100% EU-Hosted
Every byte of your data stays in Europe. All infrastructure providers operate exclusively in EU data centers.
Why EU-only matters
After the Schrems II ruling invalidated the EU-US Privacy Shield, transferring personal data to US-based services became legally complex. Standard Contractual Clauses (SCCs) exist but require individual risk assessments — and several EU DPAs have ruled that US cloud providers cannot guarantee adequate protection due to FISA 702 and Executive Order 12333.
VulpaSoft eliminates this risk entirely. Every sub-processor in our stack operates in EU data centers. No data crosses the Atlantic, ever.
Our infrastructure
| Service | Provider | Location | Purpose |
|---|---|---|---|
| Database | Supabase | Frankfurt, DE | User accounts, project config |
| Event streaming | Tinybird | Frankfurt, DE | Click events, scroll data, session events |
| Cache & queues | Upstash | Frankfurt, DE | Rate limiting, real-time processing |
| Application hosting | Vercel | Frankfurt, DE | Dashboard, API, tracking endpoint |
| Payments | Stripe | EU | Billing and invoicing |
Post-Schrems II compliance
Because all VulpaSoft infrastructure is EU-based, we do not rely on SCCs, adequacy decisions, or any other transfer mechanism for behavioral analytics data. This simplifies your compliance posture and eliminates the need for Transfer Impact Assessments (TIAs) for VulpaSoft data.
Data residency guarantee
Our Data Processing Agreement (DPA) includes an explicit data residency clause confirming that all processing occurs within the EU. This can be provided to your DPO, legal team, or regulatory auditors on request.
EU-hosted analytics, ready in 2 minutes
Free plan available. Frankfurt-hosted. No US transfers.
Start free