Third party sub-processors
Last updated: 8th Apr 2025
To provide and enhance the services of Booking Momentum, we work with a small number of trusted third-party service providers. These partners process data on our behalf and are essential to delivering our platform. We maintain GDPR-compliant data processing agreements with each provider.
Our Sub-Processors
| Service Provider | Purpose | Data Location | Safeguards |
|---|---|---|---|
| Microsoft Azure | Hosting, database, and backups | UK South (London) | Data encrypted at rest and in transit; GDPR-compliant DPA |
| Datadog | Real-time monitoring and audit logging | EU-based data centers | Encryption in transit; SCCs in place; GDPR-compliant |
| Stripe | Payment processing | Global | PCI DSS Level 1; GDPR-compliant DPA |
| SendGrid (by Twilio) | Transactional email delivery | EU and US | Data encrypted in transit; SCCs in place; GDPR-compliant DPA |
Data Transfers & Safeguards
We ensure all sub-processors handle data in line with the UK GDPR. When data is transferred outside the UK or EEA, we rely on approved mechanisms such as Standard Contractual Clauses (SCCs) to maintain compliance.
Review & Updates
We regularly review our sub-processors and update this list when changes occur. If we add a new processor that may affect your data, we’ll notify you in advance if required.
Contact Us
If you have any questions about our data processing or GDPR compliance, please reach out to us at [email protected].