Ask AI
How can we help? 👋

Definition of ORCA terms

This page is created to help you understand the different terms and definitions used in the ORCA app. It provides detailed explanations to give you a better understanding of how the app works. This will help you use the ORCA app more effectively and efficiently.


An account is similar to a personal file for a client, containing all essential information. It may include one or more 'vaults' (secure storage databases). An account can have multiple users, each with different permissions or access levels. Typically, a client uses one ORCA account. If you have access to several accounts, they will be listed on your ORCA login page. Each account has one account owner from the start.

Notion image

Related terms: User, Vault

Aggregated data

Controller: "Controller" means the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

Data Processor

A Data Processor as defined by the GDPR, is a legal or a natural person, agency, public authority, or any other body that processes personal data on behalf of a data controller. See our GDPR Statement for further details.

Data Controller

Data Controller as defined by the GDPR, is a legal or natural person, an agency, a public authority, or any other body who, alone or when joined with others, determines the purposes of any personal data and the means of processing it.


Decryption transforms encrypted data back to its original form. It cannot be performed without the appropriate cryptographic key.

Related terms: Encryption


Encryption transforms usable data into a form that conceals all information contained in the original data. This data transformation uses a cryptographic key.

Related terms: Decryption


An event records every interaction with items, including ownership transactions, cash flow bookings, roles and mandates, insurance, and more. Each time you use the "sentence builder," it generates an event.

For more details, check here.

Related terms: Items, Sentence Builder


IP address

A label that is linked to a computer network. It uses the internet protocol for communication, allowing for network interface identification.


Every natural person, legal entity, or asset that you create within the ORCA app is considered an individual item. These items are relevant to your invoice.

For more details, check here.

Related terms: Events

ORCA app

The software part of the subscription is developed and offered by ORCA AG.

Personal Data

"personal data" means any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

ORCA does not collect any sensitive data, such as racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, or data concerning sexual life or orientation, except with specific consent or as necessary for compliance purposes.

Related terms: Sensitive Data, Service Data, Aggregated Data

Secret Key

A User unique key that enables them to decrypt the data that they have access to.

For more details, check here.

Related terms: User

Sensitive Data

Data that is stored in the ORCA app by the Users within the Account, such as Persons, Legal Entities, Assets, and Files.

Related terms: Personal Data, Service Data, Aggregated Data

Sentence Builder

The section at the bottom of the ORCA app where you can create events.

Notion image

For more details, click here

Related terms: Events, ORCA app

Supervisory Authority

A local regulator under the GDPR which has the job of seeing that we protect your data properly.

Time Travel

The feature allows you to navigate back and forth in time to view the structure on any specified date. This requires events to be added with their corresponding dates.

Notion image

Related terms: Events, ORCA app


A user within an account has distinct credentials and pre-defined privileges, enabling their unique identification. Depending on your needs, you can assign roles such as Account Owner, Admin, and Member to ensure the principle of "need-to-know" across your vaults.

For more details, check here.

Related terms: Account, User




A vault is a logically separated dataset within an account, designed for enhanced security and management of unrelated sensitive information. An account can house multiple vaults, each completely independent of the others. Connections cannot be made between vaults. Additionally, access to specific vaults can be restricted to certain users, ensuring that particular information is only visible to those who need it. Only account owners and administrators have the authority to create new vaults and archive existing ones.

For more details, check here.

Related terms: Account, User

Zero-trust security model

Approach to the strategy, design, and implementation of software. The main concept lies in “never trust, always verify”, meaning that strong identity verification, device compliance, least privilege access are considered, checking the identity and integrity of users, devices, and data.


Our online software-as-service platform including any related APIs provided by Notion, together with all related mobile and desktop applications (including Cron applications) are collectively referred to as the “Services.”



Did this answer your question?