Subprocessors

An overview of our subprocessors

Last Updated: June, 2019



To support delivery of our Services, Virtual Vaults Nederland B.V. may engage and use data processors with access to certain client data (each, a "Subprocessor"). This page provides you with information about the identity and location of each Subprocessor.

Virtual Vaults currently uses third party Subprocessors to provide infrastructure services, and to help us provide customer support and send out email/SMS notifications. Before engaging any third party Subprocessor, Virtual Vaults performs an audit in order to evaluate their privacy, security and confidentiality practices.

Microsoft Azure / Office 365

Data processing location
Inside EU/EEA
(Storage location of Customer Data)

Security / privacy controls

  • ISO 27001
  • SOC 1, 2, 3
  • EU Model Clauses
  • EU-U.S. Privacy Shield
  • https://www.microsoft.com/en-us/trustcenter/security

SendGrid

Data processing location
United States

Security / privacy controls

  • SOC2 Type II
  • EU-US Privacy Shield
  • Cloud Security Alliance
  • https://sendgrid.com/policies/privacy/services-privacy-policy/

Zendesk

Data processing location
United States

Security / privacy controls

  • SOC2 Type II
  • ISO 27001
  • TRUSTe’s Privacy Seal Cloud
  • Security Alliance EU-US Privacy Shield
  • https://www.zendesk.com/company/customers-partners/eu-data-protection

Twilio

Data processing location
United States

Security / privacy controls

  • SOC2 Type II
  • Cloud Security Alliance
  • EU-US Privacy Shield
  • https://www.twilio.com/legal/privacy

DocuSign

Data processing location
Inside EU/EEA

Security / privacy controls

  • SOC 1 Type 2, SOC 2 Type 2
  • ISO 27001
  • ExDTM Standard
  • PCI DSS
  • CloudTrust
  • BCR-P certified
  • https://trust.docusign.com/en-us/trust-certifications/gdpr

Mailchimp

Data processing location
United States

Security / privacy controls

  • SOC 2 Type 2
  • TRUSTe’s Privacy Seal Cloud
  • EU-US Privacy Shield
  • https://mailchimp.com/about/security

Chargify

Data processing location
United States

Security / privacy controls

  • SOC 1 Type 2
  • PCI DSS Level 1 Compliant
  • EU-US Privacy Shield
  • https://www.chargify.com/security/

Drift

Data processing location
United States

Security / privacy controls

  • SOC 2 Type 2
  • Cloud Security Alliance
  • EU-US Privacy Shield
  • https://www.drift.com/security/