Sub-processor Notice
Last updated: 21 March 2026 · LOCAVERDI B.V.
1. Purpose
This notice lists the third-party sub-processors that LOCAVERDI B.V. engages to provide the Readmodel® service, in accordance with Art. 32 of the NLdigital Terms 2025 and GDPR Art. 28. Users have the right to object to changes in sub-processors as specified in Art. 32.3 of the NLdigital Terms.
2. Current sub-processors
| Sub-processor | Purpose | Location | Data processed |
|---|---|---|---|
| Mistral AI mistral.ai |
AI report generation (Mistral API) | France (EU) | Project data (with anonymised project name and user names). Service names, data items, descriptions, classifications, transfers, and access mappings are transmitted. See section 3 for anonymisation details. |
| Mollie B.V. mollie.com |
Payment processing for subscription billing | Netherlands (EU) | Billing name, email, payment method details, transaction amounts. Processed under Mollie's PCI DSS-compliant infrastructure. |
| Jortt B.V. jortt.nl |
Invoice generation for accounting | Netherlands (EU) | Company name, billing address, VAT number, invoice line items, amounts. |
| InnoCraft Ltd matomo.org / innocraft.com |
Website analytics (Matomo Cloud, cookieless mode) | Luxembourg (EU) | Anonymised page view data (URL, referrer, browser type, screen size, country). IP addresses anonymised before storage. No cookies, no persistent identifiers. Public pages only. |
| Keila (Pentacent OÜ) keila.io |
Newsletter delivery | Estonia (EU) | Email address of voluntary newsletter subscribers. Open-source platform, EU-hosted. Subscribers can unsubscribe at any time. |
| CrowdSec SAS crowdsec.net |
Infrastructure security (threat detection and prevention) | France (EU) | IP addresses of incoming requests, attack type classification. Malicious IPs are shared with the CrowdSec community blocklist to protect other users. No other personal data is transmitted. |
| Additional sub-processors (hosting, email) will be listed here once production infrastructure is finalised. | |||
3. AI data anonymisation
Before project data is submitted to the AI provider, Readmodel® applies the following anonymisation:
- Project name is replaced with "Project".
- Data user names are replaced with sequential labels ("User 1", "User 2", etc.).
- De-anonymisation is applied to the AI response before it is stored and displayed to the user.
The following data is not anonymised and is transmitted as entered by the user:
- Service names (e.g. "Microsoft 365", "Salesforce")
- Service descriptions and purpose statements
- Data item names and descriptions
- Data classification names
- Transfer descriptions, types, and mechanisms
- User-to-service and service-to-item access mappings
- DPIA records and backup strategy information
- Breach register: aggregated statistics only (total count, severity distribution, notification status). No breach titles, descriptions, consequences, or personal data are sent.
- DSAR register: aggregated statistics only (total count, rights type distribution, response status). No data subject names, emails, or request details are sent.
4. Safeguards for AI data processing
Data transmitted to Mistral AI (France, EU) is subject to:
- Anonymisation of project and user names before transmission.
- Mistral AI's data processing terms and privacy commitments.
- Data is used solely for generating the requested report and is not retained by Mistral AI for training purposes (per Mistral AI's API data usage policy).
5. Changes to this notice
LOCAVERDI B.V. will update this notice when sub-processors are added, removed, or changed. In accordance with Art. 32.3 of the NLdigital Terms, clients will be informed of changes and have the right to object.
6. Contact
Questions about sub-processors or data processing? Contact us.