Trust is the foundation of our relationship with our clients — currently more than 250,000 consultants, businesses, and employees across Europe. We value the trust they place in us and take very seriously the responsibility of protecting their information. To be worthy of that trust, Bilky’s design and improvements focus on transparency, security, and privacy.
At Bilky, we encourage you to verify for yourself that our security practices meet the most widely accepted standards. We are certified under the ISO 27001 standard by Bureau Veritas with the scope "Information security management system that supports the marketing, development, and maintenance of web services and applications". In addition, we work closely with PRODAT, a consultancy specialized in Data Protection and GDPR, to certify and audit the correct handling and security of all data. Our independent external auditors perform checks on our controls and provide reports and opinions that we will share with you if necessary.
Our security includes multiple layers of protection: secure data transfer, encryption, network configuration, and application-level controls. All these security layers are distributed across a secure and scalable infrastructure. In addition, our servers are hosted in Data Centers such as AWS (Amazon Web Services), DO (Digital Ocean), or Hetzner. These top-tier Data Centers are located in Spain, the Netherlands, and Germany — all within the European Union — and therefore comply with the General Data Protection Regulation (GDPR). These Data Centers offer the highest possible physical and logical security.
Our privacy is built on a distributed and secure infrastructure with multiple protection levels. We regularly test our different platforms to detect and fix any potential vulnerabilities. We are committed to preserving the privacy of your data, whether personal or work-related. Our Privacy Policy, Legal Notice, and Terms of Service clearly explain how we manage and protect your data. We strive to protect your information from unauthorized access and have created policies and controls to safeguard the collection, use, and disclosure of all your information.