As a provider of data protection–relevant software solutions, Voicery places particular emphasis on the security of personal data and on compliance with legal and regulatory requirements.
The data protection and information security design of the Voicery platform follows a structured and documented approach – from technical, organizational, and contractual perspectives.
The platform is designed for professional use in corporate environments and is operated accordingly in compliance with recognized international security and quality standards.
Voicery is operated on a technical infrastructure whose operation is certified in accordance with ISO/IEC 27001:2022 (information security management) and ISO 9001:2015 (quality management).
These certifications confirm that defined processes and controls are in place for the operation of the underlying technical infrastructure to ensure the confidentiality, integrity, and availability of sensitive data. At the same time, procedures for continuous improvement are implemented to regularly review and further develop technical and organizational measures.
Our company is GDPR-certified and subject to regular data protection audits by independent auditing bodies.
As part of these audits, the implementation of technical and organizational measures in accordance with Art. 32 GDPR is reviewed, as well as compliance with requirements for data protection management, transparency, and accountability (Art. 5(2) GDPR).
This includes, among others:
Access restrictions and role-based authorization concepts
Measures to ensure data integrity and availability
Documented procedures for the regular review of security measures
Measures to ensure data minimization and purpose limitation
The processing of personal data is carried out in full compliance with the General Data Protection Regulation (GDPR).
Data processing from the Pro Plan onwards is performed by default within the European Union.
Our platform offers flexible EU-based processing for Large Language Models (LLMs), Speech-to-Text (STT), and Text-to-Speech (TTS), depending on the selected model or provider. This allows customers to choose the setup that best fits their compliance and data protection requirements.
Our infrastructure includes, among others:
Amazon Web Services (AWS) – Germany (Frankfurt)
OpenAI via Microsoft Azure – LLM (EU region: Sweden)
ElevenLabs – STT / TTS (EU region: Belgium, Brussels)
Gladia – STT (EU region: France)
For customers who require additional flexibility, international providers are also available:
Google Gemini – LLM (no EU endpoint available)
Anthropic Claude – LLM (no EU endpoint available)
Deepgram – STT (no EU endpoint available)
Cartesia – TTS (no EU endpoint available)
LLaMA – LLM (via Groq – no EU endpoint available)
This approach ensures maximum transparency, full flexibility, and the ability to align data processing precisely with individual compliance and business needs.
All subprocessors are selected and integrated based on documented data protection agreements, transparent data flow analyses, and appropriate safeguards in accordance with Chapter V GDPR. Where necessary, internationally recognized protection mechanisms such as Standard Contractual Clauses are applied to ensure a compliant and secure data processing framework.
Voicery stands for a responsible and transparent approach to data.
Technical foundation based on certified security and quality standards (ISO/IEC 27001:2022, ISO 9001:2015).
EU-based processing of core AI components in the standard configuration, including LLMs, STT, and TTS.
GDPR-compliant data processing with documented technical and organizational measures (TOMs).
Audited operational processes and GDPR-certified data protection management.
The combination of GDPR certification, internationally recognized security standards, and an optionally fully EU-based infrastructure (when selecting EU-capable models and providers) makes Voicery a suitable platform for data protection–compliant communication in enterprise environments.
