Enterprise-grade security for your Business Central environment. GDPR and Swiss nLPD compliant by design.
Zentriq is built for teams that handle sensitive financial and procurement data inside Microsoft Dynamics 365 Business Central. Security is not an afterthought — it is embedded in every layer of the product, from architecture to user experience.
Zentriq fully complies with the EU General Data Protection Regulation. We process personal data only as necessary to provide the service, with clear legal bases for each processing activity. Users can request data export or deletion at any time.
As a Swiss company (Zentriq Software Sàrl), we comply with Switzerland's new Federal Act on Data Protection (nLPD / nDSG), effective September 2023. This includes data minimization, purpose limitation, and privacy by design principles.
Your Business Central data stays in your tenant. Zentriq accesses data through the BC API using your delegated credentials — we never copy, store, or replicate your ERP data on our servers. Data residency is enforced at the tenant level.
All data in transit is encrypted with TLS 1.2+. Sensitive data at rest (tokens, credentials) is encrypted using AES-256. API keys and OAuth tokens are stored in encrypted form and never exposed in logs or error messages.
We never sell, share, or provide your business data to third parties. AI model providers process queries without retaining your data. No analytics trackers have access to your ERP information.
The Zentriq Agent never creates, modifies, or deletes records without explicit user approval. Every write action requires confirmation before it is executed. You stay in full control of what changes are made in your Business Central environment.
Zentriq uses Microsoft Entra ID (Azure AD) OAuth 2.0 with delegated permissions. We never ask for or store admin credentials. Access is scoped to what your Microsoft account can already see in Business Central — no elevation, no backdoors.
We follow SOC 2 Type II-aligned security practices including access control, change management, incident response procedures, and regular security reviews. Infrastructure monitoring, automated alerts, and audit logging are built into our platform.
If you have questions about our security practices, need a Data Processing Agreement (DPA), or want to discuss compliance requirements for your organization, please reach out.
Free plan available. No credit card required.