Apakšapstrādātāju politika
Informācija par apakšapstrādātājiem, kas atbalsta mūsu pakalpojumus.
Version: 1.1
Contact: privacy@tiquo.co
1. Introduction
This policy describes the sub-processors that Tiquo uses to support the delivery of its services. A sub-processor is a third party that processes personal data on behalf of Tiquo. We maintain transparency in how personal data is handled and we only engage sub-processors that meet appropriate technical and organisational standards.
2. How we use sub-processors
Tiquo relies on carefully selected service providers to support the hosting and operation of the Tiquo platform. These providers may process personal data when they store, transmit or otherwise handle information on our behalf. Each sub-processor is bound by a written agreement that requires them to safeguard personal data, follow our instructions, and maintain appropriate security measures.
3. List of current sub-processors
The following sub-processors support the Tiquo platform and may process personal data.
| Sub-processor | Purpose | Location of processing | Personal data processed |
|---|---|---|---|
| Amazon Web Services (AWS) | Cloud hosting, storage and infrastructure used to operate the Tiquo platform. | AWS eu-west-1 (Ireland) and AWS us-east-1 (N. Virginia). | Customer data that is stored or transmitted by our platform. |
| Vercel | Application hosting and delivery for the Tiquo web front end. | Vercel edge network globally for content delivery; build infrastructure in the United States (AWS us-east-1). | Request data, logs and metadata generated when users interact with the platform. |
| Cloud services, authentication and analytics. | Google data centres globally. | User identifiers, authentication data, usage data and analytics metadata. | |
| Convex | Real-time backend infrastructure and application data storage. | Convex infrastructure in the United States (AWS us-east-1). | Application data, user records and real-time event data. |
| Stripe | Payment processing, billing and financial transaction management. | Stripe infrastructure in the United States and internationally. | Payment details (tokenised), billing information, transaction records and customer identifiers. |
| Clerk | User authentication, identity management and session handling. | Clerk infrastructure in the United States. | User credentials, profile information, session data and authentication logs. |
| Resend | Transactional and operational email delivery. | Resend infrastructure in the United States and Ireland. | Email addresses, message content and delivery metadata. |
| Twilio | SMS messaging and communication services. | Twilio data centres globally. | Phone numbers, message content and delivery metadata. |
| Apple | Push notification delivery and authentication services. | Apple data centres globally. | Device tokens, user identifiers and notification content. |
| Tinybird | OLAP querying and analytics data warehousing. | Tinybird infrastructure in the United States and Europe. | Usage data, event logs and aggregated analytics data. |
| Anthropic | AI language model services for platform features. | Anthropic infrastructure in the United States. | Prompts, queries and generated responses that may contain user-provided content. |
| Axiom | Observability, logging and performance monitoring. | Axiom infrastructure in the United States. | Log data, trace data, metrics and event metadata generated by the platform. |
Note on Anthropic. Personal data is not used by Anthropic to train models. Processing is subject to Anthropic's data processing terms.
4. Changes to sub-processors
We may add or replace sub-processors when required to support our services. If we make such a change, we will update this policy and notify customers at least 10 business days in advance. Customers who object to a proposed change may contact us so that we can work together to find a suitable solution.
5. Security and compliance
Tiquo only engages sub-processors that demonstrate strong security practices. Each sub-processor must implement appropriate measures to protect personal data, assist us in meeting our legal obligations and notify us promptly if a security incident occurs.
6. Contact
If you have any questions about this policy or our use of sub-processors, please contact us at privacy@tiquo.co.
7. Review Schedule
This policy is reviewed quarterly and updated whenever a sub-processor is added or removed.
8. International Data Transfer Mechanisms
For sub-processors located outside the UK, EEA or Switzerland, Tiquo ensures appropriate transfer mechanisms are in place, including the EU Standard Contractual Clauses (EU Commission Decision 2021/914), the UK International Data Transfer Addendum (IDTA) issued by the ICO, and transfer mechanisms recognised by the Swiss Federal Data Protection and Information Commissioner (FDPIC). Transfer Impact Assessments are maintained for sub-processors located in jurisdictions without an adequacy decision, and are available to customers on request.
9. Data Protection Lead
Our Data Protection Lead oversees sub-processor compliance.
Contact: privacy@tiquo.co
Jautājumi par šo dokumentu? Sazinieties ar mūsu juridisko komandu.
Sazināties ar juridisko komandu