Sub-processors List

Last updated July 15, 2026

Datarails engages the following sub-processors in connection with the provision of its Services. These sub-processors may process Customer Personal Data on Datarails’ behalf, as described below. For more information about Datarails’ processing of personal data, please refer to Datarails’ Data Processing Agreement.

VendorDescription of ProcessingType of Data ProcessedLocationSub-processors’ Measures of Safeguarding Personal Data
Microsoft Azure (including OpenAI Azure)Infrastructure, hosting, and AI-powered product features.User ContentUnited States, Canada and UKhttps://learn.microsoft.com/en-us/azure/security/
MongoAtlasDatabase hosting for application data and AI conversation sessionsUser SessionsUnited States, Canada and UK (Determined by Azure location)https://www.mongodb.com/trust
CloudflareDNS routing, network optimization, and DDoS edge security.Web Traffic Data and firewallWorldwide, automatically managed by geo locationhttps://www.cloudflare.com/trust-hub/
DescopeIdentity and access management, user authentication, single sign-on (SSO), and multi-factor authentication (MFA).Customer Users’ email addresses, authentication credentials, and region attribute.United Stateshttps://trust.descope.com/
OpenAIAI-powered data analysis, prompt responses, and text generation.User Content and User MetadataUnited Stateshttps://openai.com/security-and-privacy/
MixpanelProduct usage analytics and user behavior tracking.User product-usage events, user profiles (email, name, last login), and device/click metadataEUhttps://mixpanel.com/legal/security/
ZendeskCustomer support ticket management, customer communications, issue tracking, and support request handling.Customer Users’ contact information, support requests, communications, attachments, Customer Content voluntarily submitted through support interactions, and related metadata.EEA (Frankfurt)https://www.zendesk.com/trust-center/
WorkatoWorkflow automation and integration between Customer systems and the Datarails platform.User Content contained in Customer systems that is processed as part of configured integrations.United Stateshttps://www.workato.com/legal/security
QuarterzipAI-powered customer onboarding, user adoption, customer engagement, and post-sales guidance.Customer Users’ contact information (e.g., name and email), onboarding interactions, AI conversations, communications, and related metadata.United Stateshttps://trust.quarterzip.ai/
Twilio (SendGrid)Email delivery and inbound email processing for customer communications and integrations.Customer communications, email content, attachments (where applicable), sender and recipient email addresses, and related metadata.United States, Europehttps://www.twilio.com/en-us/security
TrustNetManaged Security Operations Center (SOC) logs and threat monitoring.Security event logs, system access tracks, and user IP addressesUnited States, Canada and UK (Determined by Azure location)https://trustnetinc.com/privacy/
GroundcoverObservability system (logs, metrics, traces)System logs, execution traces, and cluster performance metricsUnited States (Datarails subscription)https://trust.groundcover.com/

In addition to the sub-processors listed above, the following entities are affiliated entities of Datarails, and may also function as sub-processors:

Entity NameEntity Country
Datarails Inc.United States
Datarails Ltd.Israel