The list identifies cloud infrastructure providers as subprocessors, disclosing that Datadog's platform relies on third-party cloud hosting entities to store and process customer monitoring data, with those entities' locations and processing roles disclosed.
This analysis describes what Datadog's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Cloud infrastructure subprocessors typically have access to the broadest category of customer data within the platform, as they provide the underlying compute and storage on which all Datadog services operate, making them a primary focus for transfer impact assessments and data residency evaluations.
Interpretive note: The specific cloud infrastructure providers named in the list could not be confirmed from the extracted HTML; description is based on standard subprocessor list conventions for SaaS monitoring platforms.
This provision establishes that the physical and logical infrastructure underlying Datadog's services is operated by third-party cloud providers, meaning customer monitoring data including metrics, logs, and traces resides on infrastructure controlled by entities other than Datadog itself.
Cross-platform context
See how other platforms handle Cloud Infrastructure Subprocessors and similar clauses.
Compare across platforms →Monitoring
Datadog has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
1) REGULATORY LANDSCAPE: Cloud infrastructure providers as subprocessors engage GDPR Article 28 requirements most directly, as they typically process the full scope of customer data rather than a subset. Data residency requirements in specific jurisdictions, including the EU, may require verification of the region in which each cloud provider processes data. Relevant enforcement authorities are EU national supervisory authorities and sector-specific regulators in financial services and healthcare. 2) GOVERNANCE EXPOSURE: High. Cloud infrastructure subprocessors are the broadest-scope processors in any SaaS architecture. Controllers must confirm that data residency, transfer mechanisms, and security obligations applicable to the cloud provider align with their own compliance requirements. 3) JURISDICTION FLAGS: EU customers with data residency requirements must confirm that cloud infrastructure processing occurs within approved regions. Financial services customers in certain jurisdictions may have regulatory requirements regarding the geographic location of data processing. Healthcare customers should assess whether HIPAA Business Associate obligations extend to cloud infrastructure subprocessors. 4) CONTRACT AND VENDOR IMPLICATIONS: Procurement teams should confirm that Datadog's DPAs with cloud infrastructure subprocessors include security, confidentiality, and data protection obligations equivalent to those in the customer-facing DPA. Audit rights and incident notification obligations should also be verified. 5) COMPLIANCE CONSIDERATIONS: Compliance teams should document the cloud infrastructure subprocessors and their processing regions, assess data residency compliance, and confirm that incident response procedures account for cloud infrastructure provider involvement in the event of a data breach.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 3 platforms + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Cloud infrastructure subprocessors typically have access to the broadest category of customer data within the platform, as they provide the underlying compute and storage on which all Datadog services operate, making them a primary focus for transfer impact assessments and data residency evaluations.
This provision establishes that the physical and logical infrastructure underlying Datadog's services is operated by third-party cloud providers, meaning customer monitoring data including metrics, logs, and traces resides on infrastructure controlled by entities other than Datadog itself.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Datadog.