Sub-Processor Name: Microsoft Corporation
Services Provided: Cloud computing services, data storage, and productivity tools (via Microsoft Azure and Microsoft 365).
Location: Global (data centers in various regions, including North America, Europe for the respective markets. Users in Europe don't use data centers outside of Europe, the same applies to Users in North America who only use data centers in North America).
Nature of Data Processed: Customer data including, but not limited to, personal data (e.g., names, email addresses), usage data (e.g., service interaction logs), and content stored in Microsoft services (e.g., documents, emails).
Purpose of Processing: Hosting, storage, and management of data, providing productivity services (e.g., Word, Excel, Outlook, Teams), supporting enterprise-level communication, and offering data analytics and security features.
Contractual Obligations: Microsoft adheres to data protection standards, including the General Data Protection Regulation (GDPR), and provides the necessary Data Processing Agreement (DPA) to customers. They also offer commitments regarding data security, availability, and confidentiality.

​

​

Sub-Processor Name: Wix.com
Services Provided: Website hosting, design, and lead generation tools.
Location: Global (with data centers in multiple regions, depending on customer location).
Nature of Data Processed: Personal data (e.g., names, email addresses, phone number, if provided in a from submission), usage data (e.g., website interaction, form submissions), and potentially lead data (e.g., contact information submitted by website visitors).
Purpose of Processing: Hosting and managing the website, facilitating lead capture forms, and providing analytics and marketing tools to engage visitors and gather leads.
Contractual Obligations: Wix complies with data protection regulations such as GDPR and provides a Data Processing Agreement (DPA) for customers using their platform for processing personal data. They also implement security measures to protect the data hosted on their platform.

​

​

Sub-Processor Name: Close CRM
Services Provided: Customer relationship management, sales automation, and lead tracking tools.
Location: Global (with data centers in various regions, depending on customer location).
Nature of Data Processed: Personal data (e.g., names, email addresses, phone numbers, job titles), interaction data (e.g., call logs, emails, meeting notes), and sales data (e.g., opportunities, deal progress, purchase history).
Purpose of Processing: Storing, managing, and analyzing customer and lead data to facilitate sales and customer communication, track interactions, and improve sales workflows.
Contractual Obligations: Close CRM complies with data protection regulations such as GDPR and provides a Data Processing Agreement (DPA) to ensure compliance. The provider also outlines security measures to protect personal data and provides tools for managing consent and ensuring data subject rights.