Nuclideon Nuclideon Subprocessor List
Last updated: April 7, 2026
Nuclideon engages the following third-party subprocessors to deliver our services. We take appropriate steps to ensure each subprocessor provides sufficient guarantees regarding the protection of personal information, consistent with our obligations under the EU General Data Protection Regulation (GDPR) and the Australian Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs).
Where subprocessors are located outside Australia or the European Economic Area (EEA), we ensure appropriate safeguards are in place — such as Standard Contractual Clauses (SCCs) under GDPR, and reasonable steps to ensure overseas recipients handle information consistently with the APPs (APP 8.1).
For questions about our subprocessors or data handling practices, contact us at info@nuclideon.com or refer to our Privacy Policy.
Customer Relationship Management
| Subprocessor | Purpose | Personal Data Processed | Entity Location | Data Residency | Safeguards |
|---|---|---|---|---|---|
| HubSpot, Inc. | CRM, marketing, and customer communications | Names, email addresses, interaction history, company details | United States | United States | SCCs (GDPR); APP 8.1 overseas recipient disclosure |
Productivity & Communications
| Subprocessor | Purpose | Personal Data Processed | Entity Location | Data Residency | Safeguards |
|---|---|---|---|---|---|
| Microsoft Corporation (Microsoft 365) | Email, calendar, and office productivity | Names, email addresses, message content, calendar data | United States | Australia (Australia Geography) | SCCs (GDPR); data residency within Australia |
| Microsoft Corporation (Copilot for Microsoft 365) | AI-assisted processing of M365 content including emails and documents | Names, email addresses, message content, document content | United States | Australia (Australia Geography) | SCCs (GDPR); data residency within Australia |
Development & Issue Tracking
| Subprocessor | Purpose | Personal Data Processed | Entity Location | Data Residency | Safeguards |
|---|---|---|---|---|---|
| Microsoft Corporation (Azure DevOps) | Ticketing, feedback management, and feature tracking | Names, email addresses, user-submitted feedback and issue content | United States | Australia (Australia Geography) | SCCs (GDPR); data residency within Australia |
Cloud Infrastructure & Hosting
| Subprocessor | Purpose | Personal Data Processed | Entity Location | Data Residency | Safeguards |
|---|---|---|---|---|---|
| Microsoft Corporation (Azure) | Cloud hosting, compute, and storage for supporting services | Dependent on hosted services | United States | United States / Global | SCCs (GDPR); APP 8.1 overseas recipient disclosure |
| Amazon Web Services, Inc. (AWS) | Cloud hosting, compute, and storage for udCloud instances — see instance table below | Customer Content and account data scoped to the relevant instance region | United States | See instance table below | SCCs (GDPR); APP 8.1 overseas recipient disclosure |
udCloud Instance Regions
| Instance | URL | AWS Region | Data Residency |
|---|---|---|---|
| udCloud Australia | au-udcloud.nuclideon.com | ap-southeast-2 (Sydney, Australia) | Australia |
| udCloud Global | udcloud.nuclideon.com | us-east-1 (Virginia, United States) | United States |
Customer Content and account data are stored and processed within the designated region for each instance. Data is not transferred outside that region except where necessary for support, security, or legal compliance purposes, and in accordance with our Privacy Policy and Terms of Service.
Additional regional instances may be added to this table over time. New instances represent an expansion of coverage under this existing AWS subprocessor entry and will be notified in accordance with the update process below.
Your Rights
Depending on your location, you may have rights regarding your personal data, including the right to access, correct, or request deletion of your information.
- Australian residents — your rights are set out in the Australian Privacy Principles under the Privacy Act 1988 (Cth). To make a privacy request, contact us at info@nuclideon.com.
- EEA/UK residents — under the GDPR you have the right to access, rectification, erasure, restriction of processing, data portability, and to object to processing. You also have the right to lodge a complaint with your relevant supervisory authority.
Full details are available in our Privacy Policy.
Updates to This List
We review and update this list as our subprocessors change. Where we engage a new subprocessor that processes personal data, we will publish an updated list at least 30 days prior to the new subprocessor commencing processing, consistent with our contractual and regulatory obligations. GDPR customers have a 15-day window to raise a written objection after receiving notice of a new subprocessor.
Customers may subscribe to email notifications of subprocessor updates by contacting support@nuclideon.com.
Continued use of our services after that date constitutes acknowledgement of the updated list, unless you raise an objection in accordance with your contractual rights under our Terms of Service.