Last Reviewed : 6 March 2024

The Company uses the following sub-processors to assist in providing the Services. Depending upon the Services ordered pursuant to and set out in the Agreement, the sub-processors include:

Sub-processor: Google LLC
Purpose: Google Workspace Suite. Sheets, Docs. Internal document storage and collaboration tools.
Data: Limited personal data including name, email addresses and telephone number. File and folder data which can contain limited personal data.
Location of Sub-processor: USA
Transfer Mechanism: DPF
Supplemental Measures: Not required. DPA
Contact details: https://cloud.google.com/ Googleplex. 1600 Amphitheatre Pkwy, Mountain View, CA 94043, USA

Sub-processor: Microsoft Corporation
Purpose: Microsoft Azure, Office 365 – office software and storage services including Outlook and OneDrive.
Data: Personal data included in e-mails, documents and other data transferred in an electronic form in the context of using MS services. Realistically containing all forms of personal data.
Location of Sub-processor: USA
Transfer Mechanism: DPF
Supplemental Measures: Not required. DPA
Contact details: dpoffice@microsoft.com One Microsoft Way, Redmond, Washington 98052, USA

Sub-processor: Zendesk Inc.
Purpose: Helpdesk platform providing customer support and ticketing.
Data: Personal data, including name, email address, contact number.
Location of Sub-processor: USA
Transfer Mechanism: DPF
Supplemental Measures: Not required. DPA
Contact details: privacy@zendesk.com 989 Market Street, San Francisco, CA 94103, USA

Sub-processor: Kaseya Holdings Inc. (IT Glue)
Purpose: Centralised secure storage of customer details, relating to all their key IT details, relevant to support their IT services.
Data: Personal data of end users, limited to names, email address and telephone numbers.  Other non-personal data includes items likes customer’s domain name records, Microsoft 365 login.
Location of Sub-processor: USA
Transfer Mechanism: SCCs
Supplemental Measures: Encryption of data at rest and in transit DPA
Contact details: Tel: +1 877 926-0001 Kaseya Privacy Administrator, 701 Brickell Avenue, Suite 400, Miami, FL 33131, USA

Sub-processor: ProofPoint Inc.
Purpose: Secure email scanning inbound/outbound for our customer’s email service.
Data: Personal data included in e-mails, documents and other data transferred in an electronic form in the context of using MS services.  Realistically containing all forms of personal data.
Location of Sub-processor: USA
Transfer Mechanism: DPF
Supplemental Measures: Not required. DPA
Contact details: privacy@proofpoint.com 925W Maude Ave, Sunnyvale, California 94089-1443, USA

Sub-processor: Dropbox Inc.
Purpose: Internal document storage for general files and folders.
Data: Personal data including name, email addresses and telephone number. File and folder data which can contain limited personal data.
Location of Sub-processor: USA
Transfer Mechanism: DPF
Supplemental Measures: Not required. DPA
Contact details: officer@dropbox.com 1800 Owens St Ste 200, San Francisco, California 94158-2381, USA

Sub-processor: Pulsant Ltd
Purpose: Data centre colocation provider.
Data: Houses the infrastructure, which in turn accommodates data storage, which may include all types of personal data (i.e. our customer data).
Location of Sub-processor: UK
Transfer Mechanism: EU Adequacy Decision
Supplemental Measures: Not required. DPA
Contact details: compliance@pulsant.com Blue Square House, Priors Way, Maidenhead, Berkshire, SL6 2HP, United Kingdom

Sub-processor: Redcentric Solutions Ltd
Purpose: Data centre colocation provider
Data: Houses the infrastructure, which in turn accommodates data storage, which may include all types of personal data (i.e. our customer data).
Location of Sub-processor: UK
Transfer Mechanism: EU Adequacy Decision
Supplemental Measures: Not required. DPA
Contact details: data.protectionofficer@redcentricpc.com Central House, Beckwith Knowle, Harrogate, HG3 1UG, United Kingdom

Sub-processor: Digital Realty Trust Inc.
Purpose: Data centre colocation provider.
Data: Houses the infrastructure, which in turn accommodates data storage, which may include all types of personal data (i.e. our customer data).
Location of Sub-processor: USA
Transfer Mechanism: SCCs
Supplemental Measures: Encryption of data at rest and in transit. DPA
Contact details: privacy@digitalrealty.com Jeanie Lee, General Counsel, 5707 Southwest Parkway, Building 1, Suite 275, Austin, TX 78735

Sub-processor: Palo Alto Networks Inc.
Purpose: Internet security firewall vendor. Scans for threats in and out of our Cloud platform.
Data: Interrogates all data transmission in/out of our Cloud services platform. All forms of personal data is able to traverse this service, i.e. at the control of our customers. Some data might be automatically sent for sampling, to vendor’s Cloud.
Location of Sub-processor: USA
Transfer Mechanism: SCCs
Supplemental Measures: Encryption of data at rest and in transit. DPA
Contact details: privacy@paloaltonetworks.com Attention: Privacy Palo Alto Networks, Inc. 3000 Tannery Way, Santa Clara, CA 95054, USA

Sub-processor: SonicWALL Inc.
Purpose: Internet security firewall vendor. Scans for threats in and out of our Cloud platform.
Data: Interrogates all data transmission in/out of our Cloud services platform. All forms of personal data is able to traverse this service, i.e. at the control of our customers. Some data might be automatically sent for sampling, to vendor’s Cloud.
Location of Sub-processor: USA
Transfer Mechanism: SCCs
Supplemental Measures: Encryption of data at rest and in transit. DPA
Contact details: dataprivacy@sonicwall.com 1033 McCarthy Blvd, Milpitas, CA 95035, USA

Sub-processor: Asana Inc.
Purpose: Project mapping and management software.
Data: Personal data is limited to name, email address and telephone number, of our customer and their end users.
Location of Sub-processor: USA
Transfer Mechanism: DPF
Supplemental Measures: Not required. DPA
Contact details: ericamrozowicz@asana.com 633 Folsom St, Suite 100, San Francisco, California 94107, USA

Sub-processor: Hubspot Inc.
Purpose: Sales and CRM software
Data: Personal data is collected for the purposes of the sales process, administration of contracts and invoicing.
Location of Sub-processor: USA
Transfer Mechanism: DPF
Supplemental Measures: Not required. DPA
Contact details: privacy@hubspot.com Nicholas Knoop, Director, Senior Corporate Counsel, HubSpot, Inc., 25 1ST St Ste 200,Cambridge, Massachusetts 02141-1802, USA

Sub-processor: Xero (UK) Ltd
Purpose: Invoicing and financial software
Data: Personal data is collected for invoicing purposes.
Location of Sub-processor: UK
Transfer Mechanism: EU Adequacy Decision
Supplemental Measures: Not required. DPA
Contact details: Privacy at Xero 5th floor, 100 Avebury Boulevard, Milton Keynes, MK9 1FH, United Kingdom

Sub-processor: Duo Security LLC
Purpose: Multi-Factor Authentication Access Management
Data: Personal data is collected for security purposes from users of the Cloud services platform.
Location of Sub-processor: USA
Transfer Mechanism: DPF
Supplemental Measures: Not required. DPA
Contact details: rajdhal@cisco.com Americas Privacy Officer & Counsel, Cisco Systems, Inc., 170 West Tasman Drive, San Jose, CA 95134, USA