As the operator of a POS system, you are legally obliged to store your POS data for years in a traceable, unalterable and auditable manner.
This article gives you an overview of how the Paymash POS system fulfils the requirements of the tax authorities in Germany and Austria and how you can provide all the necessary evidence in the event of an audit.
Legally compliant data storage
The cloud-based Paymash POS system fulfils the requirements for electronic recording, storage and verifiability of POS data in:
- Germany: in accordance with §§ 146, 147 AO and the GoBD (principles of proper accounting in electronic form);
- Austria: in accordance with Sections 131, 132 of the Federal Fiscal Code (BAO) and the Cash Register Security Ordinance (RKSV).
Storage of cash register data - server locations
Our customers' data is stored in ISO 27001-certified data centres of our infrastructure partners. Data is stored in a highly available and data protection-compliant manner at the following locations:
- Frankfurt am Main, Germany (EU)
- Zurich, Switzerland
Different server locations can be used depending on capacity utilisation, region and security strategy. In any case, the systems guarantee data availability, immutability and access security in accordance with applicable legislation in Germany and Austria.
Data access & export options
For Germany:
- Complete data export in DSFinV-K format (incl. TSE data if available)
- Audit-proof storage and access by auditors or tax consultants at any time
- GoBD-compliant data management
For Austria:
Fulfilment of the requirements of the RKSV, including
- Tamper-proof data entry protocol (DEP)
- Export of the DEP in XML format for the tax authorities' audit app
- QR code on the receipt with signature data
- Online financial reports
Note on Switzerland as a server location
Switzerland is classified as a third country with a recognised level of data protection in accordance with the GDPR. Access to your cash register data is possible at any time via our system - even during an audit.
Please note:
Direct access by authorities to our servers is not possible unless there is a corresponding legally binding court order from a competent national authority. This is in accordance with applicable data protection law and cloud infrastructure practice.
The legal requirements for data accessibility are fully met by the complete export function.
Note for audits
You can present this information sheet as evidence in the context of a tax audit, cash register inspection or official enquiry (e.g. by the German tax office or the Austrian Federal Ministry of Finance).
Our support team will be happy to help you with individual questions about data storage or the technical implementation of the export.