AI PROVIDER

AI Providers used by DEON

Last updated: 1 April 2026
This page provides transparency about the AI service providers integrated in DEON (“AI providers“).

DEON GmbH & Co. KG ("DEON") works with carefully selected AI providers to offer optional AI-powered features within the DEON platform. These providers process user inputs and generated outputs only when AI features are explicitly enabled by users or their organizations (opt-in).

DEON ensures that all processing complies with the EU General Data Protection Regulation (GDPR) and, where applicable, the EU Artificial Intelligence Act (Regulation (EU) 2024/1689).

Current AI Providers

OpenAI, LLC

  • Headquarters: 3180 18th Street, San Francisco, CA 94110, United States
  • Service: OpenAI API (GPT models)
  • Purpose: Analysis and generation of content.
  • Data usage: Processing is done solely to provide the requested output. No training of models with customer data.
  • Legal basis: Consent (Art. 6(1)(a GDPR) & Data processing agreement (DPA) pursuant to Art. 28 GDPR.
  • Safeguards: EU Standard Contractual Clauses (SCCs).

Google LLC – Generative Language API (Gemini)

  • Headquarters: 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States
  • Service: Google Generative Language API (Gemini models)
  • Purpose: Analysis and generation of content.
  • Data usage: Google states in its API terms that input/output data via the paid Enterprise/API versions are not used to train their base models.
  • Legal basis: Consent (Art. 6(1)(a GDPR) & Data processing agreement (DPA) pursuant to Art. 28 GDPR.
  • Safeguards: EU Standard Contractual Clauses (SCCs) and/or EU-US Data Privacy Framework.

Microsoft Corporation – Azure AI Foundry

  • Headquarters: One Microsoft Way, Redmond, WA 98052, United States
  • Service: Azure AI Foundry (AI model endpoints)
  • Purpose: Analysis and generation of content.
  • Note: DEON uses endpoints that are certified BSI C5 Type 2 – essential for the Public Sector.
  • Data usage: No use of data for AI training by Microsoft.
  • Legal basis: Consent (Art. 6(1)(a GDPR) & Data processing agreement (DPA) pursuant to Art. 28 GDPR.
  • Protective measures: EU standard contractual clauses (SCCs) to secure third-country transfers.

IONOS SE – IONOS AI Model HUB

  • Headquarters: Elgendorfer Str. 57, 56410 Montabaur, Germany
  • Service: IONOS AI Model HUB
  • Purpose: Analysis and generation of content.
  • Note: Hosting fully in Germany (Sovereign Cloud). C5 certified. Maximum data sovereignty.
  • Data usage: No training of models with customer data.
  • Legal basis: Consent (Art. 6(1)(a GDPR) & Data processing agreement (DPA) pursuant to Art. 28 GDPR.
  • Protective measures: Processing exclusively in Germany – no third-country transfer.

Google LLC – Google Vertex AI

  • Headquarters: 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States
  • Service: Google Vertex AI (AI model endpoints)
  • Purpose: Analysis and generation of content.
  • Data usage: Contractual exclusion of data usage for AI model training.
  • Legal basis: Consent (Art. 6(1)(a GDPR) & Data processing agreement (DPA) pursuant to Art. 28 GDPR.
  • Protective measures: EU standard contractual clauses (SCCs) to secure third-country transfers.

Schwarz IT KG – STACKIT AI Model Serving

  • Headquarters: Stiftsbergstraße 1, 74172 Neckarsulm, Germany (Schwarz Group)
  • Service: STACKIT AI Model Serving
  • Purpose: Analysis and generation of content.
  • Note: German infrastructure (Schwarz Group). C5-certified data centers in Germany.
  • Data usage: No training of models with customer data.
  • Legal basis: Consent (Art. 6(1)(a GDPR) & Data processing agreement (DPA) pursuant to Art. 28 GDPR.
  • Protective measures: Processing exclusively in Germany – no third-country transfer.

Data Protection Responsibilities

  • Controller: DEON GmbH & Co. KG, Ella-Kay-Str. 22c, 10405 Berlin, Germany
  • Processor: OpenAI, L.L.C. (USA); Google LLC (USA); Microsoft Corporation (USA); IONOS SE (Germany); Schwarz IT KG / STACKIT (Germany)
  • Supervisory Authority: Berlin Commissioner for Data Protection and Freedom of Information (BlnBDI)
    Friedrichstr. 219, 10969 Berlin, Germany
    https://www.datenschutz-berlin.de

Future AI Providers

DEON can add or replace AI providers.

Each provider is listed on this page with the same transparency regarding:

  • Company details,
  • Purpose of processing,
  • Country of processing,
  • Safeguards for international transfers (SCCs or adequacy decisions) and
  • Information on data storage.

Users and organizations always retain control over the opt-in/opt-out functionality in DEON.
No data is sent to an AI provider unless AI features are actively enabled.

Contact

In case of questions regarding data protection and AI processing in DEON, please contact:
datenschutz@deon.de