Legal
Sub-processors
Last updated 18 April 2026. Changes are announced 30 days in advance to the customer contact on file.
The Operayde appliance processes customer prompts, documents, and retrieval content locally. None of the sub-processors below ever see that data. They provide services to the central plane (fleet telemetry, audit heads, staff identities) or to public-facing surfaces (DNS, TLS, billing, transactional email).
| Provider | Role | Location | Data categories |
|---|---|---|---|
| Hetzner Online GmbH | Central-plane infrastructure (region eu-south-1-fra) | Germany (EU) | Appliance metadata, audit heads, staff identities. No customer prompts or documents. |
| AWS (Amazon Web Services EMEA SARL) | Central-plane infrastructure (region me-central-1, UAE region only) | UAE | Appliance metadata, audit heads, staff identities for UAE-region customers only. |
| Let's Encrypt (ISRG) | TLS certificate issuance for central-plane and portal endpoints | USA | Public-facing DNS names only. No customer data. |
| Cloudflare, Inc. | DNS resolution for operayde.com and regional subdomains | USA (authoritative servers distributed) | Public DNS queries only. No customer data transits Cloudflare. |
| Stripe Payments Europe Ltd. | Billing processor (invoiced customers only; no direct card capture on our site) | Ireland (EU) | Billing contact, invoice line items, payment method token. No product data. |
| Resend, Inc. | Transactional email delivery (enrolment receipts, incident notifications) | USA | Recipient email and operational message bodies. No customer prompts or documents. |
Objecting to a change
Email legal@operayde.com within 30 days of the change announcement. Our DPA gives you the right to terminate the affected region if we cannot resolve the objection.