Effective Date: July 19, 2025
As part of delivering our cybersecurity services, WASViking LLC may engage the following subprocessors. These third-party service providers may process limited technical data (such as domain names, IP addresses, certificate metadata) strictly to support hosting, scanning infrastructure, or secure communications.
We ensure that all subprocessors are contractually bound to comply with strict data protection standards and are listed in our Data Processing Agreement (DPA).
| Subprocessor | Service Provided | Location | Legal Basis for Data Transfer | Learn More |
|---|---|---|---|---|
| AWS (Amazon Web Services) | Infrastructure Hosting (Primary Region: Virginia, USA) | ๐บ๐ธ United States | SCCs / EU-US Data Privacy Framework | Learn more |
| Cloudflare | WAF, TLS, DNS Protection | ๐ Global (US/EU) | SCCs / EU-US DPF | Learn more |
| MongoDB Atlas | Database Services | ๐บ๐ธ United States | SCCs / EU-US DPF | Learn more |
| OpenAI | Optional Technical Analysis (via GPT API) | ๐บ๐ธ United States | SCCs / EU-US DPF | Learn more |
| SendGrid (Twilio) | Email Delivery (2FA, Notifications) | ๐บ๐ธ United States | SCCs / EU-US DPF | Learn more |
| Stripe | Payment Processing (Subscription Plans) | ๐บ๐ธ United States | EU-US Data Privacy Framework | Learn more |
This list may be updated as our infrastructure evolves. Customers will be notified at least 30 days in advance before a new subprocessor is added, and may object on reasonable grounds.
For any questions regarding subprocessors or data protection, contact us at [email protected].
This page is part of WASVikingโs compliance with the GDPR, LGPD, and CCPA frameworks. For additional details, see our Terms of Service, Privacy Policy and Data Processing Agreement (DPA).