Oct 09, 2018

Nuclino data hosting policy: Where we store your data and why

Nuclino data hosting policy

Our customers trust us with one of their most valuable resources – the knowledge of their teams and companies. That's why data protection is of the utmost importance to us at Nuclino and we built our platform to the highest standards of privacy and security.

Compliance with the GDPR became an important measure to further protect the privacy of our users, but in today's security-conscious world it's not enough. More and more companies adopt strict data residency requirements which is why we chose to host our customer data within the EU.

Where we host your data

Infrastructure subprocessors

The infrastructure subprocessors we use to host customer data are located in the EU, meaning that the data you create or upload in Nuclino is hosted in the EU and never leaves the EU after being collected.

Our servers are hosted by Amazon Web Services, in an ISO 27001 and ISO 27018-compliant SOC2 data center, and your data is continuously backed up. AWS is the largest and one of the most sophisticated hosting companies in the world, with extensive security measures in place, both physical and digital.

The data centers are protected by physical access controls, intrusion and fire detection systems, and 24/7 manned security. Authorized staff must pass two-factor authentication at least twice before accessing the data center floors.

Other subprocessors

We use several additional subprocessors to perform a number of different functions, such as customer support, billing, and payment processing, some of which may transfer your data to the US. These service providers were carefully selected and meet high data protection and security standards. We only share information with them that is required for the services offered and contractually bind them to keep that information confidential.

Visit our privacy page to find the full list of processors and subprocessors we use.

Why the EU

With the EU having some of the strongest data privacy laws in the world, your data is well protected. Once derided as restrictive, the tight data protection regulations have proven to be a necessity after the recent privacy breach scandals in the US that exposed the data of millions of customers. The GDPR, a new privacy law which came into effect this year, significantly strengthened the regulations for how your data is collected, used, shared, and secured, and we ensure full compliance of Nuclino and its infrastructure.

Whether you are based in Europe or anywhere else in the world, we aim to provide you with the highest level of data security and privacy and as such will continuously review and reinforce our security practices to ensure your data is held in the most secure hosting environment.

Learn more about our privacy policy

We value your trust and understand your concerns over the privacy of your data. Learn more about Nuclino’s investment in security and privacy, including automatic backups, file encryption at rest, and other comprehensive security features and practices.

In case you have any questions about our privacy policy or require a Data Processing Addendum (DPA), please contact us.