This page lists every third party we share data with to operate smartordercapture. The list is current as of the "Last updated" date above. We commit to giving 30 days' advance notice — by updating this page and emailing account owners — before adding a sub-processor that will handle personal data.
If you object to a new sub-processor, you may terminate your subscription at any time per our Terms of Service.
| Sub-processor | Purpose | Data handled | Location |
|---|---|---|---|
| DigitalOcean | Object storage (Spaces) for screenshots, marketplace assets, APK distribution | Screenshots uploaded by user-authored workflows; account-bound and signed-URL gated | United States (NYC3 region) |
| Managed Postgres (external) | Primary application database — accounts, workflows, runs, audit log, pg-boss queue | All account data, encrypted at rest, TLS in transit | United States |
| Stripe | Payment processing for paid plans and marketplace payouts | Billing email, last-4 of card, subscription state, marketplace creator payouts | United States |
| Google Firebase Cloud Messaging | Push notifications to paired Android devices for workflow sync | FCM tokens (opaque device identifiers), sync payload (workflowId / versionId) | United States |
| Resend | Transactional email — verification, password reset, billing receipts, security alerts | Recipient email, email content (sent on a per-email basis, not retained) | United States |
| Sentry | Error monitoring across web, API, worker, and Android | Stack traces, request context, browser/OS metadata. PII scrubbed where detected. | United States |
| PostHog | Product analytics and feature-flag delivery | Anonymized event stream (page views, feature usage), opt-out available in Settings | United States |
| Cloudflare | DNS and edge proxy (planned, pre-launch) | IP address, request headers, TLS termination | Global anycast |
| Google Play Store | Distribution of the Android client (play flavor) | Install metadata (Play handles, not us) | United States |
How we choose sub-processors
We pick vendors that publish a privacy policy, sign a data processing agreement on request, and have a track record of taking security seriously. We avoid vendors whose business model is to monetize user data.
Data processing agreements
Customers on the Team or Enterprise plan can request a DPA from legal@smartordercapture.com. Our standard DPA incorporates SCCs (EU Standard Contractual Clauses) where applicable.