Sub-processors

Effective June 12, 2026 · Last updated June 12, 2026

We use three sub-processors to deliver the service: Stripe (billing), Cloudflare (DNS + edge), and Linode (hosting). Material additions get 30-day advance notice via email so you can object before they take effect.

A "sub-processor" is a third party we authorize to process customer data on our behalf to deliver the service. This page lists every sub-processor with effective dates, the data they handle, where they\'re located, and a link to their transfer mechanism (relevant for EU/UK transfers).

Current sub-processors

Sub-processor	Purpose	Data handled	Location	Effective
Stripe, Inc.	Payment processing, recurring billing, dunning	Name, email, billing address, card data (collected by Stripe directly), Stripe customer / subscription IDs	USA + Ireland (EU customers)	2026-06-11
Cloudflare, Inc.	DNS, TLS termination, DDoS protection, edge caching	IP address, request URLs, request headers, TLS-encrypted request bodies (body content stays sealed for sealed-box requests)	Global edge; customer-data tier configured to US/EU	2026-06-11
Akamai (Linode)	VM hosting (web-002 origin, K8s nodes, NAS backups)	All customer data at rest (databases, tarballs, env vars encrypted with our keys; runtime + build logs)	USA (us-ord region primary)	2026-06-11
SMTP relay (transactional email)	Magic-link emails, account notifications, billing receipts	Email address, message content (signup confirmations, magic links, billing notes)	USA — current provider listed at `[email protected]` on request	2026-06-11

Sub-processor

Purpose

Data handled

Location

Effective

Stripe, Inc.

Payment processing, recurring billing, dunning

Name, email, billing address, card data (collected by Stripe directly), Stripe customer / subscription IDs

USA + Ireland (EU customers)

2026-06-11

Cloudflare, Inc.

DNS, TLS termination, DDoS protection, edge caching

IP address, request URLs, request headers, TLS-encrypted request bodies (body content stays sealed for sealed-box requests)

Global edge; customer-data tier configured to US/EU

2026-06-11

Akamai (Linode)

VM hosting (web-002 origin, K8s nodes, NAS backups)

All customer data at rest (databases, tarballs, env vars encrypted with our keys; runtime + build logs)

USA (us-ord region primary)

2026-06-11

SMTP relay (transactional email)

Magic-link emails, account notifications, billing receipts

Email address, message content (signup confirmations, magic links, billing notes)

USA — current provider listed at [email protected] on request

2026-06-11

International transfers

All current sub-processors are accessed primarily from the United States. For customers in the EEA, UK, or Switzerland, transfers to the US rely on Standard Contractual Clauses (SCCs) or successor mechanisms, plus supplementary measures including sealed-box transport encryption for sensitive payloads (so Cloudflare edge in the EU cannot read those bodies) and AES-GCM at-rest encryption for env vars.

Notice of new sub-processors

Removed sub-processors

None to date. When a sub-processor is removed, we list it here for 12 months along with the removal date and reason.

Subscribe to changes

Email [email protected] with subject "Subscribe sub-processor changes" to receive every change notice in advance, including non-material updates that don\'t require the 30-day window.