Trust & guardrails

GrootDesk never invents an action.

Every capability is fenced, every action is logged, and nothing happens to an order without the customer's explicit go-ahead. That's what makes it safe to hand real work over.

Consent-gated tickets

Returns, cancellations and refunds are only filed after the customer confirms on screen.

Order verification

Identity is confirmed before any status is shared or any change is made to an order.

Capability guardrails

It can only do what you allow. Outside its remit, it says so and escalates — it never guesses.

Full audit trail

Every message, decision and action is recorded and reviewable in the dashboard.

Automated evaluators additionally check each answer for hallucinations and language match before it's trusted — quality is measured, not assumed. See the architecture →

EU-hosted · GDPR-first

Built in Europe, for European rules.

Data residency isn't an afterthought bolted on for compliance — it's how GrootDesk was designed from day one.

Hosted in Germany. Infrastructure runs in Frankfurt — your data stays in the EU.

DPA available. A Data Processing Agreement is ready to sign for every plan.

No training on your data. Customer conversations are never used to train models.

Deletion on request. Data is erased whenever you or your customer asks.

Your customers' trust, protected

EU data residency, encryption in transit and at rest, and a clear audit trail — the guarantees your legal team asks for.

GDPR EU data residency DPA ready Encrypted

Give your team its time back.

Join the early-access programme — founder pricing locked for 12 months, live on your store in under an hour.