What about security with regards to data processing for report rendering? How is the (data) security arranged between Business Central and the rendering component?

To render reports and generate report-outputs (i.e., PDF, Word, Excel or HTML files) the layout, data-schema, dataset and settings are sent to an Azure-hosted API over an encrypted (SSL) connection. On the Azure hosted API the request/rendering task is processed and executed in a completely isolated context/environment to generate the report output. No data (N.B., no layouts, no datasets, no data-schema, no settings) is stored on any server whatsoever. Neither the developers of Apportunix Document Creator nor any other party can retrieve or intercept the layouts, datasets or any other data from users that is submitted to the API.