Sub-Processors
In accordance with Article 28 of the GDPR, the following third-party sub-processors are engaged by SikkerAPI to process Personal Data on our behalf. Each sub-processor operates under a data processing agreement that ensures appropriate technical and organizational safeguards.
This list is updated when sub-processors are added or removed. Material changes will be communicated via email to registered users.
| Sub-processor | Purpose | Data processed | Location |
|---|---|---|---|
| Hetzner Online GmbH | Cloud infrastructure and server hosting | All data stored and processed by the Service | Germany (EU) |
| Stripe, Inc. | Payment processing and subscription management | Billing information, email address, payment card details | United States (EU-US Data Privacy Framework) |
| Cloudflare, Inc. | Content delivery, DDoS protection, and reverse proxy | IP addresses, HTTP request headers, and request metadata in transit | Global edge network (EU-US Data Privacy Framework, Standard Contractual Clauses) |
| Zoho Corporation Pvt. Ltd. | Transactional email delivery (account verification, password resets, security notifications) | Recipient email addresses and email message content | EU data center (GDPR compliant, Standard Contractual Clauses) |
For questions about our sub-processors or to request notification of changes, contact [email protected].