFADP: compliant (Swiss entity, EU processing).
- SOC 2 Type II: in progress — expected Q4 2026. Ask for our Readiness Assessment if you need it before then.
- ISO 27001: on 2027 roadmap.
Questions? security@zentriqsoftware.com — we reply within 1 business day. Also see: Privacy Policy · Terms · 2-page Security Overview (printable).