These are the third-party services ("sub-processors") that may process personal data to run SimplyPrint, which serves customers worldwide. We keep this list to a minimum and choose privacy-friendly providers, with data stored in the EU by default. Our Data Processing Agreement covers both EU and US privacy requirements.
This page is the authoritative sub-processor list referenced in our Privacy Policy and our Data Processing Agreement (DPA, Section 8.2 and Appendix B). We give account owners advance written notice before a new sub-processor that handles personal data goes live, and you may object on specific grounds. To request our Data Processing Agreement or a transfer impact assessment summary, email [email protected].
| Sub-processor | Purpose | Data processed | Data location | Transfer basis |
|---|---|---|---|---|
|
DigitalOcean
DigitalOcean, LLC
105 Edgeview Drive, Suite 425, Broomfield, CO 80021, USA
|
Primary platform hosting and data storage | Account, user and service data (stored) | Stored in the EU (Frankfurt) | EU-US Data Privacy Framework + EU SCCs (2021) |
|
Hetzner
Hetzner Online GmbH
Industriestr. 25, 91710 Gunzenhausen, Germany
|
Hosting and compute (e.g. slicing) | Service data during processing | EU (Germany) EU/EEA | Not applicable (data stays in the EU) |
|
Cloudflare
Cloudflare, Inc.
101 Townsend St., San Francisco, CA 94107, USA
|
CDN, web application firewall and DDoS protection | Connection metadata incl. IP address (in transit) | In transit only - no persistent storage of your data | EU-US Data Privacy Framework + EU SCCs (2021) |
| Sub-processor | Purpose | Data processed | Data location | Transfer basis |
|---|---|---|---|---|
|
Stripe
Stripe Payments Europe, Ltd. (US processing by Stripe, LLC)
One Wilton Park, Wilton Place, Dublin 2, D02 FX04, Ireland
|
Card payment processing | Billing name, address, tax/VAT, payment metadata (we never store card numbers) | EU contracting entity; card processing in the US | EU-US Data Privacy Framework + EU SCCs (2021) |
|
e-conomic
Visma e-conomic A/S (CVR 29403473)
Gærtorvet 1-5, 1799 København V, Denmark
|
Accounting and invoicing | Name, email, phone, profile ID, invoicing address | EU/EEA EU/EEA | EU SCCs (2021) where any sub-processing occurs outside the EU/EEA |
| Sub-processor | Purpose | Data processed | Data location | Transfer basis |
|---|---|---|---|---|
|
ZeptoMail (Zoho)
Zoho Corporation B.V.
Beneluxlaan 4B, 3527 HT Utrecht, Netherlands
|
Transactional email (notifications, login, password resets)
Support may be provided from outside the EU under SCCs.
|
Email address, name, profile ID, and message contents | EU data center | EU SCCs (2021) |
|
Amazon SES
Amazon Web Services EMEA SARL (DPF held by Amazon.com, Inc.)
38 Avenue John F. Kennedy, L-1855 Luxembourg
|
Mass and transactional email (e.g. newsletters) | Email address and message contents | EU region | EU-US Data Privacy Framework + EU SCCs (2021) |
|
GatewayAPI
Opt-in ONLINECITY.IO ApS (CVR 27364276)
Buchwaldsgade 50, 5000 Odense C, Denmark
|
SMS notifications (only when you request them)
Off by default - only used if you add a phone number and turn on SMS notifications.
|
Phone number and the SMS message contents (may include your name) | EU EU/EEA | Not applicable (EU); EU SCCs (2021) for any residual transfer |
|
Crisp
Crisp IM SARL
2 boulevard de Launay, 44100 Nantes, France
|
Live-chat customer support | Name, email, phone, SimplyPrint profile ID | EU EU/EEA | Not applicable (data stays in the EU) |
| Sub-processor | Purpose | Data processed | Data location | Transfer basis |
|---|---|---|---|---|
|
Plausible
Plausible Insights OÜ
Västriku tn 2, 50403 Tartu, Estonia
|
Privacy-friendly website analytics | Aggregated, anonymous statistics - no cookies, no personal data | EU EU/EEA | Not applicable (data stays in the EU; no personal data) |
|
Sentry
Functional Software, Inc. (EU rep: Sentry Software Netherlands B.V.)
