Sub-Processors: Service Providers Processing Personal Data on Behalf of The Good Cloud

1. Introduction

We work only with service providers who meet strong privacy and security standards. All sub-processors are carefully selected and contractually bound to process personal data solely for the purposes of delivering our services.
All processing takes place within the EU/EEA unless otherwise indicated.

This list is kept up to date. When we add new sub-processors, we will notify affected customers in accordance with our Privacy Statement.

2. Current Sub-Processors

Service / FunctionSub-ProcessorLocationPurpose of ProcessingSecurity & Compliance
Data center & network hostingDC1 AmsterdamThe Netherlands (EU)Hosting infrastructure and network connectivitySOC 1 / SOC 2 / SOC 3, ISO 27001, ISO 9001, ISO 14001, ISO 45001, ISO 50001, PCI-DSS
Domain & DNS servicesTrueThe Netherlands (EU)Domain registration and DNS servicesISO 27001, ISO 9001, NEN 7510, ISAE 3402 Type II
CRM hostingPerfectViewThe Netherlands (EU)Managing customer contact and sales administrationGDPR, ISO 27001
Finance & accounting platformExactThe Netherlands / Ireland (EU/EEA)Financial administration and billingGDPR, ISAE 3402 Type II, ISO 27001
Payment processingMollieThe Netherlands (EU)Processing payment transactionsGDPR, PCI-DSS Level 1
Customer support platform (self-managed)The Good Cloudn/aHandling support tickets and customer communicationManaged internally — no external processor
Contracted operational support360 ICTThe Netherlands (EU)Commercial and implementation supportGDPR-compliant processing agreement in place
Contracted operational supportDatacaveThe Netherlands (EU)Commercial and implementation supportGDPR-compliant processing agreement in place
Privacy-friendly web analyticsMatomo (self-hosted)Germany (EU)Website analytics without tracking profilesGDPR, CCPA, LGPD, PECR
Uptime monitoringUptimeRobotSlovakia (EU)Monitoring availability of customer Nextcloud instancesGDPR compliant
Terms & Conditions