Sub-processors List
Last updated July 15, 2026
Datarails engages the following sub-processors in connection with the provision of its Services. These sub-processors may process Customer Personal Data on Datarails’ behalf, as described below. For more information about Datarails’ processing of personal data, please refer to Datarails’ Data Processing Agreement.
| Vendor | Description of Processing | Type of Data Processed | Location | Sub-processors’ Measures of Safeguarding Personal Data |
| Microsoft Azure (including OpenAI Azure) | Infrastructure, hosting, and AI-powered product features. | User Content | United States, Canada and UK | https://learn.microsoft.com/en-us/azure/security/ |
| MongoAtlas | Database hosting for application data and AI conversation sessions | User Sessions | United States, Canada and UK (Determined by Azure location) | https://www.mongodb.com/trust |
| Cloudflare | DNS routing, network optimization, and DDoS edge security. | Web Traffic Data and firewall | Worldwide, automatically managed by geo location | https://www.cloudflare.com/trust-hub/ |
| Descope | Identity and access management, user authentication, single sign-on (SSO), and multi-factor authentication (MFA). | Customer Users’ email addresses, authentication credentials, and region attribute. | United States | https://trust.descope.com/ |
| OpenAI | AI-powered data analysis, prompt responses, and text generation. | User Content and User Metadata | United States | https://openai.com/security-and-privacy/ |
| Mixpanel | Product usage analytics and user behavior tracking. | User product-usage events, user profiles (email, name, last login), and device/click metadata | EU | https://mixpanel.com/legal/security/ |
| Zendesk | Customer support ticket management, customer communications, issue tracking, and support request handling. | Customer Users’ contact information, support requests, communications, attachments, Customer Content voluntarily submitted through support interactions, and related metadata. | EEA (Frankfurt) | https://www.zendesk.com/trust-center/ |
| Workato | Workflow automation and integration between Customer systems and the Datarails platform. | User Content contained in Customer systems that is processed as part of configured integrations. | United States | https://www.workato.com/legal/security |
| Quarterzip | AI-powered customer onboarding, user adoption, customer engagement, and post-sales guidance. | Customer Users’ contact information (e.g., name and email), onboarding interactions, AI conversations, communications, and related metadata. | United States | https://trust.quarterzip.ai/ |
| Twilio (SendGrid) | Email delivery and inbound email processing for customer communications and integrations. | Customer communications, email content, attachments (where applicable), sender and recipient email addresses, and related metadata. | United States, Europe | https://www.twilio.com/en-us/security |
| TrustNet | Managed Security Operations Center (SOC) logs and threat monitoring. | Security event logs, system access tracks, and user IP addresses | United States, Canada and UK (Determined by Azure location) | https://trustnetinc.com/privacy/ |
| Groundcover | Observability system (logs, metrics, traces) | System logs, execution traces, and cluster performance metrics | United States (Datarails subscription) | https://trust.groundcover.com/ |
In addition to the sub-processors listed above, the following entities are affiliated entities of Datarails, and may also function as sub-processors:
| Entity Name | Entity Country |
| Datarails Inc. | United States |
| Datarails Ltd. | Israel |