UK Infrastructure

UK infrastructure, built and run by us

G7Cloud doesn't resell a hyperscaler. We designed and operate our own platform on UK-based infrastructure: a separated control plane and workers, one container per site orchestrated by HashiCorp Nomad, hot-standby database replication, and the ScaleShield edge in front of everything.

Platform architecture (simplified)
ScaleShield edge
TLS termination · WAF · bot filtering — every request
Control plane
Dashboard, API, orchestration. If it goes down, sites keep serving.
Workers
One container per site, scheduled by HashiCorp Nomad. Routing is worker-local.
MariaDB + hot standby
GTID replication, worker-to-worker. One database per site.
Mail platform
Email on its own dedicated VM, isolated from web workloads.

Not a reseller

Owning the platform changes what we can promise

A large share of "cloud hosting" companies are a dashboard on top of AWS, DigitalOcean or Google Cloud. That model has consequences: usage-based costs get passed to you, and when something breaks at the infrastructure layer, your host is a customer in someone else's support queue.

We took the harder route and built the platform ourselves — the orchestration, the ScaleShield edge, the database layer, the mail system. When you report a problem, the person answering can read the logs of the actual machine involved. And because our costs are fixed, so is your price.

  • No hyperscaler usage bill hiding behind your invoice
  • Incidents debugged by the people with root access, not ticket escalation
  • Architecture decisions made for hosting websites — not general-purpose cloud

One container per site

Every site — WordPress, PHP, a git-deployed app or an AI-built shop — runs in its own dedicated container with its own database. Isolation is the default, not a premium tier.

Orchestrated by HashiCorp Nomad

Containers are scheduled onto workers by Nomad — proven open-source orchestration, not a homemade script. It places, supervises and restarts workloads across the worker fleet.

ScaleShield in front of everything

Every request passes through the edge layer for TLS termination, WAF filtering and bot detection before it reaches any container.

Designed for bad days

The management plane can fail without taking your site with it

The most useful resilience isn't a slogan — it's separation. The machinery that manages the platform and the machinery that serves your site are different machines with different jobs.

Workers serve independently

Traffic routing on the worker machines is local to those machines. If the control plane — dashboard, API, orchestration — goes down, workers keep routing and serving customer sites. Deployments pause; your site doesn't.

Databases have a hot standby

The MariaDB layer replicates worker-to-worker using GTID replication: a continuously updated standby copy of your data on separate hardware, maintained as writes happen — not once a night.

And when all else fails: tested backups

Scheduled backups with one-click restore, off-site copies to your own S3/R2/SFTP target — and every backup restore-tested nightly in a sandbox, so recovery is proven rather than assumed.

Read more: nightly restore-tested backups and per-minute monitoring.

Email lives on its own VM

Mail is the workload most hosts bolt onto a web server and regret. Ours runs on a dedicated virtual machine, separate from the web workers — with mailboxes, aliases, Roundcube webmail, IMAP/SMTP, spam filtering and DKIM/SPF managed for you.

Separation means a busy web day can't degrade your inbox, and mail reputation is managed independently of web traffic.

Data sovereignty, stated precisely

Your hosting runs on UK-based infrastructure operated by a UK team, and the hosting relationship sits within scope of UK GDPR. For UK businesses answering "where is our data held?" — the answer is: on UK infrastructure, with a UK company.

We phrase it that carefully on purpose. Absolute claims like "your data never leaves the UK" are easy to print and hard to honour once third-party services you connect enter the picture — so we make the claim we can stand behind.

Infrastructure FAQ

Including honest answers about certifications and what we don't publish.

Where is G7Cloud hosted?

On privately-operated infrastructure in the UK that we run ourselves. We deliberately don't publish facility addresses or hardware inventories — partly for security, partly because we'd rather be judged on the architecture you can reason about than on a datacentre tour.

Are you built on AWS, Google Cloud or Azure?

No. The platform — container orchestration, edge layer, databases, mail — is ours, running on UK infrastructure we operate. That independence is why we can offer fixed GBP pricing instead of passing through a hyperscaler's usage bill.

What happens if your management plane goes down?

Your site keeps serving. Routing on the worker machines is local: the workers that run customer containers don't need the management plane to keep answering traffic. A control-plane outage would pause dashboard actions and deployments — not your live site.

How is the database layer protected?

Each site gets its own MariaDB database, and the database layer runs hot-standby replication between worker machines using MariaDB GTID — a continuously updated standby copy on separate hardware. On top of that, backups are taken on schedule and restore-tested nightly.

Is my data covered by UK GDPR?

Your hosting runs on UK-based infrastructure and G7Cloud is a UK operation, so the hosting relationship sits within scope of UK GDPR. If you have specific residency or compliance requirements, contact us and we'll answer plainly about what we can and can't commit to.

Do you hold SOC 2 or ISO 27001?

No — and we won't imply otherwise with lookalike badges. We're a young platform and formal certifications are a matter of time and audit budget, not intent. What we offer today is verifiable engineering: isolation per site, replicated databases, restore-tested backups and an architecture we're happy to explain in detail.

Why we built it this way: the G7Cloud difference.

Run your site on infrastructure someone actually owns

Dedicated containers on UK infrastructure, fixed GBP pricing, and a free plan to start with — no card required.