Trust Centre
Arbiter is built on EU infrastructure with privacy and security considered from the ground up. This Trust Centre documents the controls in place to protect your data.
Encryption at Rest
All customer data is encrypted at rest using AES-256 on EU-hosted infrastructure. Encryption keys are held by Arbiter Ltd within the EU. No US-domiciled cloud provider has access to customer data or keys.
Encryption in Transit
RadSec with mutual TLS is the default and recommended transport. Administrative access uses HTTPS with identity delegated to your own identity provider. Direct UDP RADIUS is supported as a compatibility path with platform-enforced controls.
Privileged Access
How access to Arbiter infrastructure and customer data is controlled, logged and reviewed.
Compliance Posture
Arbiter's alignment with regulatory frameworks and security standards including NIS2, DORA and SOC 2.
Sub-processors
Third-party processors that Arbiter engages to deliver the service, with their data processing roles and locations.
Last updated May 2026. For questions about this page, contact hello@arbiter.ie.