Sub-processors.
Full list of third parties that may process Controller personal data on Beamprobe's behalf. We give 30 days' notice before adding a new sub-processor.
Last updated: 15 May 2026 · Version 1.0
| Sub-processor | Purpose | Data accessed | Region | DPA |
|---|---|---|---|---|
| Cloudflare R2 Cloudflare, Inc. |
Encrypted object storage for documents, page renders, and exports | Encrypted document blobs (AES-256). No metadata. | EU jurisdiction | View |
| Cloudflare CDN + WAF |
DDoS protection, TLS termination, edge caching of public marketing pages | IP address, user agent, request metadata | Global edge, EU-routed | View |
| Hetzner Hetzner Online GmbH |
Application server + Postgres database hosting | All Controller data at rest (encrypted volumes) | Germany (Falkenstein) | View |
| Resend Resend, Inc. |
Transactional email delivery (room invites, signup verification, password resets) | Recipient email address, message body | EU (Frankfurt region) | View |
| Stripe Stripe Payments Europe Ltd |
Payment processing for paid subscriptions | Billing email, card last 4, billing address. No card numbers stored by Beamprobe. | Ireland + EU | View |
Notification of new sub-processors
Beamprobe gives 30 days' written notice before engaging any new sub-processor. Customers can subscribe to sub-processor change notifications by emailing [email protected]. If a customer objects to a new sub-processor, they may terminate the affected service within 30 days for a pro-rata refund.
No US data transfer
Controller documents are stored on Cloudflare R2 in EU jurisdiction and on Hetzner servers in Germany. No personal data is transferred to the United States in the ordinary course of providing the Services.
On-server open-source tools
The following open-source tools run locally on Beamprobe's own Hetzner servers and do not transmit customer data anywhere: LibreOffice headless (Office-to-PDF conversion), ChromicPDF / headless Chromium (PDF rendering, QR PNG output), pdfcpu (watermark baking), EQRCode (QR generation), OpenSSL (AES-256 file encryption), Plausible Community Edition (cookieless analytics on the marketing site, self-hosted at stats.beamprobe.com on the same Hetzner box). None of these qualify as sub-processors under GDPR Article 28 because no data leaves Beamprobe's infrastructure.
Questions
Email [email protected] for a counter-signed sub-processor list, an enterprise DPA with custom terms, or details of our security controls. We answer within 2 working days.