What are your sub-processors, as defined by the GDPR?

Cloud-IAM uses certain sub-processors to assist it in providing to its customers the Application Services as described in the Master Services Agreement or Terms of Use available at terms-of-service or such other location as the Terms of Use may be posted from time to time (as applicable, the “Agreement”). Defined terms used herein shall have the same meaning as defined in the Agreement.

A subprocessor is a third party data processor engaged by Cloud-IAM, including entities from within the Cloud-IAM group, who has or potentially will have access to or process Customer Content (which may contain Personal Data). Cloud-IAM engages different types of subprocessors to perform various functions as explained in the tables below.

Cloud-IAM use the following sub-processors to provide Cloud-IAM's customers cloud infrastructure environment and storage for Cloud-IAM's Keycloak Clusters. Personal data of Cloud-IAM's customers's customer will only be stored there:

Subprocessor Country of processing Purpose
Scaleway. Europe Cloud-IAM's customers Keycloak deployments
Google Inc. USA, Europe, Asia Cloud-IAM's customers Keycloak deployments
Amazon Web Services, Inc.. USA, Europe, Asia Cloud-IAM's customers Keycloak deployments

Processing of Cloud-IAM's Customer Content.

Cloud-IAM work with various subprocessors that monitor, maintain and otherwise support the Cloud-IAM control-plane (Cloud-IAM's dashboard and Cloud-IAM's REST API).

In order to provide this functionality these subprocessors may, but not necessarily will, have access to Cloud-IAM's Customer Content but never Cloud-IAM's customer's customer content.

Subprocessor Country of processing Purpose
Scaleway. Europe Cloud-IAM main infrastructure (REST API, database (Cloud-IAM's own users), logs (without PII), metrics (without PII), data exports)
Crisp Europe, France Customer relations management
Sentry United States Application monitoring and error management
BetterUptime Europe, Czech Republic Uptime monitoring, status page and on-call management
Gitlab, Inc United States Source code management
G Suite United States Internal company infrastructure
Netlify United States Cloud-IAM dashboard static files hosting
Hotjar Malta, Europe User experience understanding in Cloud-IAM websites and products
Matomo Paris, Europe User experience understanding in Cloud-IAM websites and products

* Note, the list of subprocessors applies to any new Cloud-IAM customers as of that date, or existing Cloud-IAM customers who have not otherwise received notice of a different effective date of this list.