Heap Trust Center
Over 10,000 businesses trust Heap to power their analytics. Maintaining that trust is our paramount concern.
This page gives you access to relevant information regarding our approach to privacy, security, and compliance.
Over 10,000 businesses trust Heap to power their analytics. Maintaining that trust is our paramount concern.
This page gives you access to relevant information regarding our approach to privacy, security, and compliance.
The following lists table lists Heap’s current affiliates and third-party sub-processors who are authorized to process personal data in connection with the Heap Services:
Last Updated: February 2024
Amazon Web Services (AWS)
Hosts the Services and Customer Data and backups
USA
Datadog
Provides monitoring and alert services on system performance
USA
Google Cloud Platform
Hosts the Services and Customer Data and backups
USA
Amazon Web Services (AWS)
Hosts the Services and the Customer Data and backups
USA, Europe
Microsoft Azure
Hosts the Services and the Customer Data and backups
USA, Europe
Auryc
Performs analytics and reporting on Customer Data
USA
Contentsquare
Performs analytics and reporting on Customer Data
Consulting, support, maintenance, implementation, and development
France
Snowflake
Hosts the Heap data lake and creates data analytics and reports of Customer Data
USA
IBM
IBM Performs analytics and reporting on Customer Data
USA
Zendesk
Customer support
USA
Hotjar
Consulting, support, maintenance, implementation, and development
Malta
OpenAI
Provides large language model
USA
Contentsquare
Professional services partner
France
Hotjar
Professional services partner
Malta
Scaletrix
Professional services partner
India
Brooklyn Data
Professional services partner
USA
Mammoth Growth
Professional services partner
USA
Ragnarok
Professional services partner
USA
Unipro
Professional services partner
USA
“Heap Services” means the products and services provided by Heap to Customers under an agreement signed between them.
“Personal Data”, “Processing”, “Processor”, “Sub-processor” shall have the meaning as defined under applicable data protection laws.
To subscribe to updates concerning Heap's Sub-processor List, please use this Request Form or send an email to privacy@contentsquare.com with a request to subscribe, and you will be provided with updates on any changes in this list.
For any additional information concerning Heap’s data processing practices or any specific Sub-processors, please send an email to privacy@contentsquare.com identifying the Sub-processor and the requested information.
A customer (in its capacity as Data Controller) may object to Heap’s use of a specific Sub-processor in accordance with the terms of the Data Processing Agreement governing the relations between the parties. Such objection may be sent by email to privacy@contentsquare.com (subject line “Sub-processor Objection”) containing the following information:
Customer Entity Name
Sub-processor Entity Name
Grounds for Objection
Requestor Name
Requestor Email
Objections must be based on legitimate data protection grounds in accordance with the terms of Heap’s standard Data Processing Agreement.