Heroku vs EU Alternatives: A Developer's Guide
Comparing Heroku with European hosting alternatives. See how EU-based platforms like runtiq stack up on pricing, data residency, GDPR compliance, and developer experience.
By runtiq Team
Heroku used to be the default PaaS. git push heroku main and you were done.
After the Salesforce acquisition in 2010, the platform stagnated. The free tier was removed in November 2022. Developers started looking for alternatives.
This post compares the options — with a focus on what matters for EU teams: data residency, GDPR compliance, and jurisdiction.
What Changed with Heroku
The free tier removal was the most visible change. Salesforce replaced it with “Eco Dynos” at $5/month. The Basic dyno at $25/month works for small applications. But once you add a worker process, a Postgres add-on, and a Redis instance, costs reach $100/month or more — significantly more than a self-managed VPS.
Beyond pricing, the platform has not changed much since around 2018. Buildpacks still dominate the deployment model. Native Docker support exists but is not the recommended path. Observability tooling is minimal. Runtime options have not kept pace with what most teams use today.
For EU developers, there is a separate issue. Heroku runs on AWS, and EU regions are available. But Heroku is a US company, incorporated in the US, subject to US law. That means your data is subject to CLOUD Act jurisdiction, and the Data Processing Agreement is structured around US legal frameworks. Selecting eu-west-1 does not change this.
What “EU-Friendly” Actually Means
Many platforms list “EU region available” as a feature. This does not always mean what it appears to mean.
Data residency means your data — including logs, backups, and metadata — stays in the EU. Not just the primary database. A US company with an EU region can still access your data under US legal frameworks regardless of where the servers are physically located.
GDPR by default means the platform operator is itself a data processor subject to GDPR, has a DPA you can sign with an EU-incorporated entity, and does not transfer data to third countries without appropriate safeguards. This is a legal question, not a technical one.
NIS2 compliance is increasingly relevant. If your application touches essential services or digital infrastructure, your hosting provider’s security posture and incident reporting obligations matter.
The Alternatives: An Honest Comparison
Here is how the main options compare:
| Feature | Heroku | Render | Clever Cloud | Corelix | Infomaniak | runtiq |
|---|---|---|---|---|---|---|
| HQ / Jurisdiction | US (Salesforce) | US | France (EU) | France (EU) | Switzerland | Austria (EU) |
| EU Data Residency | ❌ Via AWS | ❌ US-based | ✅ EU-native | ✅ EU-native | ⚠️ Swiss (not EU) | ✅ EU-only |
| CLOUD Act Exposure | ⚠️ Subject to CLOUD Act | ⚠️ Subject to CLOUD Act | ❌ None | ❌ None | ❌ None | ❌ None |
| GDPR by Default | ❌ | ❌ | ✅ | ✅ | ✅ | ✅ |
| NIS2 / DORA Ready | ❌ | ❌ | Partial | ❌ | ❌ | ✅ Designed for NIS2/DORA |
| Compliance Docs Included | ❌ | ❌ | Partial | ❌ | ❌ | ✅ DPA, reports, incident workflows |
| Managed DNS | ❌ | ❌ | ❌ | ❌ | ✅ | ✅ Included |
| Private Networking | ❌ | ❌ | ❌ | Per-env Docker | ❌ | ✅ Included (Pro+) |
| Identity & Secrets | ❌ | ❌ | ❌ | Basic roles | ❌ | ✅ Vault-compatible |
| Built-in CI/CD | Buildpacks | Git-push | Git-push | Git-push | ❌ | ✅ Auto-detect + GitOps |
| Container Runtime | Buildpacks | Dockerfiles | Native | Native (Coolify) | Docker, PHP, Ruby | ✅ Kubernetes-native |
| Observability Included | ❌ Minimal | Basic metrics | Basic metrics | ❌ | ❌ | ✅ Logs, metrics, alerts |
| SEAL-4 Sovereignty | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ |
| Open Source Based | ❌ | ❌ | ❌ | ✅ MIT | ❌ | ✅ |
| Traffic Included | ❌ | Limits | Limits | Unknown | Limits | ✅ No bandwidth fees |
| Pricing Model | Complex add-ons | Simple | Tiered | Freemium | Tiered | All-inclusive |
Render
Render is a solid Heroku replacement with a clean developer experience — connect a repository, select a runtime, and deploy. Dockerfile support is first-class. Pricing is straightforward and the platform is actively maintained.
