ISO 27001 & 27701 Certified Platform

Our online portal and data infrastructure are operated on a platform that is certified according to:

  • ISO 27001:2022 - Information Security Management
  • ISO 27701:2019 - Privacy Information Management

While The Digital PO Box itself is not the certificate holder, all internal processes and external instructions to Partners are fully aligned with the certified standards. This ensures consistent protection of personal data across our platform and service operations.

Privacy and security standards

Privacy and security standards

Platform & Infrastructure Security

Our software partner AgileGrowth Solution LLC-FZ develops and maintains the secure portal used by all TDPB customers and location Partners. Key security measures include:

  • End-to-end encryption (data at rest and in transit)
  • Secure hosting within the EU (Amsterdam and Frankfurt)
  • Access control based on strict role-based authorisation
  • Audit logs and monitoring of data access
  • Physical security of servers in ISO-compliant data centres
  • Regular audits and vulnerability patching

Data Protection by Design

From registration to mail handling, our systems are built with privacy in mind. Key principles include:

  • Minimal data collection: only what's strictly necessary
  • Transparent processing: outlined in our Privacy Statement
  • User control: self-service tools to manage, update or delete data
  • Separate storage of sensitive documents
  • Secure scan handling: encrypted upload and automated deletion
Privacy and security standards

Responsible Partner Collaboration

Local address Partners play an important role in keeping our service running smoothly. They receive and scan mail with care, following strict privacy guidelines and clear instructions on how to handle personal information securely.
Scans are made exclusively through our TDPB app and are automatically encrypted and uploaded to our platform, nothing is stored locally.

All Partner activities follow the same privacy and security principles that govern the platform. This means that:

  • Mail is processed exactly according to the customer’s preferences — opened and scanned only when the customer has requested it
  • Partners follow strict privacy and security procedures
  • All scans are end-to-end encrypted and processed directly on our platform
  • Every Partner complies with our Data Processing Agreement and completes privacy training

Your Privacy, Protected

We are committed to protecting the rights and data of our users, in full compliance with the GDPR and other relevant privacy laws. You remain in control of your data and if you ever have a concern, our Privacy Officer is available via [email protected].
Trust is earned. We work every day to deserve it.