Security & Compliance

Your data are safe with us. GatewayAPI receives an ISAE 3000 as well as ISAE 3402 auditor’s statement annually on GDPR compliance, and we constantly aim at improving our data protection efforts, both in regard to securing the data that are shared with us, as well as complying with the laws and regulations on data protection.

Find all the information you need in our Terms & Conditions, our Data Protection Policy as well as our Data Processor Agreement.

Leading security measures

Use our free add-ons to strengthen the security of your account

EU setup

Use our EU setup, where data is stored by a cloud provider, which both operates physically in the EU and is owned by a company within the EU. Furthermore, all connections are handled through telecommunications companies and A2P providers within the EU by default. This solution is particularly suitable for organizations affected by the Schrems-II ruling.

Secret Class

Use Secret Class to ensure that your messages are not stored in the traffic log, which specifically means that message content, sender and recipient are not stored in our system. This ensures the confidentiality of the messages. Please note that if you activate Secret Class, the SMS price changes to Premium.

Country blocking

By using the geo permissions feature, you simply select which countries you wish to send SMS messages to and block all others, which is an effective tool to protect your account from misuse. It is also possible to just select specific countries that you wish to block.

IP whitelisting

IP whitelisting specifies which CIDRs or IP addresses can access your account via the API. This ensures that even if your API keys are compromised, other parties will not be able to use your account to send SMS messages.

URL whitelisting

URL whitelisting ensures that only approved URLs can be included in messages sent via GatewayAPI. It also means that even if your account was compromised, it would not be possible for scammers to send phishing messages with links from your account.

Download our policies and agreements

We've got you covered

Do you want information on how we handle your data? Where your data are stored? What security measures we have put in place? Or simply want to read our Terms & Conditions? 

You can find it all below.

 

RCS T&C
Terms and conditions
Personal Data Policy
Privacy Policy (eff. 04/08/25)
DPA (.com setup)
DPA (.eu setup)
ISAE 3000
ISAE 3402
Find our Cookie Policy here

Contact support

Didn’t find what you were looking for?

Contact our specialists