Render is a US company, so CLOUD Act may apply to your data regardless of which region you select. There are no EU-specific compliance features, no DPA with an EU-incorporated entity, and no NIS2 support. For teams without EU compliance requirements, Render is a capable choice.
Clever Cloud
Clever Cloud is the most established EU PaaS available — a French company founded in 2010 with over 90 employees and a long track record with European production workloads. GDPR compliance is built into the platform by design, and managed database offerings are solid.
The platform does not offer NIS2-specific features, private networking, or identity and secrets management. For teams that need an EU PaaS with proven history and a complete GDPR story, Clever Cloud is the strongest established option.
Corelix
Corelix is a French platform built on Coolify — an open-source, MIT-licensed PaaS engine — with servers in France and Germany. GDPR applies by default as a French company. The Hobby plan is free, making it accessible for smaller projects and experimentation.
There is no compliance documentation, no publicly available DPA, no NIS2 features, no managed DNS, and no identity or secrets management beyond basic roles. Corelix is a developer tool, not an enterprise compliance platform. For hobby projects and small teams that need EU hosting without a compliance story, it is a reasonable option.
Infomaniak
Infomaniak is a Swiss company with over 200 employees — the largest company in this comparison — with a strong privacy and eco-friendly positioning. Their PaaS offering (Deploio) supports Docker, Ruby, PHP, and Python.
One important clarification: Switzerland is not in the EU or EEA. Swiss hosting does not automatically satisfy EU data residency requirements under GDPR. An adequacy decision exists between the EU and Switzerland, but it is a separate legal framework from EU-to-EU data processing. If your legal team requires data to stay within EU jurisdiction specifically, Swiss hosting requires additional analysis. There are no PaaS-level CI/CD pipelines or NIS2/DORA compliance features.
runtiq
runtiq is an Austrian PaaS built for teams where EU data sovereignty and compliance are hard requirements, not optional features. The platform runs exclusively on EU-native infrastructure — no US hyperscalers, no CLOUD Act exposure. EU data sovereignty by design — Austrian company, EU jurisdiction, no CLOUD Act exposure.
The deployment model is container-based on Kubernetes — push your code, the CI pipeline auto-detects your language and builds a container, similar to Render but running on EU-only infrastructure. Full GitOps CI/CD is included. What is included in the platform: managed DNS, managed ingress, private networking (Pro+), Vault-compatible identity and secrets management, a private container registry, observability (logs, metrics, and alerts), and built-in CI/CD pipelines. Compliance documentation — DPA, NIS2/DORA reports, and incident reporting workflows — is included from day one, not an add-on.
runtiq targets SEAL-4 operational sovereignty and is built on open-source components. Pricing is all-inclusive with no bandwidth fees and no add-on charges for infrastructure features. We are newer than Clever Cloud and still in early access, but the compliance and infrastructure story is complete from the start. See the pricing page for details.
Developer Experience: Day-to-Day Considerations
Compliance matters, but you also need to ship software. Here is what the day-to-day looks like across these platforms.
Deployment workflow: Render is the simplest — connect a repository and deploy in minutes. Clever Cloud and Corelix use git-push or Docker-based workflows. runtiq works similarly to Render — push your code, the pipeline auto-detects your language and builds a container — but runs everything on Kubernetes on EU-only infrastructure.
Observability: Most PaaS platforms offer minimal built-in tooling — basic log access at best. runtiq includes logs, metrics, and alerts from the first deploy, with no third-party tool required.
Choosing the Right Platform
Simple Heroku replacement → Render. Good developer experience, straightforward pricing.
Established EU PaaS → Clever Cloud. Over a decade of EU production workloads, GDPR built in.
Free, open-source EU hosting → Corelix. French-hosted, Docker-native, MIT-licensed foundation. Not suitable for regulated workloads.
Swiss privacy-focused hosting → Infomaniak. Well-run and privacy-conscious — but verify the GDPR legal framework applies to your specific obligations.
EU sovereignty + compliance + everything included → runtiq. EU jurisdiction, DPA, NIS2/DORA docs, managed DNS, private networking, identity management, observability, and auto-detect CI/CD — all included from day one.
The right choice depends on your actual requirements: jurisdiction, compliance obligations, deployment model, and the operational complexity you are willing to accept.