FaiceTech believes organisations should understand how sensitive technology is hosted, supported and governed. This page summarises core hosting, data residency, sub-processor and supplier assurance information for the current platform.
FaiceTech follows a UK-first hosting and data residency approach, with limited third-party services governed through supplier assurance and data protection controls.
Core platform services are deployed in UK regions by default, so operational data stays in the UK unless a justified exception applies.
Disaster recovery archives are stored in EU encrypted object storage where applicable.
Limited third-party services are used for specific operational purposes, governed through supplier assurance and data protection controls.
A limited set of third-party services support hosting, monitoring, transactional communications and technical messaging.
Third-party services are assessed using a risk-based supplier governance approach. FaiceTech considers the nature and scope of processing, data residency, international transfer considerations, technical and organisational measures, contractual obligations, ongoing suitability and proportionality of supplier use. Supplier assurance supports FaiceTech's wider approach to privacy, security and accountable service delivery.
Yes. FaiceTech uses a limited number of third-party services to support hosting, monitoring, transactional communications and technical messaging. These providers are governed through supplier assurance and data protection controls.
No. FaiceTech provides public transparency about supplier roles, data residency and safeguards, but does not publish sensitive implementation details that could expose attack surfaces or proprietary platform design.
Yes. FaiceTech's core platform is hosted on DigitalOcean infrastructure, which maintains SOC 2 Type II assurance. FaiceTech itself is not currently presenting itself as SOC 2 certified.