Legal
Subprocessors
StaySynq uses the third-party service providers listed below to deliver its platform. All subprocessors are bound by data processing agreements consistent with GDPR Article 28.
Last updated: 29 May 2026
We will provide at least 10 days' notice before adding a new subprocessor that processes personal data. Customers who have signed a DPA with StaySynq may object to a new subprocessor within that notice period.
| Subprocessor | Purpose | Data location |
|---|---|---|
| Amazon Web Services (AWS) | Cloud infrastructure, compute, storage, and database hosting | United States (multi-region) |
| Cloudflare | CDN, DDoS protection, DNS, and edge network | United States |
| Stripe | Payment processing and card tokenisation | United States |
| Razorpay | Payment processing for India region | India |
| Zoho Mail (SMTP) | Transactional email delivery (lead notifications, system alerts) | India / United States |
| Slack Technologies | Internal operational alerts via webhook (no customer PII transmitted) | United States |
| Google (reCAPTCHA / Fonts) | Font delivery via Google Fonts CDN | United States |
Changes to this list
We review subprocessors quarterly and update this page when providers are added, changed, or removed. Customers subscribed to security notifications at security@staysynq.com are notified directly.
Questions
Contact our Data Protection team at privacy@staysynq.com or review our Data Processing Agreement.