List of BizKitHub Sub-processors
To support the delivery of our Services, BizKitHub may engage and use data processors with access to certain Customer Data. This page provides important information about the identity, location, and role of each Sub-processor.
π Legal Notice
This Sub-Processor page is incorporated into the DPA and Terms of Service or MSA entered into between Customer and BizKitHub (whichever shall be applicable).
Sub-processors Overview
| Vendor Name | Location | Purpose | Category |
|---|---|---|---|
AWS | Global (EU, US, AP) | Cloud infrastructure, compute, storage, and networking services | Infrastructure |
Vercel | Global (EU, US) | Frontend hosting and deployment platform | Hosting |
Neon | EU, US | PostgreSQL database hosting and management | Database |
Google Analytics | Global | Website analytics and user behavior tracking | Analytics |
Google Workspace | Global | Email services, document collaboration, and productivity tools | Productivity |
Stripe | Global (EU, US) | Payment processing and financial transactions | Payments |
Comgate | Czech Republic, EU | Local payment gateway for Czech and European markets | Payments |
Notion | US, Global | Internal documentation, project management, and knowledge base | Productivity |
Cloudflare | Global | CDN, DDoS protection, DNS, and edge computing services | Security |
Sentry | US, EU | Error tracking, performance monitoring, and application debugging | Monitoring |
Slack | US, Global | Internal team communication and collaboration | Communication |
Resend | US, EU | Transactional email delivery and email API services |
Categories Overview
Infrastructure
1 vendor- β’ AWS
Hosting
1 vendor- β’ Vercel
Database
1 vendor- β’ Neon
Analytics
1 vendor- β’ Google Analytics
Productivity
2 vendors- β’ Google Workspace
- β’ Notion
Payments
2 vendors- β’ Stripe
- β’ Comgate
Security
1 vendor- β’ Cloudflare
Monitoring
1 vendor- β’ Sentry
Communication
1 vendor- β’ Slack
- β’ Resend
Data Protection & Compliance
β Our Commitments
- β’ All sub-processors are contractually bound to GDPR compliance
- β’ Regular audits and security assessments
- β’ Data Processing Agreements (DPAs) with all vendors
- β’ Continuous monitoring of data handling practices
- β’ Immediate notification of any security incidents
π Security Standards
- β’ SOC 2 Type II compliance where applicable
- β’ ISO 27001 certification requirements
- β’ End-to-end encryption for data in transit
- β’ Encryption at rest for stored data
- β’ Regular penetration testing and vulnerability assessments
Regional Compliance
πͺπΊ European Union (GDPR)
All sub-processors handling EU customer data comply with GDPR requirements. Data transfers outside the EU are protected by appropriate safeguards.
EU-based processors: Neon (database), Comgate (payments), and regional AWS/Cloudflare infrastructure ensure data sovereignty.
πΊπΈ United States
US-based sub-processors comply with applicable privacy frameworks and maintain appropriate certifications for international data transfers.
Key US processors: AWS, Vercel, Stripe, Google services with Standard Contractual Clauses (SCCs) for EU data protection.
Questions About Sub-processors?
If you have questions about our sub-processors or data processing practices, our privacy team is here to help.