This page lists third-party service providers that Laksa uses to operate our platform. All service providers are carefully selected and operate under relevant data processing agreements.
Infrastructure and Hosting
Application Hosting
Provider: To be determined Purpose: Web application hosting and compute infrastructure Data Processed: All application data including user accounts, content, and subscriber information Location: United Kingdom / Europe Privacy Measures: Encrypted data transmission, access controls, regular security audits
Database Hosting
Provider: To be determined Purpose: PostgreSQL database hosting for persistent data storage Data Processed: All structured data including accounts, subscriptions, content, and analytics Location: United Kingdom / Europe Privacy Measures: Encrypted at rest and in transit, automated backups, access logging
Email Services
Email Delivery
Provider: To be determined Purpose: Transactional email delivery (magic links, notifications, newsletters) Data Processed: Email addresses, email content, delivery status, engagement metrics Location: Multiple regions (optimized for deliverability) Privacy Measures: TLS encryption, bounce/complaint handling, DKIM/SPF authentication
Note: Email engagement tracking (opens and clicks) is implemented by Laksa, not the email service provider. The provider only handles delivery.
Content Delivery
Static Assets
Provider: Standard web hosting infrastructure Purpose: Delivery of CSS, JavaScript, images, and static files Data Processed: Request logs (IP addresses, user agents) Location: United Kingdom / Europe Privacy Measures: HTTPS encryption, minimal logging
Security Services
DDoS Protection
Provider: Infrastructure-level protection Purpose: Protect against denial-of-service attacks Data Processed: Request metadata, IP addresses, traffic patterns Location: Edge locations globally Privacy Measures: Automatic threat detection, minimal data retention
Analytics and Monitoring
Application Monitoring
Provider: Self-hosted / first-party Purpose: Monitor application performance and errors Data Processed: Error logs, performance metrics, anonymized request data Location: United Kingdom / Europe Privacy Measures: No third-party tracking, data retention limits
Note: Laksa does not use third-party analytics services like Google Analytics. All analytics are first-party and focused on content performance, not user behavior.
Data Processing Agreements
All service providers who process personal data on behalf of Laksa operate under:
- Data Processing Agreements (DPAs): Contractual agreements that define data handling responsibilities
- GDPR Compliance: Adherence to EU data protection regulations
- Security Standards: Industry-standard security practices and certifications
- Audit Rights: Our right to audit their security and privacy practices
- Data Breach Notification: Obligation to notify us of any data breaches
No Data Sharing with Third Parties
Laksa does not share user data with:
- Advertising networks
- Marketing platforms
- Data brokers
- Social media platforms
- Analytics services (beyond first-party)
Changes to This List
This page will be updated as our infrastructure evolves. Check the “Last Updated” date for the most recent version.
If you have questions about our service providers, please contact us:
Privacy Inquiries: privacy@geodica.com General Support: help@laksa.io
This page is effective as of October 27, 2025.