Data Sovereignty
& Residency

Choose where communication data lives, who governs it, and how it moves across organisational boundaries.

Residency is location. Sovereignty is control.

Data residency answers a narrow question: where data is stored at rest. Data sovereignty goes further. It covers who operates the environment, which jurisdiction applies, who can administer the system, and how data can move between environments. For regulated communication, that broader control model is what security and procurement teams increasingly care about.

Why it matters for communication

Communication platforms are not just transport pipes.

They carry conversations, files, identities, workflow context, and operational metadata.

In Europe, GDPR restricts transfers of personal data outside the EEA, and newer sovereignty frameworks explicitly assess legal, operational, and technical control — not just geography.

That makes residency and sovereignty part of the product decision, not a legal afterthought.

How Letro approaches control

Letro is built on Matrix’s homeserver model. Your organisation can run, or be assigned, the environment that stores and synchronises its communications. If a room remains private to that environment, data stays there. If federation is enabled, approved homeservers exchange room data over authenticated server-server APIs, so separate organisations can communicate without collapsing into a single vendor-controlled tenant.

Your Data, Your Decision

Choose the deployment geography that matches your requirements. Decide which environments may federate and which must remain private. Keep sensitive communication local when necessary, and enable cross-organisation communication only where it is operationally justified.

Discuss residency requirements

Share your geography, regulatory context, and collaboration model. We’ll help map the right deployment boundary.

Request a Security Briefing

Discuss Deployment