Last updated: October 2025
At CMR Management, we use a small number of carefully selected third-party service providers (“sub-processors”) to help us deliver our services securely and efficiently.
All sub-processors are vetted for compliance with the EU General Data Protection Regulation (GDPR), and data transfers outside the EU are protected by the EU Standard Contractual Clauses (SCCs) where applicable.
Current Sub-Processors
| Sub-Processor | Purpose | Location | Data Processed | More Information |
|---|---|---|---|---|
| Stripe Payments Europe Ltd. | Payment processing and subscription billing | Ireland (EU) | Billing details, name, email | stripe.com/legal/privacy-center |
| EuPlatesc.ro SRL | Alternative payment processing | Romania (EU) | Payment details, name, email | euplatesc.ro/politica-de-confidentialitate |
| Cloudflare, Inc. | Content delivery, caching, and DDoS protection | EU & US | IP addresses, DNS and CDN traffic | cloudflare.com/gdpr Data transfers to the US are protected under EU Standard Contractual Clauses (SCCs). |
| Contabo GmbH | Server hosting and infrastructure provider | Germany (EU) | All stored user and application data | https://contabo.com/en/legal/privacy/ |
User Rights
If we add or replace a sub-processor, we will update this page at least 30 days before the change takes effect.
If you object to the use of a new sub-processor, you may contact us at
📧 [email protected] within 30 days of the update notice.
Questions
For data protection or GDPR-related inquiries, please contact:
📧 [email protected]