Deep Infra

Non-compliantapi providerdeepinfra.com ↗

API Docs ↗Report a change

GDPR Compliance

EU-only data residency

Inference stays in EUunknown

Data Processing Agreement

No training on customer data

Opt-out available

Standard Contractual Clauses

Adequacy decision (HQ country)

No Training

Data Handling

Regions

AWS and GCP infrastructure, US-based. No EU region publicly available.

Retention Policy

ZDR by default — volatile memory only, deleted post-inference. Exception: image outputs stored briefly; bulk inference API stores encrypted on disk until results are returned. Google/Anthropic passthrough models: those providers' policies apply.

Additional Details

Named DPO: Nikola Borisov (dpo@deepinfra.com). GDPR compliance listed as 'In Progress' on Trust Center as of verification date.

Sub-processors

✓Disclosed ↗(no EU entities)

Certifications & EU AI Act

Certifications

SOC2ISO27001

EU AI Act Status

unknown

Verification

Last verified2026-04-07

Verified byAI-assisted draft (pending review)

Pricing tierpay per use

Sources

Notes

Headquartered in San Francisco, CA. Has the only public sub-processor list and strongest security certifications (SOC2, ISO27001) of the three US inference providers (DeepInfra, Fireworks, Together), but lacks a public DPA and has GDPR formally marked as 'In Progress'. SCCs not confirmed. Sub-processors are all US-based (Stripe, AWS, GCP).

← Back to all providers