Skip to content
Cognivox Labs

Compliance

A privacy-conscious, security-minded approach

Cognivox Labs is founder-led and does not claim certifications it does not hold. This page describes how engineering is approached and what is on the certification roadmap.

Data protection

GDPR-aware engineering

  • Privacy-by-design thinking from the initial architecture phase, not bolted on later.
  • Data minimisation and purpose limitation — only the data a feature genuinely needs.
  • Support for data subject rights such as access, rectification, and erasure.
  • Awareness of consent and data processing agreement requirements.
  • Data processing expectations documented as part of delivery.

AI

EU AI Act awareness

  • EU AI Act-aware design with clear, defined use cases rather than open-ended generation.
  • Risk-aware framing of where and how an AI feature is used.
  • Transparency and technical documentation for AI behaviour.
  • Human oversight kept in the loop for consequential steps.
  • Honest documentation of limitations and intended use.

Security

Security practices

  • A security-minded approach to access control, secrets, and service boundaries.
  • Secure inter-service communication where systems integrate.
  • Encryption in transit, and at rest where the platform supports it.
  • Sensible, auditable defaults over clever, hard-to-review setups.

Infrastructure

Infrastructure and hosting approach

  • Pragmatic, well-understood hosting and deployment.
  • Repeatable, zero-downtime-oriented deployment where appropriate.
  • Configuration kept consistent across environments.

Process

Development process

  • Typed code, clear data models, and documentation for maintainability.
  • Operational handoff documentation so systems can be run after delivery.
  • Changes delivered in reviewable, reversible slices.

Roadmap

Future certification roadmap

Direction, not current certification status.

  • ISO 27001 readiness and supporting security documentation.
  • Cybersecurity certification preparation.
  • Vendor risk and data processing documentation.
  • Expanded security documentation as the studio grows.

Have a system that needs building?

Start with a discovery call. We’ll review your problem, suggest a practical direction, and tell you honestly whether Cognivox Labs is the right fit.

Book a discovery call