Sub-processors
The third parties engaged in the operation of Sekyr. Each sub-processor is contractually bound, via a Data Processing Agreement, to handle personal data in accordance with applicable data protection law, including the GDPR.
Active sub-processors
Who processes data on our behalf.
01 EUHetzner Online GmbH
Infrastructure- Purpose
- Cloud infrastructure: Kubernetes hosting, persistent volume storage, database hosting
- Personal data processed
- All personal data stored or processed by the service (encrypted at rest)
- Processing location
- Nuremberg, Germany
- Website
- hetzner.com
- Data Processing Agreement
- Read DPA
02 EUCloudflare, Inc.
Storage- Purpose
- Container image registry (R2 object storage); stores customer-uploaded Docker images and associated metadata
- Personal data processed
- Image content (may contain personal data embedded by the customer), repository and tag names, upload metadata, access logs
- Processing location
- European Union (R2 EU Jurisdictional Restriction)
- Website
- cloudflare.com
- Data Processing Agreement
- Read DPA
03 CHProton AG
Communications04 CHZitadel
Identity- Purpose
- Identity and access management; storage of user and organization data
- Personal data processed
- Name, email address, user identifiers, organization membership, authentication metadata
- Processing location
- Switzerland
- Website
- zitadel.com
- Data Processing Agreement
- Read DPA
Change notification
You'll hear from us before anything changes.
We will provide notice of any new sub-processor before they begin processing personal data, and before any material change in the scope of an existing sub-processor's processing.
To be notified of changes, write to privacy@sekyr.com and we will add you to the sub-processor change notification list. If you object to a proposed change, the procedure for raising that objection is set out in the Data Processing Agreement.
← Back to Trust CenterRegister · Last updated 2026-04-28