2020 Platform.sh Transparency Report

Report on Governmental Authority Data Requests 

Platform.sh, like many other technology companies, occasionally receives requests from law enforcement and governmental authorities seeking information about Platform.sh customers. These requests may be in the form of a National Security Letter, FISA or Cloud Act order, or other official law enforcement demand (e.g. subpoena, court order, search warrant). Whenever Platform.sh receives a request for data, we ask the law enforcement or governmental authority to make the request directly to the affected customer. Sometimes, direct governmental contact with the affected customer is not possible.

Platform.sh is obligated to comply with legally sound and verified requests for customer data. However, Platform.sh is committed to maintaining the trust of our customers and promises to do the following:

  • diligently review and verify each request,
  • challenge the release of personal data where possible, and/or narrow the request as much as possible,
  • provide notice to our customers when not prohibited from doing so, and
  • respond to the request accordingly

Further, to the extent permitted, Platform.sh informs our customers and the public about valid requests through this Transparency Report.

Requests from Non-EU Authorities 

Due to the nature of Platform.sh’s services, we have customers and subsidiaries worldwide. When we receive requests from non-EU law enforcement or governmental authorities, we work with the appropriate outside legal counsel to determine the validity of the request and our ability to respond under applicable laws.
Requesting authority Number of requests Content Data Disclosed Metadata Disclosed Number of affected clients
Controller Processor Controller Processor
Law enforcement 0 0 0 0 0 0
Other governmental authority 0 0 0 0 0 0
The following chart is a further breakdown of the USA specific type of request received. Note that the numbers below are included in the chart above.
Requesting authority Number of requests Content Data Disclosed Metadata Disclosed Number of affected clients
Controller Processor Controller Processor
National Security Letters 0 0 0 0 0 0
FISA orders 0 0 0 0 0 0
Cloud Act orders 0 0 0 0 0 0

Requests from EU Authorities 

Requesting authority Number of requests Content Data Disclosed Metadata Disclosed Number of affected clients
Controller Processor Controller Processor
Law enforcement 0 0 0 0 0 0
Other governmental authority 0 0 0 0 0 0

Report on Abuse Reports Received 

As an online platform, Platform.sh occasionally receives notices, complaints, or content removal requests from law enforcement, governmental authorities, or other parties regarding illegal content that has been hosted on Platform.sh (Abuse Reports).

Platform.sh is legally obligated to comply with valid requests and must take steps to protect its services against misuse, such as blocking users or suspending projects after prior warning to the customer providing the illegal content. Platform.sh may also suspend services on its own accord due to Terms of Service, legal, or other violations. However, Platform.sh will notify its customer of any decision it makes.

Further, to increase transparency regarding content moderation Platform.sh has engaged in during the past year, we publish the following report.

Type of request Total number of requests Number of unfounded requests Type of illegal content Basis for action taken (Laws or Terms of Service) Average time needed for taking actions (days)
Orders received from Government authorities 0 0 n/a n/a n/a
Complaints received via support requests 1 0 Abuse of services Terms of Service 1 day
Notices submitted via abuse email 10 5
  • phishing attack
  • crypto miner (2)
  • trademark infingement (2)
Terms of Service 1 day
Content moderation engaged at Platform.sh's own initiative 1 0 Abuse of services Terms of Service 1 day