JK
JustKalm
Privacy & Compliance

Data Residency

Control where your data is stored and processed. Choose from 5 global regions with full regulatory compliance.

5 global regions
GDPR & CCPA compliant
DPA available

Available Regions

πŸ‡ΊπŸ‡Έ

United States

Virginia, Oregon

Available
CCPAHIPAA
πŸ‡ͺπŸ‡Ί

European Union

Frankfurt, Ireland

Available
GDPRePrivacy
πŸ‡¬πŸ‡§

United Kingdom

London

Available
UK GDPRDPA 2018
🌏

Asia Pacific

Singapore, Tokyo

Available
PDPAAPPI
πŸ‡¦πŸ‡Ί

Australia

Sydney

Available
Privacy ActAPPs
πŸ‡¨πŸ‡¦

Canada

Montreal

Coming Q2
PIPEDACPPA

Configure Data Residency

Set your organization's data residency preference via API or dashboard.

# Set data residency region
curl -X PUT "https://api.justkalm.com/v1/organizations/org_xxx" \
  -H "Authorization: Bearer YOUR_SECRET_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "data_residency": {
      "region": "us",
      "backup_region": "eu",
      "cross_region_replication": false
    }
  }'

# Response
{
  "id": "org_xxx",
  "data_residency": {
    "region": "us",
    "region_name": "United States",
    "data_center": "Virginia, Oregon",
    "effective_date": "2024-12-15T00:00:00Z"
  }
}

Regulatory Compliance

GDPR

EU General Data Protection Regulation

Right to erasure
Data portability
Consent management
DPO appointment
72-hour breach notification

CCPA

California Consumer Privacy Act

Right to know
Right to delete
Right to opt-out
Non-discrimination
Service provider contracts

HIPAA

Health Insurance Portability and Accountability Act

PHI safeguards
BAA agreements
Access controls
Audit logging
Encryption requirements

Data Processing Agreement

Our DPA covers all GDPR requirements and includes Standard Contractual Clauses for international transfers.

Standard Contractual Clauses

EU-approved SCCs for international transfers

Sub-processor List

Transparent list of all data sub-processors

Security Measures

Technical and organizational security controls

Audit Rights

Annual third-party security audits available

Breach Notification

24-hour notification for security incidents

Data Deletion

Certified data deletion upon request

Download DPAView Sub-processors

Cross-Border Data Transfers

When Data Stays In-Region

  • β€’ Product valuations and results
  • β€’ Customer product data
  • β€’ API request/response logs
  • β€’ Webhook payloads
  • β€’ Backup and disaster recovery

When Data May Transfer

  • β€’ Global model training (anonymized only)
  • β€’ Support ticket handling (with consent)
  • β€’ Fraud detection (pseudonymized)
  • β€’ Legal compliance requirements
  • β€’ Explicit customer request

Need Custom Data Residency?

Enterprise customers can configure custom data residency with dedicated infrastructure.

Contact Sales

Β© 2025 JustKalm. Your data, your region.