Sub-processors
Last updated: 9 May 2026
FloorVia uses the following sub-processors to deliver the service. We notify customers at least 30 days before adding new sub-processors that handle personal data.
Infrastructure
| Provider | Purpose | Region | Data |
|---|---|---|---|
| Hetzner Online GmbH Privacy | Primary hosting (servers, storage, network) | EU — DE / FI | All customer data, backups |
| Cloudflare Inc. Privacy | DNS, DDoS protection, WAF | Global (EU edge) | Request metadata, IP addresses |
| Let's Encrypt (ISRG) Privacy | TLS certificate issuance | Global | Domain names only (no personal data) |
Payments
| Provider | Purpose | Region | Data |
|---|---|---|---|
| Stripe Payments Europe Ltd Privacy | Subscription billing, card processing (PCI-DSS L1) | EU — IE | Email, billing address, card token (we never see PAN) |
Email + notifications
| Provider | Purpose | Region | Data |
|---|---|---|---|
| Resend / SendGrid | Transactional email (magic links, lead alerts, receipts) | EU — DE / IE | Email address, message body |
Optional integrations (only if you enable)
| Provider | Purpose | Region | Triggered by |
|---|---|---|---|
| WhatsApp Business API (Meta) | Lead alerts to your phone, share-link previews | Global | Pro tier opt-in |
| Google reCAPTCHA | Bot mitigation on public forms (fallback) | Global | If math gate triggers escalation |
Updates to this list
We post changes here and email account admins ≥ 30 days before any new sub-processor handles personal data, per Art. 28(2) GDPR. Subscribe to dpo@floorvia.com to get notified directly.
Questions: dpo@floorvia.com