Last updated: December 2025
Complyr uses a small number of trusted third-party service providers (sub-processors) to deliver and support its complaint case management platform. These sub-processors process personal data only on Complyr’s instructions and are subject to contractual obligations that meet UK GDPR requirements.
Cloud hosting and infrastructure services for the Complyr app.
Primary data hosting is in the United Kingdom and the European Economic Area. In limited circumstances, personal data may be transferred or accessed outside the UK or EEA, including where required for service delivery, support, security, or resilience purposes.
Amazon Web Services maintains independently audited information security certifications and attestations, including ISO 27001 and SOC 2 Type II. Complyr relies on these certifications together with its own complementary technical and organisational measures to protect personal data processed within the platform.