International IT Solutions B.V. logo
IITS.nlAI & Data
Data Residency

Data stays in the Netherlands.

IITS platform architecture keeps your data within Azure Netherlands datacentres from day one — not retrofitted. All data is processed within the Microsoft EU Data Boundary.

Last updated: — Maintained by IITS Netherlands

Request Data Architecture Documentation
Azure EU Data BoundaryNetherlands Data ResidencyPrivate Azure TenantsAlgorithmic Transparency

Azure EU Data Boundary & Netherlands Data Residency

The IITS platform is deployed exclusively on Microsoft Azure Netherlands infrastructure (West Europe region, primary; North Europe region, secondary failover). All data processing — including generative AI prompts, natural language completions, vector embeddings processed by Azure OpenAI Service, and data pipeline transformations — remains within European borders under the Microsoft EU Data Boundary.

Enterprise clients operating in financial services, healthcare, or municipal public administration face strict legal mandates dictating that sensitive corporate and personal data must not leave the European Economic Area (EEA). IITS meets this requirement by default — no special configuration is required.

Transparency note: Azure Content Delivery Network (CDN) caches content globally at edge locations for performance. Microsoft Entra ID (formerly Azure Active Directory) operates as a non-regional service and may store directory metadata (not customer data) globally based on scalability requirements. These are documented in Microsoft's data residency documentation.

Dutch Algorithmic Transparency & the Algorithm Register

The Dutch government actively promotes human-centred AI through the Dutch algorithm register, which currently houses over 700 algorithms contributed by governmental bodies including the Municipality of Amsterdam and the Social Insurance Bank (SVB). The IITS platform generates algorithmic documentation that aligns with register entry requirements.

This focus on transparency is a direct response to national controversies such as the childcare benefits scandal (toeslagenaffaire, 2018), in which opaque, biased algorithmic decision-making caused severe harm to thousands of families. IITS systems are designed to be fully auditable, with data lineage tracing and explainability as core, non-optional features — not add-ons.

The Dutch Ministry of Finance's algorithmic control framework identifies four critical compliance themes: governance and accountability, privacy, data and model integrity, and information security. Every IITS deployment maps to controls across all four themes, with formal documentation available for audit purposes.

Information Security

All IITS Azure deployments include access management, encryption at rest and in transit (AES-256 / TLS 1.3), vulnerability management, and incident response procedures. Azure Policy assignments are enforced at the subscription level to maintain consistent security posture across all environments.

Access control is implemented via Microsoft Entra ID with role-based access control (RBAC) at the Azure resource and data layer. Platform architecture enforces data minimisation by design: only data fields explicitly required for the AI model's defined purpose are ingested.

Common Questions

Data residency and architecture questions

Does processing by the IITS platform keep data within the Netherlands?
Yes. By default all data — including generative AI prompts, completions, vector embeddings, and pipeline outputs — is processed on Azure Netherlands datacentres (West Europe / North Europe regions) within the Microsoft EU Data Boundary. Data does not leave the EEA except as explicitly directed by the client.
What sub-processors are involved in the Azure integration?
Primary sub-processor is Microsoft Azure (Netherlands datacentres). The platform does not route data through OpenAI's public API. Azure OpenAI Service is used, where data remains within your Azure tenant boundary. A full sub-processor register is available on request.
Does the platform support the Dutch algorithm register requirements?
Yes. The platform generates the algorithmic documentation required for entry into the Dutch algorithm register (algoritmesregister.overheid.nl), aligning with the transparency standards established by the Municipality of Amsterdam, the Social Insurance Bank, and other public bodies.

Request data architecture documentation

Data flow diagrams, Azure infrastructure documentation, sub-processor register, and deployment architecture details — available on request.

International IT Solutions B.V. — Waldorpstraat 5, 2521 CA The Hague, Netherlands — +31 6 18 80 19 78 info@iitsnl.com

Request Data Architecture Documentation