PulseMenu
Security

Enterprise-grade by default.

Your venue data is protected with strong encryption, strict access control, and privacy built in from day one.

GDPR-aligned EU data residency TLS 1.3 SOC 2 (in progress)

Data protection

  • Encryption in transit (TLS 1.3) and at rest (AES-256)
  • EU data residency by default
  • Daily encrypted backups with point-in-time recovery

Access control

  • Role-based access scoped per venue
  • SSO via SAML / OIDC on Enterprise
  • Comprehensive, exportable audit logging

Infrastructure

  • Per-venue tenant isolation
  • Hardened, least-privilege cloud infrastructure
  • Continuous monitoring and alerting

Privacy & compliance

  • GDPR-aligned with a signed DPA
  • Data processing transparency and subprocessor list
  • Configurable data retention and deletion
EU-hosted

Data stays in EU regions by default.

Isolated tenants

Each venue's data is logically separated.

Audited access

Every privileged action is logged.

Responsible disclosure

Found a vulnerability? We appreciate reports from the security community and will work with you to verify and resolve issues quickly. Please email security@pulse-menu.com with details and steps to reproduce.