§ — Trust · Sub-processors

Every third party that ever sees your data.

A "sub-processor" is any vendor we use to deliver the Service. We list every single one here and keep the list current. If we add, remove, or materially change how we use one, admins get 30 days' notice by email.

Scope. This page lists vendors that may process customer personal data as part of delivering the Service. It excludes purely internal tools that never touch your data (our CI, our design software, our own billing). Last updated November 20, 2025 · Version 1.0.
§ 01

Core infrastructure.

Where your data lives, runs, and is backed up. The platform floor.
Vendor
Purpose
Region
In use since
Amazon Web ServicesAWS Inc.
Compute, storage, and database hosting. Runs our application, stores transcripts and metadata, holds encrypted backups. All data encrypted at rest with AES-256.
US-East-1 · EU-West-1
2024
CloudflareCloudflare Inc.
Edge network, DDoS protection, WAF. Terminates TLS for customer-facing endpoints, filters malicious traffic, rate-limits abuse. No durable storage of customer data.
Global edge
2024
SupabaseSupabase Inc.
Managed Postgres and authentication. Hosts our primary database with row-level security. Runs on AWS infrastructure.
US · EU
2024
§ 02

AI & model providers.

Models that analyze transcripts and generate coaching. All under zero-retention, no-training commercial terms.
Vendor
Purpose
Region
In use since
AnthropicAnthropic PBC
Primary LLM for methodology scoring, summarization, and coaching generation. Zero-retention API. No training on customer data.
US · EU
2024
OpenAIOpenAI, L.L.C.
Fallback coaching generation and text embeddings. API with Zero Data Retention enabled. No training under OpenAI API terms.
US
2024
AssemblyAIAssemblyAI, Inc.
Transcription and speaker diarization for calls ingested without an upstream transcript. Enterprise tier with no training and no human review.
US
2025
§ 03

Operations & support.

Tools that help us run the business — billing, email, analytics, and support. Limited personal data, specific purposes.
Vendor
Purpose
Region
In use since
StripeStripe Payments Inc.
Payment processing. Billing contact name, email, and payment method. We don't store card numbers — Stripe does, to PCI DSS Level 1.
US · Global
2024
PostmarkActiveCampaign, LLC
Transactional email. Sends login links, notifications, and account emails. Email addresses and message content only; no analytics pixels.
US
2024
PostHogPostHog Inc.
Product analytics. Tracks feature usage patterns on a per-workspace basis. Self-hosted on our infrastructure for EU customers.
US · Self-hosted EU
2024
PlainPlain Systems Ltd.
Customer support inbox. Email conversations between you and our support team. DPA signed; no training on support data.
EU
2025
SentryFunctional Software, Inc.
Error tracking. Captures stack traces and application errors. Scrubbed of personally identifiable data before transmission.
US
2024

How we add and remove sub-processors.

This is the process we run every time we consider bringing a new vendor into the data flow — or removing an existing one.

§ 01

Security review

Every prospective sub-processor completes a security questionnaire. We verify encryption, access controls, audit status (SOC 2, ISO 27001), and breach history.

§ 02

DPA in place

We sign a Data Processing Addendum with SCCs before any production data flows. We won't use a vendor that refuses to sign.

§ 03

Narrow purpose

Each vendor gets only the data necessary for its specific function. No blanket data sharing, no "just in case" access.

§ 04

30-day notice

Before adding a new sub-processor or materially changing how we use an existing one, we email account admins at least 30 days in advance.

§ 05

Right to object

Enterprise customers can object to a new sub-processor; if we can't accommodate the objection, you can terminate the affected portion of the Service with a prorated refund.

§ 06

Annual re-review

Every sub-processor is re-reviewed annually. If their security posture slips or their terms change adversely, we replace them.

Want to be notified of changes?

Account admins are notified automatically. If you're a procurement or security stakeholder and want to be on the notice list without a workspace seat, add your email to our sub-processor notification list.

Join the notice list