Sub-processors

(for PassFlow and DoorFlow)

Last updated:** 5 December 2025

NetNodes uses carefully selected third-party sub-processors to support delivery of the PassFlow and DoorFlow services. These sub-processors process Customer Data only as required to provide the core service functionality.

NetNodes conducts due-diligence checks, signs appropriate data processing agreements, and ensures all sub-processors meet GDPR requirements.

Sub-processors exclude providers used by NetNodes for sales, marketing, communications, HR, administrative or business operational purposes, where such providers do not process Customer Data as part of the Services.

Current Sub-processors

1. Hosting, Infrastructure & Networking

DigitalOcean, LLC

• Purpose: Cloud hosting, compute, storage, networking.
• Data processed: Customer account data, application data, metadata, logs.
• Regions used: Amsterdam (NL) and London (UK).
• Transfer mechanism: EU/UK hosting only; no international transfers.
• Website: digitalocean.com

Amazon Web Services (AWS)

• Purpose: Storage of customer images and binary assets (e.g., images, icon resources) using S3 in the EU region
• Data processed: Media assets and metadata uploaded by the customer
• Regions used: EU region (e.g., Dublin/Frankfurt depending on configuration)
• Transfer mechanism: EU/UK hosting only; no international transfers.
• Website: aws.com

2. Communications (Email, SMS, Voice)

Twilio, Inc.

• Purpose: SMS and phone communications for system alerts and MFA (if enabled).
• Data processed: Phone numbers, message content, delivery metadata.
• Location: USA / global.
• Transfer mechanism: SCCs + technical safeguards.
• Website: twilio.com

SendGrid (Twilio SendGrid)

• Purpose: Transactional email delivery.
• Data processed: Email addresses, email content, metadata.
• Location: USA.
• Transfer mechanism: SCCs.
• Website: sendgrid.com

3. Application Monitoring & Logging

AppSignal B.V.

• Purpose: Application monitoring and error reporting.
• Data processed: Error logs, metadata, anonymised contextual information.
• Location: EU.
• Transfer mechanism: No transfers outside EU.
• Website: appsignal.com

4. Analytics

Matomo Cloud (InnoCraft Ltd)

• Service: Privacy-focused web analytics (hosted cloud service)
• Locations: EU data centres (customer-selectable; typically EU)
• Data processed: Pseudonymised analytics data, device information, usage patterns
• Data protection: GDPR compliant; no cross-site tracking; no data sold
• Notes: Used instead of Google Analytics for privacy reasons.

5. Payments & Billing

Stripe Payments Europe Ltd

• Purpose: Subscription billing and payment processing.
• Data processed: Payment information, billing details, transaction metadata.
• Location: EU with controlled transfers to US.
• Transfer mechanism: SCCs.
• Website: stripe.com

PayPal (Europe) S.à r.l. et Cie, S.C.A.

• Purpose: Optional payment collection.
• Data processed: Payment information, account metadata.
• Location: EU + USA.
• Transfer mechanism: SCCs.
• Website: paypal.com

GoCardless Ltd

• Purpose: Bank-to-bank payments (Direct Debit).
• Data processed: Bank details, payer identity, transaction metadata.
• Location: UK + EU.
• Transfer mechanism: SCCs where necessary.
• Website: gocardless.com

6. Identity & Access (Enterprise SSO)

(Used only if enabled by enterprise customers.)

Microsoft Entra ID

• Purpose: Identity provider for SSO.
• Data processed: Authentication tokens, identity profile (minimal).
• Location: Customer-selected region (typically EU or UK).
• Transfer mechanism: SCCs if applicable.
• Website: microsoft.com

Google Workspace / Google Identity

• Purpose: Identity provider for SSO.
• Data processed: Authentication tokens, identity profile.
• Location: Customer tenancy settings.
• Transfer mechanism: SCCs.
• Website: google.com

7. Apple & Google Wallet Ecosystems

Apple Inc.

• Purpose: Delivery of Apple Wallet passes, updates, and push tokens.
• Data processed: Device identifiers, pass metadata, update tokens.
• Location: Global infrastructure.
• Transfer mechanism: SCCs + Apple global compliance framework.
• Website: apple.com

Google LLC (Google Wallet)

• Purpose: Delivery of Google Wallet passes and updates.
• Data processed: Device identifiers, pass metadata, update tokens.
• Location: Global infrastructure.
• Transfer mechanism: SCCs.
• Website: google.com

Sub-processor Changes

NetNodes will notify the Customer of any intended changes to its Sub-processors by updating this list. Customers may subscribe to change notifications at: https://policy.netnodes.net. Where required under GDPR, customers will have an opportunity to object to the appointment of a new Sub-processor within a reasonable period.