Privacy Policy
Subprocessors
Oplane uses third-party services to operate the website and the application. Each subprocessor has been evaluated for their data protection practices.
Website
| Service | Purpose | Location |
|---|---|---|
| Vercel | Hosting | US / EU |
| Vercel Analytics | Website Analytics | US / EU |
| Google Tag Manager | Tag Management | US |
| FormKeep | Form Submissions | US |
| Calendly | Demo Booking | US |
Application
| Service | Purpose | Location |
|---|---|---|
| Microsoft Azure | Infrastructure Service | EU |
| Azure OpenAI | AI Security Analysis | Global |
| Amazon Web Services (AWS) | Domain & DNS | US / EU |
| AWS Bedrock | AI Models | US / EU |
| Anthropic (Claude) | AI Code Analysis | US |
| GitHub | Source Code Integration | US |
| SendGrid | Transactional Emails | EU |
| PostHog | Product Analytics | EU |
| Google OAuth | Authentication | US |
| Okta | Authentication (SSO) | US |
| Atlassian (Jira) | Project Integration | US / EU |
| Cloudflare Turnstile | Bot Protection | Global |
Where subprocessors are located outside the EU/EEA, transfers are covered by Standard Contractual Clauses (SCCs) or equivalent safeguards. Microsoft services (Azure, Azure OpenAI) are covered by Microsoft's EU Data Protection Addendum, which includes Standard Contractual Clauses approved by the European Commission. We will update this list if our subprocessors change and notify affected customers where required.
Data Processing Agreement
Request a DPA
To request a signed Data Processing Agreement, contact us at info@oplane.io. We aim to respond within 5 business days. Enterprise plan customers receive a DPA as part of their onboarding.
Contact
If you have questions about our legal policies or how we handle your data, you can reach us at: