We're committed to protecting your data and maintaining transparency about our security practices.
Last updated: June 3, 2026
We are a technology company based and registered in South Africa.
SiteSpeakAI is GDPR compliant. We act as a data processor on our customers' behalf and provide the contractual and technical safeguards required to process EU and UK personal data lawfully:
We also support compliance with the UK GDPR, South Africa's POPIA, and California's CCPA/CPRA.
If you have any questions or requests regarding your personal data, please contact us at [email protected].
Our Data Processing Agreement outlines how we handle your personal data and ensures compliance with privacy regulations.
We work with trusted third-party service providers to deliver our services. All subprocessors are contractually bound to protect your data.
| Service Provider | Purpose | Location | Transfer Mechanism | DPA Status |
|---|---|---|---|---|
| Anthropic | AI language model processing | United States | Standard Contractual Clauses | Available |
| Better Stack | Log management & monitoring | United States | Standard Contractual Clauses | Available |
| Cloudflare | CDN, DNS & DDoS protection | United States | EU-US Data Privacy Framework | Available |
| Cohere | Search result reranking | Canada | Adequacy decision (Canada) | Available |
| DigitalOcean | Cloud hosting, database & storage | United States | EU-US Data Privacy Framework | Available |
| Drip | Email marketing automation | United States | EU-US Data Privacy Framework | Available |
| AI language model processing | United States | EU-US Data Privacy Framework | Available | |
| LlamaIndex | Document parsing | United States | Standard Contractual Clauses | Available |
| Microsoft Azure | Speech-to-text processing | United States | EU-US Data Privacy Framework | Available |
| Nightwatch | Application performance monitoring | United States | EU-US Data Privacy Framework | Available |
| OpenAI | AI language model processing & embeddings | United States | Standard Contractual Clauses | Available |
| Paddle | Payment processing (merchant of record) | United Kingdom | Standard Contractual Clauses | Available |
| Pinecone | Vector database (content search) | United States | Standard Contractual Clauses | Available |
| PostHog | Product analytics | United States | EU-US Data Privacy Framework | Available |
| Pusher | Real-time messaging | United Kingdom / United States | Standard Contractual Clauses | Available |
| Resend | Transactional email | United States | Standard Contractual Clauses | Available |
| ScrapingBee | Web page rendering for indexing | France (EU) | Not applicable (EU) | Available |
| Sentry | Error monitoring | United States | EU-US Data Privacy Framework | Available |
| Tolt | Affiliate tracking | United States | Standard Contractual Clauses | Available |
| Upstash | Caching (Redis) | United States | EU-US Data Privacy Framework | Available |
| xAI | AI language model processing | United States | Standard Contractual Clauses | Available |
You have the following rights regarding your personal data:
To exercise any of these rights, contact us at [email protected]