Kount Inc. performs real-time e-commerce internet order evaluations for merchants based on personal data provided to Kount by merchants around the world. Some of the data Kount processes originate from people located in the European Union (EU), making such processing subject to the EU’s General Data Protection Regulation (GDPR).

Kount acknowledges its obligations under the GDPR and is committed to providing best in class fraud prevention services in compliance with the GDPR. Data protection and security are, and always have been, a top priority at Kount. In addition to its proprietary security technologies, Kount is a PCI Level 1 service provider and undergoes extensive auditing, including a SOC 2, Type 2 audit, every year to ensure Kount’s technologies and processes are safe and secure. Kount, as a data processor under the GDPR, is fully committed to safeguarding the personal data of all people whose data Kount processes, including those located in the EU.

Kount uses certain sub-processors to assist it in providing Kount’s services. Kount is committed to partnering with sub-processors that meet or exceed the privacy and security obligations Kount is committed to providing to its clients. The following is an up-to-date list (as of the date of this policy) of the names and locations of Kount’s sub-processors:

Entity Name

Amazon Web Services, Inc.

Snowflake, Inc.

Subprocessing Activities

Cloud Service Provider

Cloud Service Software

Entity Country

United States

United States

Kount owns or controls access to the information systems infrastructure that Kount uses to provide Kount’s Services, other than as set forth herein. Currently, Kount’s production information systems used for hosting the Services are located in co-location facilities in the United States in the infrastructure sub-processors listed below:

Entity Name

Equinix, Inc.

Subprocessing Activities

Data Center

Entity Country

United States