Penneo Trust Center

We keep our services up to date with legal requirements, security standards, and compliance needs. Get an overview of privacy, security, and compliance at Penneo – and how you can use our compliance to ensure yours.

Regulatory compliance

Our AML solution is compliant with EU legal requirements, and you can use Penneo to meet your obligations related to KYC, risk assessment, CDD, data collection and monitoring, and record-keeping.

Data privacy

We process and store personal data within the EU and maintain encrypted backups in EU data centers. Aside from ensuring full GDPR compliance internally, we also provide features specifically designed to assist you in meeting GDPR requirements, such as automatic data deletion after a set timespan, access control based on NIN, end-to-end encryption, and more.

Legal validity

Penneo’s digital signatures are just as valid and binding as handwritten signatures and meet the requirements laid down in the EU eIDAS Regulation and the US e-Sign and UETA Act.

The three core security services provided by our digital signatures are:

  • Authenticity: the signer’s identity is verified
  • Content integrity: the data cannot be tampered with
  • Non-repudiation: the signer cannot deny having signed.

Product security

From our IT environment to our products, everything we do follows the highest safety standards and industry best practices. 

Penneo receives a yearly ISAE 3000 report attesting to our compliance and we frame our IT security processes based on ISO 27001 standard. 

That’s how we ensure continuity and good performance of our services, meeting our customers’ expectations day by day.

Why you can rely on us​​

Why rely on Penneo
Penneo case file types

We help you meet your specific industry standards and simplify your compliance processes

As our customers belong to highly regulated sectors and operate in different countries, we provide customization capabilities to help you meet your specific industry requirements and national laws.

With Penneo, you can create tailored signing flows that follow the rules your business is subject to and ensure full compliance.

Leverage the safest authentication methods to ensure compliant identification and signatures

No passcode can compete with the level of security provided by government-issued eIDs for digital identification.

As we support several national eID means, we can help you scale up your business across borders while maintaining the same security you have at home.

Users can confirm their identity and sign digitally with Penneo with the following national eIDs and we are constantly working on supporting new ones.



Norwegian BankID


Finnish Trust Network (FTN)


Swedish BankID



See what security and compliance-conscious customers say about Penneo

Have questions about data protection or want to know more about Penneo's role as data processor?

Commencez dès aujourd'hui avec Penneo

Back to top

Signing & data collection

Get documents signed faster. Collect the information you need and manage your document workflows in an easy and compliant manner.

KYC & AML compliance

Automate client onboarding and AML compliance. Perform risk assessments and collect client documentation in a safe and efficient way.