There’s no provider that’s going to be more safe than Hetzner, tbh.
If a provider doesn’t comply, you’ll just get special services raiding their DCs instead.
And if you switch to a VPS provider, you’re even more exposed.
Set up CAA with proper restrictions, enforce CT for your clients and use proper full disk encryption to prevent them from placing implants on your server itself.
There’s no provider that’s going to be more safe than Hetzner, tbh.
If a provider doesn’t comply, you’ll just get special services raiding their DCs instead.
And if you switch to a VPS provider, you’re even more exposed.
Set up CAA with proper restrictions, enforce CT for your clients and use proper full disk encryption to prevent them from placing implants on your server itself.