> ## Documentation Index
> Fetch the complete documentation index at: https://documentation.idenfy.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Data Residency

> Learn where iDenfy processes and stores verification data across EU data centers and explore available data residency configuration options.

## Processing Locations

iDenfy processes verification data in **EU-based data centers**, ensuring compliance with European data protection regulations.

| Data type                 | Processing location | Storage location |
| ------------------------- | ------------------- | ---------------- |
| Document images           | EU                  | EU               |
| Biometric data (liveness) | EU                  | EU               |
| Extracted personal data   | EU                  | EU               |
| AML screening data        | EU                  | EU               |
| API logs                  | EU                  | EU               |

## Data Residency Options

For customers with specific data residency requirements:

| Option             | Description                                             | Availability                                                    |
| ------------------ | ------------------------------------------------------- | --------------------------------------------------------------- |
| **EU (default)**   | All data processed and stored within the European Union | All customers                                                   |
| **Custom regions** | Data processing in specific jurisdictions               | Enterprise plans — [book a demo](https://idenfy.com/demo-page/) |

<Note>
  Data residency configurations apply to data at rest. Transient processing may involve EU-based infrastructure regardless of residency configuration. Contact your account manager for detailed data flow documentation.
</Note>

## Sub-Processors

iDenfy uses a limited set of sub-processors for service delivery. A current list of sub-processors is available upon request as part of the Data Processing Agreement (DPA).

All sub-processors are:

* Contractually bound to equivalent data protection obligations
* Located within the EU/EEA, or covered by Standard Contractual Clauses
* Subject to regular security assessments

## Certifications

| Certification  | Scope                                       |
| -------------- | ------------------------------------------- |
| SOC 2 Type II  | Security, availability, and confidentiality |
| ISO 27001      | Information security management             |
| GDPR compliant | EU data protection regulation               |

<Tip>
  Need a Data Processing Agreement, sub-processor list, or security questionnaire response? Contact **[dpo@idenfy.com](mailto:dpo@idenfy.com)** or your account manager.
</Tip>