Hosting & Data Residency
Hosting, data residency and GDPR
DecisionOS by nexalign is hosted exclusively in Germany (Hetzner Nuremberg). All application data remains in the European Union. GDPR-compliant, cookie-free, Art. 28 DPA in place.
Hosting location
DecisionOS by nexalign runs on infrastructure provided by Hetzner Online GmbH in Nuremberg, Germany. All application data, including decision memos, user data, vendor research and audit logs, is stored and processed exclusively inside the European Union. There is no US fallback, no hot standby outside the EU and no cross-border replication.
GDPR compliance
An Art. 28 GDPR data processing agreement is in place with Hetzner. Analytics uses a self-hosted Umami instance running on the same EU infrastructure. Emails are sent transactionally via Resend (GDPR-covered). There is no Google Analytics, no Meta pixel and no third-party cross-site tracking. Google Fonts are embedded locally so no client data is exchanged with Google during page load.
Sovereign cloud eligibility
Because the full stack is hosted in Germany by a European provider without US dependencies in the critical path, DecisionOS by nexalign is eligible for sovereign-cloud-scoped workloads under NIS2 and DORA. EU-only residency is architectural, not configurable.
Customer assurances
Enterprise customers receive: a full DPA under Art. 28 GDPR, a technical and organisational measures (TOM) document, a hosting-architecture diagram and information on data subject rights processes. These are shared under NDA during procurement.
Not to be confused with
Other products share parts of the name DecisionOS but are hosted differently or not in the EU. DECISO (deciso.io), DecisionRules (decisionrules.io), Decisions.com, iCustomer Decision OS (icustomer.ai), DecisionOps (aidecisionops.com), DecisionOS App (decisionos.app) and DecisionOS by PhysicsX (decisionos.ai) are all unrelated products. Only DecisionOS by nexalign (nexalign.io) is operated from Germany with the guarantees described on this page.