eleata engages the third-party data processors listed below to operate the Service. Each subprocessor is contractually bound to data-protection obligations consistent with our DPA and GDPR. We will provide subscribers 30 days' notice of any new subprocessor via email and an update to this page.
Current subprocessors
| Subprocessor | Purpose | Region | Transfer mechanism |
|---|---|---|---|
| Hetzner Online GmbH | Primary infrastructure hosting (servers, storage, networking) | Germany (Falkenstein, Nuremberg) | Within EU — no transfer |
| Paddle.com Market Limited (IE) / Paddle Payments Inc. (US) | Subscription billing, metered usage, payment processing | Ireland (EU) and United States | EU SCCs Module 3 + Paddle DPA + Paddle is Merchant of Record (handles EU VAT/OSS, tax invoicing) |
| Cloudflare, Inc. | DNS, CDN, DDoS protection, Cloudflare Tunnel, Cloudflare Pages | United States (with EU-region edge nodes) | EU SCCs + DPF certification + EU Data Boundary commitment |
| Resend Inc. | Transactional email delivery (magic links, billing receipts) | United States (with EU region opt-in) | EU SCCs Module 3 |
| Sentry (Functional Software, Inc.) | Error and exception monitoring (no XML payload data) | United States (with EU region opt-in) | EU SCCs Module 3 + DPF certification |
| GitHub, Inc. (Microsoft Corporation) | Source-code hosting, CI/CD, npm/PyPI/Go release artifacts | United States | EU SCCs + DPF certification (Microsoft) |
Subprocessors NOT used
For clarity:
- OpenAI / Anthropic / Google / Meta: not used for any customer-facing data path. Validation runs on a self-hosted Schematron engine.
- Marketing analytics with cookies: not used. We use cookieless server-side analytics.
- Lead-tracking pixels: not used.
Notification of changes
Subscribers can opt in to subprocessor change notifications by emailing privacy@eleata.io with subject line "subscribe subprocessor updates". We send updates 30 days before any new subprocessor begins processing your data, giving you the opportunity to object for reasonable data-protection reasons.
Data flows summary
- XML payloads: only Hetzner (DE) → auto-deleted < 72 h.
- Account data: Hetzner (DE) + Paddle (IE/US, billing only — Paddle is the Merchant of Record).
- Email contents: Resend (US/EU).
- Error reports: Sentry (US/EU) — sanitised, no XML body.
- Source code: GitHub (US) — public repos for SDKs/Action; private repo for backend.
- Routing: Cloudflare (US/EU edge) — TLS-terminated and proxied to Hetzner origin.
For questions about subprocessors, transfer mechanisms, or to request a copy of the executed SCCs and the Transfer Impact Assessment (TIA), email privacy@eleata.io.