Sub-processors

Last updated April 2, 2026

SikkerKey engages the following third-party sub-processors for the provision of the Service. Each sub-processor processes data on our behalf under a data processing agreement compliant with Article 28 of the GDPR.

This list is updated when sub-processors are added or removed. Material changes will be communicated via email or dashboard notification at least 30 days before they take effect.

Hetzner Online GmbH

www.hetzner.com
Purpose
Infrastructure hosting (application servers, databases, file storage)
Data processed
All data processed by the Service, including encrypted secrets, account data, audit logs, and session data
Location
Germany (EU)
Transfer mechanism
Article 28 GDPR compliant DPA

Cloudflare, Inc.

www.cloudflare.com
Purpose
DNS, DDoS protection, CDN, and TLS termination
Data processed
IP addresses, HTTP request metadata (headers, paths, methods), and TLS connection data in transit
Location
Global edge network (EU data processing available)
Transfer mechanism
Standard Contractual Clauses + EU-U.S. Data Privacy Framework

Stripe, Inc.

stripe.com
Purpose
Payment processing, subscription billing, and invoice management
Data processed
Email address, Stripe customer ID, subscription metadata. Payment card details, billing addresses, and invoices are managed exclusively by Stripe and are never stored on SikkerKey systems.
Location
United States (EU-U.S. Data Privacy Framework)
Transfer mechanism
Standard Contractual Clauses + EU-U.S. Data Privacy Framework

Data not shared with sub-processors

  • Encrypted secrets — While encrypted secret blobs are stored on Hetzner infrastructure, sub-processors have no access to the plaintext content. Decryption requires the server encryption key, which exists only in server memory and is never stored on disk or transmitted to any sub-processor.
  • Machine private keys — Ed25519 private keys are generated and stored on the machine itself. Only the public key is transmitted to SikkerKey.
  • Geolocation lookups — IP geolocation is performed against locally-hosted MaxMind databases. No IP addresses are transmitted to MaxMind or any external geolocation service.

Questions

For questions about our sub-processors or data processing practices, contact [email protected].

See also: Privacy Policy · Terms of Service