Sub-processors

Current list of sub-processors komplai uses. The list is updated on changes; all changes are notified in writing 30 days before going live, with a right of objection per the DPA. Version 1.0 — published 19 May 2026.

2026-05-19

Hosting · Hetzner Online GmbH (DE) · required

Industriestraße 25, 91710 Gunzenhausen, Germany. Used for all primary operation of the komplai suite (web, hub, docs, templates, redact, redact-detect, NER, LibreOffice, Postgres, Zitadel, hocuspocus, gatus). Hetzner acts as sub-processor under their standard DPA with EU standard contractual clauses. Physical location: Falkenstein, Germany (test and prod on separate physical boxes). Backups stored in the same location. No data leaves the EU.

On-prem LLM · komplai DGX Spark (DK) · required

Local Nvidia DGX Spark server located at komplai in Denmark. Used for all 'Local model' calls — the default AI provider every tenant gets. NER and LLM fallback for redact, AI template generation, dev chat. The connection between Hetzner and DGX Spark runs over a private Headscale tailnet with WireGuard encryption. No third party with access. Not a separate legal sub-processor — it is komplai's own hardware, listed here for completeness.

AI providers (optional) · only if you actively select them

If you select an external AI provider in your tenant settings, text content is sent to that provider. The following are supported: Anthropic PBC (USA), OpenAI OpCo LLC (USA), Mistral AI SAS (FR), xAI Holdings LLC (USA), DeepSeek (CN), Groq Inc. (USA), Microsoft Azure OpenAI (EU region). Each is subject to its own DPA — links provided on activation. The default choice is 'Local model' (DGX Spark), so none of these is active on a standard installation. If you use 'Local model' there are no additional sub-processors beyond Hetzner.

Mail / transactional communication · One.com (DK/EU) · required

Used exclusively for transactional emails (contact-form confirmation, user invitations, login notifications) via SMTP relay. Content: email address + message text. Location: EU. No marketing emails; no tracking pixels. No processing of customers' document content.

Auth · self-hosted Zitadel · required (same Hetzner)

Identity and login platform. Zitadel runs as a container on the same Hetzner infrastructure as the rest of komplai — not a separate legal party. Per-tenant federation to your own IdP (Entra ID, ADFS, OneLogin, Okta and others) is supported; your users then sign in via you, and only their tenant affiliation (not the login session) reaches komplai's databases.

GitHub Inc. · source code + CI/CD · required · no customer data

GitHub.com is used for source code hosting and CI/CD pipelines (build, test, deploy). GitHub has no access to customer data; they handle only source code + build artefacts. Standard contractual clauses via Microsoft's DPA. Listed here for transparency, not because they are a data processor in the GDPR sense.

Changes

Adding, removing or replacing a sub-processor is notified in writing 30 days before going live by email to the contact person you have designated on the master agreement. Within 14 days you may object in writing; if the parties cannot find a mutually acceptable solution within the notification period, you may terminate the master agreement without further notice. This page is updated at the same time as the notification, and the latest update date is shown at the top.