Digital Ocean

digitalocean.com · facts updated 2 hours ago

Privacy facts at a glance

Jurisdictions: US · EU · EEA · UK · Switzerland · India · Finland · Poland
Subprocessors: 31
Retention: The duration of processing covered by the DPA shall be in accordance with the duration of the Agreement.
Transfer mechanism: EU-U.S. Data Privacy Framework (EU-U.S. DPF), UK Extension to the EU-U.S. DPF, Swiss-U.S. DPF; Standard Contractual Clauses and UK Addendum as fallback.
DPA available: Yes
GDPR addressed: Yes
CCPA addressed: Yes

Named subprocessors

Amazon Web Services Cloudflare Traversal BlogVault Immunify360 Telesign Twilio WPRemote Aiven Galileo Google (GCP) MongoDB

Tracked documents

https://www.digitalocean.com/legal/privacy-policy checked 2 hours ago

https://www.digitalocean.com/legal/terms-of-service-agreement checked 21 hours ago

Data processing agreement

https://www.digitalocean.com/legal/data-processing-agreement checked 20 hours ago

Subprocessor list

https://www.digitalocean.com/trust/subprocessors checked 4 hours ago

Security / trust page

https://www.digitalocean.com/security checked 18 hours ago

Recent changes

minor Privacy policy 2 hours ago

DigitalOcean's privacy policy diff reflects only navigation menu restructuring and page layout reformatting, with no changes to the substantive policy content, data collection practices, retention terms, or legal bases.

Public summary; per-account review history visible to subscribers tracking this vendor.

Track Digital Ocean in your workspace.

Get notified when Digital Ocean adds a subprocessor, changes retention, updates their DPA, or quietly amends their privacy posture.

Start tracking — 14-day trial

No card required.