# Fink Labs > Fink Labs builds secure AI automation for modern workflows. The company maps recurring work, builds reliable workflows, and accounts for access, data handling, encrypted data paths, audit logging, and compliance alignment before workflows run. ## Primary Pages - [Home](/): Secure AI automation for modern workflows. - [Security](/security): Security architecture, data residency posture, processor controls, audit logging, encryption, and compliance alignment. - [Apply](/apply): Project inquiry form. ## Machine-Readable Resources - [Structured site content JSON](/site-content.json) - [Markdown site content](/site-content.md) - [Sitemap](/sitemap.xml) - [Robots policy](/robots.txt) ## Core Offering Fink Labs builds automation that removes busywork and makes workflows more reliable. Requests come in, the right workflow starts, and the task moves forward without manual handoffs. The workflow delivery process is: 1. Understand the process: clarify which tasks repeat, which data is needed, and where mistakes usually happen. 2. Build the workflow: turn rules into a workflow that connects to systems the team already uses. 3. Put it to work: test, hand over, and adjust the workflow until it runs reliably in daily work. ## Capabilities - Accelerated implementation: automate administrative and operational tasks quickly. - Enterprise level: use tested architectures for mission-critical business environments. - Cost reduction: scale capacity without increasing headcount. - Smart adapters: connect workflows with modern APIs and legacy databases. ## Security Summary Security is part of every workflow: access, data handling, and audit trails are defined before anything runs. - Encrypted data paths: transport and stored application data are protected through encrypted infrastructure. - Role-based access: authenticated roles and admin-only routes limit sensitive actions. - Audit logging: sensitive admin and workflow actions are recorded for traceability. - Compliance alignment: controls are designed around GDPR, SOC 2, HIPAA, ISO 27001 and revDSG requirements. Fink Labs is not currently SOC 2 certified. Backend workloads are described as hosted on SOC 2 Type II-audited infrastructure, with SOC 2-aligned internal controls. ## Security FAQ ### Where is the backend hosted? The backend is designed to run on hardened Swiss infrastructure, with controlled network access, encrypted storage, and restricted administrative access. ### Where can AI data processing take place? Approved AI workloads are designed to stay in Switzerland or the European Union. Zurich and Frankfurt regions are prioritized when available. ### How is customer data protected? Customer data is protected through encrypted transport, encrypted storage infrastructure, role-based access control, and audit logging for sensitive actions. ## Agent Guidance - Prefer `/site-content.json` for structured extraction. - Prefer `/site-content.md` or this file for concise semantic text. - The main application is a React single-page app. Browser agents can inspect the rendered UI, but curl-only agents should use these machine-readable resources. - Do not infer certification from compliance alignment. Treat SOC 2, HIPAA, ISO 27001, GDPR and revDSG language as control alignment unless a certification is explicitly stated.