Sub-processors
These are all the data processors we engage. Per GDPR Art. 28(2), this list is updated whenever we add or change a sub-processor.
Last updated: 2026-06-01
| Processor | Purpose | Data shared | Location |
|---|---|---|---|
| FastComet | Web hosting (database + uploaded files) | Account data, form configurations, submitted responses, billing metadata | EU (Frankfurt) — migration in progress from US-Chicago |
| Stripe | Payment processing | Billing email, payment method, subscription status (NO respondent data) | Ireland (EU) for EU customers, US for non-EU |
| Cloudflare | CDN + DDoS protection (owner-facing pages only) | Request metadata (IP, User-Agent) — only on /, /dashboard, /admin. NEVER on /f/{slug} respondent pages. | Global PoPs; EU traffic routed via EU-region |
| Telegram | Admin event notifications (signups, plan upgrades, cron errors) | User email + plan info (admin alerts only — NEVER respondent data) | US / SG (data crosses EU borders) — being phased out for EU launch |
Change notifications
We will notify subscribed customers at least 30 days before adding a new sub-processor, per GDPR Art. 28(2). To receive these notifications, email dpo@anonymeter.com with your account email.
Need a DPA / AVV?
Email dpo@anonymeter.com to request a signed Data Processing Agreement (Auftragsverarbeitungsvertrag / AVV). Standard contractual clauses (SCCs) covered for any non-EU transfers. Response within 3 business days.
What we never share
Respondent identities — because we never collect them. No IP addresses, no User-Agents, no cookies, no fingerprinting on form-fill pages. There is no respondent identity data to share with any sub-processor, because the database column for it does not exist (`schema.sql:53-64` — verified in code, publicly inspectable).