Skip to content

EU Data Residency

Your data never leaves the European Union. We store and process all data exclusively within EU borders, ensuring compliance with the strictest data residency requirements.

Where your data is stored

All Sitenyx data is stored in PostgreSQL databases hosted in European data centers. We use infrastructure providers that maintain ISO 27001 certified facilities within the EU, ensuring your business data remains within EU jurisdictional boundaries at all times.

Infrastructure components

Every component of the Sitenyx platform runs within the EU. Here is where each service operates:

  • PostgreSQL Databases Primary data storage for all 21 microservices, hosted in EU data centers with automated backups.
  • Redis Cache In-memory caching and session management, running on EU-based infrastructure.
  • RabbitMQ Message queue for async service communication, hosted within the EU.
  • File Storage Cloudflare R2 pinned to the EU (EEUR / Frankfurt region) for all uploaded files and media — including encrypted guest-ID documents.

Application data stays in the EU; AI prompts transit the US

Your application database, file storage, and backups stay within EU borders. AI prompt content sent to the platform's AI features (the AI page builder and AI content tools) is processed by Anthropic, PBC in the United States under Standard Contractual Clauses (SCC) and the EU-US Data Privacy Framework. Anthropic does not retain or train on your prompts (Anthropic Commercial DPA art. 5). The full sub-processor list is published in the platform DPA.

Encryption in transit and at rest

All data is encrypted using AES-256 at rest and TLS 1.3 in transit. Database connections use SSL certificates, and inter-service communication is encrypted. API keys and credentials are stored in encrypted vaults, never in source code.

Backup and disaster recovery

Automated daily backups are stored within the EU, with point-in-time recovery capabilities. Backup data is encrypted and geographically distributed across multiple EU availability zones for resilience. This meets the Bogforingsloven requirement that backup copies must be stored within the EU.

Frequently Asked Questions

Which specific EU country hosts my data?
Our primary infrastructure runs in Western European data centers. The exact locations may change as we scale, but all facilities are within the EU/EEA and maintain ISO 27001 certification.
Do you use sub-processors outside the EU?
Yes — Anthropic (US) processes AI prompt content for the platform's AI features (the AI page builder and AI content tools), and Twilio (US) handles SMS notifications. Both transfers run under Standard Contractual Clauses (SCC) plus the EU-US Data Privacy Framework. All other core data — application database, file storage, backups, payments (Stripe EU), email (Resend EU) — stays within the EU. The full version-controlled sub-processor list is published in the platform DPA.
What about the US CLOUD Act?
Application data, file storage, and backups are physically stored within the EU/EEA. AI prompt content transits the United States under SCC + EU-US Data Privacy Framework while it is processed by Anthropic; Anthropic operates a no-retention API tier so the data is not stored on US servers after the response is returned. EU data protection law and the SCC obligations take precedence over US legal process where they conflict.
Can I migrate my data to another EU provider?
Yes. Under the EU Data Act, you have the right to export all your data in standard, machine-readable formats. We support full data portability with no switching fees.

Ready to get started?

Join thousands of Danish businesses using Sitenyx to run their business and build their online presence.

View pricing