Log inSign up

Sub-processors

Sola engages trusted third-party vendors to help deliver, operate, and improve our services. This page lists every sub-processor, what they do, and where data is processed — so you always have a clear and current picture of how your data is handled.

Last updated: Jun 11, 2026

Amazon Web Services logo Amazon Web Services aws.amazon.com
Purpose: Primary cloud infrastructure, compute, and storage for all Sola services
Category: Infrastructure
Location: EU / US
MongoDB, Inc. logo MongoDB, Inc. mongodb.com
Purpose: NoSQL database hosting for service data persistence
Category: Infrastructure
Location: US
ClickHouse logo ClickHouse clickhouse.com
Purpose: High-performance event and analytics database
Category: Infrastructure
Location: EU / US
OpenAI OpCo, LLC logo OpenAI OpCo, LLC openai.com
Purpose: LLM and generative AI infrastructure for security automation features
Category: AI & ML
Location: EU / US
Anthropic (Claude) logo Anthropic (Claude) anthropic.com
Purpose: LLM and generative AI infrastructure for security automation features
Category: AI & ML
Location: US
Frontegg, Ltd. logo Frontegg, Ltd. frontegg.com
Purpose: User management, authentication, and authorisation infrastructure
Category: Auth & Identity
Location: EU / US
Datadog Inc. logo Datadog Inc. datadoghq.com
Purpose: Platform performance monitoring, debugging, and alerting
Category: Observability
Location: US
Coralogix logo Coralogix coralogix.com
Purpose: Security information and event management (SIEM), log analysis
Category: Observability
Location: EU / US
Heap, Inc. logo Heap, Inc. heap.io
Purpose: Product usage analytics for feature development and UX improvements
Category: Analytics
Location: US
PostHog logo PostHog posthog.com
Purpose: Product analytics, session replay, and feature flags
Category: Analytics
Location: US
Product Fruits s.r.o. logo Product Fruits s.r.o. productfruits.com
Purpose: In-app user onboarding, product tours, and training flows
Category: Analytics
Location: EU
Slack Technologies logo Slack Technologies slack.com
Purpose: Internal team communication
Category: Communication
Location: EU / US
Twilio, Inc. logo Twilio, Inc. Segment & SendGrid
Purpose: Customer data platform (Segment) and transactional email delivery (SendGrid)
Category: Communication
Location: US
Freshworks Inc. logo Freshworks Inc. freshworks.com
Purpose: Technical support ticketing and customer service management
Category: Support
Location: US
Google, LLC logo Google, LLC google.com
Purpose: Workspace (email and document collaboration) and Google Analytics
Category: Business Ops
Location: US
HubSpot, Inc. logo HubSpot, Inc. hubspot.com
Purpose: Marketing automation and CRM for customer communications
Category: Business Ops
Location: US
Salesforce, Inc. logo Salesforce, Inc. salesforce.com
Purpose: Enterprise CRM for sales and account management
Category: Business Ops
Location: US
Stay informed of changes

Subscribe to receive advance notice whenever Sola adds, removes, or changes a sub-processor.

Frequently Asked Questions

What is a sub-processor?
A sub-processor is a third-party service provider engaged by Sola to process personal data on your behalf, in connection with Sola services. As your personal data processor, Sola is fully responsible for ensuring that each sub-processor is subject to appropriate data protection obligations consistent with Sola’s commitments under your DPA and in no case less than what applicable data protection law requires.
What is a sub-processor?
Why does Sola use sub-processors?
Building and running a reliable, secure platform and related services requires specialised infrastructure and services that we partner with best-in-class vendors to provide rather than replicate internally. This includes cloud infrastructure to host and protect your data, authentication services, analytics to improve the product, AI models that power our security automation features, and support tools to help our team serve you effectively.
Every sub-processor is selected with data security in mind and is bound by contractual data protection obligations consistent with Sola’s obligations under the applicable DPA and applicable data protection laws.
Why does Sola use sub-processors?
How do I subscribe to sub-processor change notifications?
Use the subscription form at the top of this page to receive email notifications. You will be notified in advance before any new sub-processor is authorised to process personal data. You have 14 days from receipt of that notice to raise a written objection, on grounds that the proposed sub-processor does not comply with applicable data protection law.
How do I subscribe to sub-processor change notifications?
Do you have Data Processing Agreements in place with sub-processors?
Yes. Before authorising any sub-processor to handle personal data, Sola enters into a written Data Processing Agreement with them. Each agreement requires the sub-processor to comply with applicable data protection law and to implement appropriate technical and organisational security measures.
Where required by applicable law — for example, for data transfers from the EU or UK — these agreements also incorporate the relevant Standard Contractual Clauses (SCCs).
Do you have Data Processing Agreements in place with sub-processors?
How are international data transfers safeguarded?
Personal data may be transferred to countries outside the EEA or UK when required in connection with the services. For transfers to countries not covered by a European Commission or UK adequacy decision, Sola relies on Standard Contractual Clauses (SCCs) and/or other applicable transfer mechanisms, such as the EU-U.S. Data Privacy Framework, as the lawful transfer mechanism.
Module II (Controller-to-Processor) applies to transfers from customers to Sola. Module III (Processor-to-Processor) applies to onward transfers from Sola to its sub-processors. For purposes of the SCCs, governing law is Ireland; disputes are subject to the courts of Dublin, as further described in the DPA. Please see the DPA for additional details regarding international data transfers and applicable transfer mechanisms.
How are international data transfers safeguarded?
How does Sola manage sub-processor changes?
Sola maintains this page as the current authoritative list of its authorised sub-processors. When Sola intends to appoint a new sub-processor, customers receive advance written notice before that sub-processor begins processing personal data.
Customers may raise a written objection within 14 days of receiving notice, on grounds that the proposed sub-processor does not comply with applicable data protection law. Sola will use reasonable efforts to resolve the objection within 60 days as provided under the DPA. If no resolution is reached, the affected portion of the agreement may be terminated. See the DPA for full details.
How does Sola manage sub-processor changes?
Where can I get more information?
For detailed information on how Sola processes personal data on your behalf, see the Data Processing Addendum. For information on Sola’s processing of personal data as a controller, see the Privacy Policy. Security certifications, audit reports, and our full security posture are available at the Trust Center. For specific questions, contact [email protected].
Where can I get more information?

Change log

DateChangeType
Jun 11, 2026Initial publication of standalone sub-processors page, listing Sola’s current authorized Sub-processors.Published