Data Subprocessors
Entities that process personal data on our behalf under Art. 28 GDPR.
Version: 18 May 2026
Crowdee GmbH (“Crowdee”, “we”, “us”) uses the third parties listed below to process personal data on our behalf. This list is kept current and covers only those processors that handle data relating to our customers, prospects, or platform users. Tools used exclusively for internal HR or employee administration (e.g. absence.io, TGP Steuerberatung) are not included here; they are covered under our internal data inventory.
Our regional hosting and automation backend are operated by Crowdee on infrastructure that we control directly. The details in our Privacy Policy explain which services run on our own servers and which are handled by the processors below.
Current Subprocessors
| Subprocessor | Function | Location | Transfer Safeguards | Relationship |
|---|---|---|---|---|
| netcup GmbH | Primary hosting infrastructure for the Crowdee platform and website | Germany (EU) | EU-based — no transfer mechanism required | Processor (Art. 28 GDPR) |
| Amazon Web Services (AWS) | Backup storage, static asset hosting, and compute for select workloads | EU (Frankfurt) | EU-based — no transfer mechanism required | Processor (Art. 28 GDPR) |
| Brevo (ex. Sendinblue) | Email marketing, transactional emails, and CRM email automation | France (EU) | EU-based — no transfer mechanism required | Processor (Art. 28 GDPR) |
| Calendly LLC | Meeting scheduling and calendar integration for sales calls and demos | USA | EU-US Data Privacy Framework + Standard Contractual Clauses (Art. 46 GDPR) | Processor (Art. 28 GDPR) |
| Zoom Video Communications | Video conferencing for sales calls, team meetings, and customer demos | USA | Standard Contractual Clauses (Art. 46 GDPR) | Processor (Art. 28 GDPR) |
| OpenRouter AI Inc. | LLM routing API for dynamic model selection in chatbot and verification pipelines | USA | Standard Contractual Clauses (Art. 46 GDPR) | Processor (Art. 28 GDPR) |
| Anthropic PBC | LLM provider for AI chatbot, content verification, and demo features (Claude models) | USA | Standard Contractual Clauses (Art. 46 GDPR) | Processor (Art. 28 GDPR) |
| OpenAI Inc. | LLM provider for AI chatbot, content verification, and demo features (GPT models) | USA | Standard Contractual Clauses (Art. 46 GDPR) | Processor (Art. 28 GDPR) |
| Haufe-Lexware GmbH & Co. KG | Accounting, invoicing, and offer-document generation; contains auto-generated vendor/supplier CRM | Germany (EU) | EU-based — no transfer mechanism required | Processor (Art. 28 GDPR) |
| PayPal | Payment service provider for online customer payments | Multiple / Global (Luxembourg EU headquarters) | Standard Contractual Clauses (Art. 46 GDPR); EU-US DPF where applicable | Processor (Art. 28 GDPR) |
| Deutsche Bank AG | Banking partner for wire transfers and business banking | Germany (EU) | EU-based — no transfer mechanism required | Independent Controller |
| Prolific | Crowdsourcing platform for recruiting research participants and crowd workers | United Kingdom (EEA + adequacy decision) | UK adequacy decision + Standard Contractual Clauses as fallback | Processor (Art. 28 GDPR) |
| Clickworker GmbH | Crowdsourcing platform for microtasks and data enrichment / labeling | Germany (EU) | EU-based — no transfer mechanism required | Processor (Art. 28 GDPR) |
How to read this list
- Processor (Art. 28): The entity processes personal data on Crowdee’s instructions under a written Data Processing Agreement (DPA).
- Independent Controller: The entity processes data under its own legal obligations (e.g., banks under payment-services law). It is not acting on our instructions, but we disclose it for transparency.
- EU-based / No transfer mechanism: The processor operates within the EU/EEA where the GDPR applies directly; no adequacy decision, SCCs, or BCRs are required for the transfer.
Changes and notification
We review and update this list at least once per year, and whenever we add or remove a subprocessor. We will notify subscribed enterprise customers of material changes in advance. If you have questions about this list, please contact us at privacy@crowdee.ai.