Illizeo — Header EN (preview mega-menus)
Login Try for free →
Sub-processors

Illizeo
sub-processors.

In accordance with article 28 of GDPR, here is the up-to-date list of sub-processors involved in providing our Illizeo Cloud Solutions SaaS services.

Version May 2026 GDPR art. 28 & FADP compliant

Background

Illizeo places the highest importance on protecting the personal data of its customers and their employees. In accordance with article 28 of GDPR, Illizeo ensures all its sub-processors meet the same legal, contractual and technical requirements as Illizeo itself.

Contractual scope: the sub-processors below operate within the provision, maintenance and support of our services. They may access certain data under conditions strictly framed by contracts compliant with GDPR art. 28 and the Swiss FADP. Some are optional (e-signature, SSO).

Sub-processors involved in processing

Sub-processor
Country
Service type
Data concerned
Safeguards
Infomaniak Network SA
Core
🇨🇭 Switzerland
Cloud hosting, databases, backups
HR data, customer documents, configuration files
100% Swiss hosting, GDPR & FADP, ISO 27001
Microsoft Ireland Operations Ltd.
Optional — SSO
🇪🇺 EU
Authentication (Entra ID), document storage (OneDrive), collaboration tools
Identifiers, access metadata, internal documents
EU hosting, GDPR, ISO 27001
Atlassian Pty Ltd.
Core
🇪🇺 / 🇺🇸
Tickets and project documentation (Jira, Confluence)
Contact data, support ticket content
Standard Contractual Clauses, GDPR
Google Ireland Ltd.
Core
🇪🇺 EU
Internal collaboration tools (Google Workspace)
Internal Illizeo data only
GDPR, ISO 27001
DocuSign Inc.
Optional — Signature
🇪🇺 / 🇺🇸
Electronic signature of contracts
Last name, first name, email, signature, signed-document metadata
SCCs, GDPR, ISO 27001
Adobe Inc. (Adobe Sign)
Optional — Signature
🇪🇺 / 🇺🇸
Alternative electronic signature
Last name, first name, email, electronic signature
SCCs, GDPR
Okta Inc.
Optional — SSO
🇪🇺 / 🇺🇸
Authentication and identity management (SSO)
Identifiers, login metadata
SCCs, GDPR
Stripe Payments Europe Ltd.
Core
🇮🇪 IRL
Online payment platform (subscriptions)
Contact details, payment info, transaction amounts/dates, device data for fraud detection
EU/UK GDPR, CCPA, EU-US & CH-US Frameworks
Verifi, Inc.
Optional — Stripe
🇺🇸 USA
Resolution and reduction of Stripe transaction disputes
Business user data and end-customer data related to transactions
SCCs, administrative, technical and physical safeguards

Contractual obligations and compliance

Illizeo ensures that:

• Each sub-processor is bound by a sub-processing contract compliant with GDPR art. 28
• No data transfer outside the EU/Switzerland is performed without appropriate safeguards (SCCs, local hosting, or adequacy decision)
• Sub-processors implement robust technical and organisational measures
• Sub-processors only process data on documented instructions from Illizeo

Notifications and updates

Illizeo undertakes to inform its customers in advance of any change of sub-processor, giving them the opportunity to object in accordance with the DPA signed with Illizeo.

Living list: this page is kept continuously up to date and remains available at any time.

Contact

For any question regarding data protection and sub-processing:

Illizeo Sàrl
Chemin des Saules 12A, 1260 Nyon, Switzerland
dpo@illizeo.com

Legal hub

All our legal documents in one place.

Data Processing Addendum

The standard DPA we sign with our customers.

View →

Technical & Organisational Measures

Detail of the security measures we apply.

View →

Privacy Policy

How we collect, use and protect your data.

View →