Trust
You're about to put member names, addresses, attendance and payment info into our system. You deserve straight answers about where it goes and who can touch it. Six questions, six plain answers — no enterprise-speak.
Studio OS runs on Vercel (US region for getpoletis.com, EU region for eupoletis.com / poletis.hr). Your database is managed Postgres on Neon, provisioned in the same region as your site. File uploads — logos, member photos — live in Vercel Blob, again region-pinned. Nothing crosses regions without you asking.
Yes, in both directions. Every request to the app is TLS 1.2+ (HTTPS everywhere — no HTTP fallback). At rest, the database and file storage are encrypted with AES-256 by the underlying providers (Neon, Vercel Blob). Passwords are hashed, never stored as plaintext.
Continuously. Neon does point-in-time recovery — we can restore the database to any moment in the last 7 days. Weekly snapshots are retained for 30 days. If you delete something by accident on a Tuesday, we can pull it back on Wednesday.
One person: Nino Poletan, the founder. Poletis d.o.o. is a one-person company. No support tier, no contractors, no offshore team. Production credentials live only on my machine. If access changes (a hire, a contractor), this page changes first.
You hear from me within 48 hours of confirmation — by email, directly, with what was exposed, what we know, and what to do next. No PR-cleansed statement. If a breach affects EU residents, GDPR's 72-hour authority notification applies and we meet it. Status updates continue until resolved.
Always. Full export (CSV of every member, booking, payment, message) on request — fulfilled within 7 days. Permanent deletion of your entire account and all backups on request — fulfilled within 30 days. You own your data. Leaving is a one-email process, not a hostage negotiation.
Reach me directly at nino@eupoletis.com. If you need it in writing for procurement or compliance, say so and I'll send a signed PDF.
Last updated: 2026-05-28 · Poletis d.o.o.