45 Fremont Street, 8th Floor, San Francisco, CA 94105, USA
|
Error and crash tracking
Configured with send_default_pii disabled.
|
Error events with your user ID; IP/email only attached if you consent to marketing cookies | EU region (Frankfurt) | EU-US Data Privacy Framework + EU SCCs (2021) |
| Sub-processor | Purpose | Data processed | Data location | Transfer basis |
|---|---|---|---|---|
|
Cloudflare Turnstile
Cloudflare, Inc.
101 Townsend St., San Francisco, CA 94107, USA
|
Bot/spam protection on login and sign-up forms | Visitor IP, user-agent and challenge signals (no advertising profile) | Cloudflare edge (ephemeral) | EU-US Data Privacy Framework + EU SCCs (2021) |
|
ip-api
Artia International S.R.L.
Bucharest, Romania
|
Geographic location from IP (new-login warnings, access logs) | IP address | EU EU/EEA | Not applicable (EU) |
| Sub-processor | Purpose | Data processed | Data location | Transfer basis |
|---|---|---|---|---|
|
PrintPal
Opt-in Atlas Rodin LLC (d/b/a PrintPal)
400 W Deming Place, Chicago, IL 60614, USA
|
AI print-failure detection
Off by default. Your data never leaves the EU unless you opt in to help train the AI.
|
On opt-in only: printer ID, webcam photos, temperatures, job state | Detection runs on SimplyPrint servers in the EU (Frankfurt); data reaches PrintPal (US) only if you opt in to AI training | EU SCCs (2021) - only applies if you opt in to data sharing |
|
OpenAI
Opt-in OpenAI Ireland Limited (US parent: OpenAI OpCo, LLC)
1st Floor, The Liffey Trust Centre, 117-126 Sheriff Street Upper, Dublin 1, D01 YC43, Ireland
|
Optional in-panel AI features (e.g. Bed Clear Detection)
Off by default. API data is not used to train OpenAI models.
|
On opt-in only: a single image of your print bed (no account or printer identifiers) | United States | EU SCCs (2021) |
|
Google Gemini
Opt-in Google Cloud EMEA Limited (DPF held by Google LLC)
70 Sir John Rogerson's Quay, Dublin 2, Ireland
|
Optional in-panel AI features (e.g. Bed Clear Detection)
Off by default. We use the paid API tier, which is not used to train Google's models.
|
On opt-in only: a single image of your print bed (no account or printer identifiers) | Google infrastructure | EU-US Data Privacy Framework + EU SCCs (2021) |
| Sub-processor | Purpose | Data processed | Data location | Transfer basis |
|---|---|---|---|---|
|
YouTube (Google)
Google Ireland Limited (processing by Google LLC on playback)
Gordon House, Barrow Street, Dublin 4, D04 E5W5, Ireland
|
Video embeds (privacy-enhanced no-cookie mode)
Loaded with your consent; the no-cookie embed sends data to Google only when you play.
|
Only when you play a video: IP, device/browser info, viewing activity | Google infrastructure (on playback) | EU-US Data Privacy Framework + EU SCCs (2021) |
|
Arcade
Arcade Software, Inc.
595 Market Street, Floor 10, San Francisco, CA 94105, USA
|
Interactive product demos and guides
We disable Arcade's tracking and it sets no cookies.
|
Tracking disabled; connection metadata (IP) reaches Arcade when a demo loads | United States | EU SCCs (2021) |
|
Cal.com
Cal.com, Inc.
2261 Market Street #4382, San Francisco, CA 94114, USA
|
Meeting scheduling (only if you book a meeting with us)
Only used if you book a meeting via the embedded scheduler.
|
Your name, email and chosen meeting time | United States | EU SCCs (2021) |
Ancillary suppliers that do not have routine access to customer personal data (for example telecom, couriers, power, or general office IT) are not listed here, in line with our DPA. If you believe a provider is missing, please let us know at [email protected].