Data security

Your data won't leave our circuit.

CAD models and prototypes are your intellectual property. We build our operation so no unauthorized person can reach them — and we tell you exactly how. No empty “maximum security” slogans.

Principle

Zero-trust: no one is trusted by default.

The default state is denied access. Every connection, user and print station must be granted access explicitly — and every such access is logged. Security here isn't an add-on you buy. It's how the operation is built.

Measures

Four concrete layers of protection

Isolated print circuit

Printers are cut off from the internet. Data travels only from the technician's workstation to a local server and from there straight to the printer. No cloud slicer, no sending your geometry to foreign servers abroad.

NETWORKOffline

Data encryption

Transfer is protected by TLS, stored files by AES-256. We hold the encryption key on our server — that's what lets us print your job, while at rest the data stays unreadable to anyone without access.

STANDARDAES-256 · TLS

Access logging

Who accessed your data and when is traceable. Access goes only to whoever actually works on the job — and is revoked once it's done.

ACCESSDefault-deny

Data lifecycle

We keep files for an agreed period (24 months by default for web-submitted files) and erase them with an irreversible cryptographic wipe — on request or on expiry. Longer retention (e.g. for complaints or warranty) only by agreement.

AFTER THE JOBErased on request
Comparison

Why not a “standard” cloud farm

Standard cloud farm

  • The source model is uploaded to the manufacturer's cloud (often abroad) to generate tool paths.
  • Third parties and intermediaries can reach the decrypted data.
  • After printing, the file usually stays on someone else's infrastructure.

TwinLayer

  • Geometry is processed locally. Your model never leaves our isolated circuit.
  • Only our technician on the specific job has access. No middlemen.
  • We keep files for an agreed period and erase them with an irreversible cryptographic wipe on request or on expiry.
Our approach

We talk straight

For us, security is a matter of concrete measures, not marketing superlatives. Here's what that means in practice.

AES-256, keys with us

We encrypt files with AES-256 and manage the keys ourselves, inside our isolated circuit — that's what lets us actually make your job. No middleman, no foreign cloud.

People, not a stamp on the wall

We're not a corporation with certificates in the lobby. We're a small specialized firm where security is backed by specific people and specific, verifiable measures — the ones above.

No magic phrases

We don't promise “military-grade” or “quantum” encryption. AES-256 and an isolated network are enough — and, above all, they're real.

Send us a prototype, not a worry about your data.

We sign an NDA as standard, not for an extra fee. Get in touch and we'll go through your protection requirements in concrete terms.

Request consultation