Data residency questions come up often, especially as clinics grow internationally. Here is the answer.
Where your data lives
Primary storage is in AWS us-east-1 (Northern Virginia). This includes:
- Customer accounts and orders
- Product catalogs and pricing
- Marketing data (emails, segments, sends)
- Files and uploads (in S3, same region)
Backups are replicated to AWS us-west-2 (Oregon) for disaster recovery.
Edge caches
Storefront pages and product images are served from a global CDN edge. The data on the edge is non-personal (just the cached HTML and image) — anything personal goes back to origin in us-east-1.
EU data
If you have customers in the EU, their data is processed under our standard contractual clauses (SCCs). The actual storage is still in us-east-1, but the SCCs cover the cross-border transfer legally.
For clinics that need EU data residency (data physically stored in the EU), we have an EU region available on the Enterprise tier. Customer data, order data, and storage all live in AWS eu-west-1 (Ireland). This is opt-in and adds a small monthly cost.
Subprocessors
Beyond AWS, our active subprocessors are:
- Stripe — payment processing (PCI-scope card data)
- Postmark — transactional email
- Twilio — SMS
- OpenAI / Anthropic / Replicate — AI providers
- Cloudflare — CDN, DDoS protection
- Sentry — error reporting
Full subprocessor list with current versions is at /legal/subprocessors. We update this 30 days before adding any new one.
Data export and deletion
You can export your data at any time (full export takes 24 hours to prepare). You can delete your account; deletion is processed within 30 days, with legally-required retention applied to specific records (tax, fulfillment).
Audit reports
For clinics that need a SOC 2 report, security questionnaire response, or HIPAA risk assessment for their own audit, contact your operator. We have these prepared and can share under NDA.