authorityrail.com / trust / data-residency
// Trust Center

Data Residency

Where AuthorityRail processes and stores customer data, today and on roadmap.

Last revised: 2026-05-17 · Version v1.0

Today — US primary processing

All AuthorityRail data processing and storage occurs in US (us-east-1 / us-east4):

Customer export — available on all tiers

Customers can export their data at any time:

Export is initiated from the customer dashboard (when wired) or via API. There is no per-export fee on any subscription tier.

Data lifecycle

Backups and recovery

Roadmap — EU data residency

Planned H2 2026, demand-gated. EU data residency requires a separate Supabase project in the EU region, a separate Railway environment in an EU region (or AWS Frankfurt / GCP europe-west), separate signing keys, and an EU-routing layer on the gate.

The investment is justified by the first 3 EU customers with documented EU residency requirements. Until then, EU customers are served from US infrastructure with SCCs in place.

If you are an EU buyer with EU-residency as a procurement requirement, please contact [email protected] — your inquiry directly accelerates the roadmap.

Cross-border transfers

For customer data originating in the EU, UK, or Switzerland: Standard Contractual Clauses (SCCs) are in place with US sub-processors per the Sub-processor Disclosure. Transfer impact assessments available on request via the Data Processing Addendum.

Related documents

Data residency claims on this page are operationally verified. The EU residency commitment is roadmap; do not represent it as current capability.