DPA & Sub-processors
This page lists sub-processors used for the Colloxa marketing website. Customer platform DPAs, transfer mechanisms and residency commitments are provided under signed engagement.
1. Website sub-processors
The following sub-processors support colloxa.com and form submissions. Analytics sub-processors load only after you accept analytics cookies.
Analytics providers may process data in the United States or other jurisdictions. Where required, we rely on appropriate safeguards such as standard contractual clauses. See our Privacy Policy for transfer detail.
- Cloudflare: hosting, CDN, and security.
- Resend: transactional email for pilot, architecture review, and security artefact requests.
- Google Analytics 4: website analytics (consent required).
- Microsoft Clarity: session analytics (consent required).
- Google Tag Manager: tag management (consent required).
2. Platform processing
Processing inside the Colloxa platform during a pilot or production engagement is governed by a Data Processing Agreement signed with each customer. Sub-processor lists, transfer mechanisms, customer-record handling boundaries, and residency commitments are documented there, not on this marketing site.
3. DPA requests
To request a DPA template, the current platform sub-processor list, or security posture materials during diligence, email support@colloxa.com.
4. Updates
We will update this page when website sub-processors change. Material platform sub-processor changes are notified to contracted customers per their DPA.
Contact
Questions: support@colloxa.com