Reducing Risk by Protecting Rights

We run Data & More as a true meritocracy. Decisions are made by those most qualified — not by hierarchy. Our remote-first model enables our talented global team to work where they thrive, building tools that safeguard billions of documents and millions of people, every day.

Our locations include Copenhagen (HQ), Calgary, Düsseldorf, Zagreb, and Stockholm. And thanks to our remote model, we’re always exactly where you need us.

We started Data & More in 2016 with a simple belief: personal data belongs to the individual, not the organization. Companies are caretakers.

And caretaking has two duties — keep the data that still has a purpose, and delete the data that doesn’t.

When GDPR launched in May 2018, we were ready.

For seven years, we scanned email archives, SharePoint sites, OneDrive accounts, Teams conversations, and the legacy file shares that nobody wants to touch. 7 billion datasets. 28 languages. 200+ organizations.

Not archived it. Not quarantined it. Not moved it to a retention bucket with a 90-day policy. Deleted it.

Then Copilot arrived. And RAG pipelines. And enterprise LLMs.

AI doesn’t know the difference between data you want it to find and data you forgot to delete. It indexes everything. It surfaces everything.

The email archive from 2019 with citizen health records? Copilot found it.

The compliance playbook is now the AI security playbook. Find personal data. Verify with the data owner. Delete it.

That’s not a tagline. It’s a security principle.

And here’s the part our competitors don’t want to talk about: we don’t auto-delete. Every deletion on our platform is verified by the data owner.

The person who knows the business context. The person who can tell the difference between a contract that still matters and a forgotten attachment from 2017.

“A human verified it” holds up in audits. “The system decided” does not.