page
Capability Statement
Audited institutional proof package — governance, EU frame, national-scale delivery evidence.
OpenTrust Center · Counterparty under one desk
Trust Center
Five pillars · one named desk · audited counterparty.
Sovereignty, data localization, GDPR, certifications, and EC Commission alignment are routed through the same Compliance & Governance desk. Procurement teams should not need two weeks to ask for basic evidence; the documents are already on the page.
Counterparty register
- Ascendia S.A.
- ·
- BVB: ASC
- ·
- LEI 315700DLIITW8APMVF93
- ·
- CUI 21482859
Five pillars
Each pillar resolves to a named regulation and a downloadable document.
Trust · 01 · EU sovereignty
EU sovereignty
EU listed counterparty, EU-resident leadership, EU-located infrastructure. Sovereignty is structural.
GDPR · NIS2 · eIDAS · EU AI Act
OpenTrust · 02 · Data localization
Data localization
EU data residency by default. Sub-processor list available on request. Cross-border transfers documented under GDPR Chapter V.
EU residency · Sub-processors on request · Schrems II
OpenTrust · 04 · GDPR & privacy
GDPR & privacy
Named DPO, downloadable DPA template, sub-processor list on request, 10-working-day signed-return SLA.
GDPR · DPO · DPA template · dpo@ascendia.eu
OpenTrust · 03 · Certifications
Certifications and conformance
Active certifications, roadmap items, and conformance records — visible without theatrics.
WCAG 2.1 AA · EN 301 549 · ISO/IEC 27001 · NIS2
OpenTrust · 05 · European Commission alignment
European Commission alignment
EC DEC expert-group seat since 1 July 2024 · few technical counterparties hold one.
EC DEC · DG EAC · DEAP 2021–2027
OpenSub-processor disclosure
Sub-processors — available on request.
Ascendia processes Personal Data in EU member-state data centres by default. A complete, current sub-processor list — including entity name, service role, hosting region, data categories, and applicable transfer mechanism — is maintained and disclosed to Controllers on request. The list is available within 5 working days of a written request to the Data Protection Officer.
Request method
Written request to dpo@ascendia.eu
Response SLA
5 working days
Data residency default
EU member-state data centres
Transfer mechanism
SCCs for any EEA-exit paths · documented per sub-processor
The full sub-processor list is appended to the Data Processing Agreement template (Schedule C) available at ascendia-dpa-template-2026.
Procurement-ready evidence
Direct routes to the documents evaluators typically ask for first.
Governance documents, compliance posture, and audit-trail artefacts in one place — structured for procurement, legal, and compliance review.
page
Data Processing Agreement
GDPR Article 28 DPA template — parties, processor obligations, TOMs, sub-processor schedule, and signature block.
Openanchor
Sub-processors
Sub-processor disclosure — EU data residency by default; full list on request to dpo@ascendia.eu within 5 working days.
Openpage
Accessibility — WCAG 2.2 AA, EN 301 549
Trust-hub accessibility pillar. WCAG 2.2 AA · EN 301 549 v3.2.1 · EAA · WAD. VPAT, conformance declaration, and public roadmap on request.
Openpage
Accessibility Statement (WAD-aligned)
Public statement per Implementing Decision (EU) 2018/1523 — compliance status, non-accessible content, methodology, feedback, enforcement.
Openpdf
Annual Report 2025
BVB-filed audited annual report — financial highlights, governance record, and listed-company accountability.
OpenDesk 03 · R&D, platform, compliance & governance
One desk for all five trust pillars.
Gabriel Lazar
Research & Development Director — EC DEC member, technical evidence, accessibility, AI governance, and regulated-enterprise architecture
Service-level commitment
- R&D / technical evidence review
- 5 working days
- DPA review and signed return
- 10 working days
- Sub-processor disclosure
- available on request · dpo@ascendia.eu · 5 working days
- Accessibility conformance
- interim self-assessment at /legal/accessibility
Inside this cluster
Trust Center — 19 supporting pages on the public record
Trust Center groups the listed-company governance estate, the named institutional desks, the data-localisation and sovereignty posture, and the legal record that procurement, regulators, and counterparties consult. Anchored by the Bucharest Stock Exchange listing (BVB: ASC) since 2016.
- Platform Cloud — EU-resident infrastructure under listed-company governanceData localisation, sovereignty, operational record/platform/cloud
- Resources hub — institutional record, programmes, glossary, eventsCurated index of public artefacts/resources
- Newsroom — BVB current reports and structured-feedback recordSelected institutional record/resources/news
- Customer Success — named institutional deliveries with structured feedbackCouncil of Europe, CALM, CEC Bank, Groupama/resources/success
- Counterparty Dossier — Ascendia S.A. (BVB: ASC) since 2016Registry, board, EC DEC seat, BVB-disclosed deliveries/company
- Ascendia Story — institutional chronology behind the BVB-disclosed record/company/story
- Leadership — co-founders, named desk officers, governance bodiesNamed counterparty surface for procurement and EU coordinators/company/leadership
- Careers — engineering, learning design, public-sector delivery roles/company/careers
- Contact and Institutional Desks — direct routing on the public recordPublic-sector, EU programmes, channel, governance, research desks/company/contact
- Investor Relations — BVB current reports and financial calendarListed on the Bucharest Stock Exchange since 2016/company/investors
- Corporate Governance — board, statutes, GMS resolutions/company/governance
- Sustainability — public-interest and accessibility posture/company/sustainability
- EU Digital Sovereignty — EU-resident infrastructure and listed-company governance/trust/eu-sovereignty
- Data Localisation Policy — EU residency and processor classification under GDPR/trust/data-localization
- Accessibility Conformance — WAD, EAA 2025, and EN 301 549 posture/trust/accessibility
- GDPR statement and data-protection estate/legal/gdpr
- Cookies — consent posture for the Ascendia website/legal/cookies
- Privacy Policy — data-subject rights for Ascendia operations/legal/privacy
- Certifications estate disclosed in the institutional record/legal/certifications