Sub-Processors
Third party vendors we share personal or sensitive data with:
Name |
Purpose |
Data Shared with Sub-processor |
Data Location |
International Transfer Mechanism |
Additional Info |
|---|---|---|---|---|---|
| Stripe | Payment processing |
Payment and transaction information such as name, email, bank account details, payment card details, date/time/amount of transaction, and merchant name. |
United States Ireland |
SCCs | DPA Stripe Privacy Center |
| Fastspring | Payment processing |
Payment and transaction information such as name, email, bank account details, payment card details, date/time/amount of transaction, and merchant name. |
United States |
SCCs | DPA Fastspring Privacy GDPR Compliance |
| Cloudflare | Networking | IP address only |
United States European Union |
SCCs | DPA Cloudflare Compliance GDPR Compliance |
| Twillio / SendGrid | Cloud-based email notifications and built-in video meeting tool | Email address, personal data contained in product notice, email content, encrypted video data | United States |
SCCs | DPA GDPR Whitepaper Privacy |
| HubSpot | Sales, support and marketing activities | Contact and company information, engagement history, feature usage overview, tickets, emails |
United States Ireland |
SCCs | DPA |
| OpenAI | WebWork AI integration with ChatGPT (OpenAI) | Conversations with WebWork AI |
United States Ireland |
SCCs | DPA |
Third party vendors we share tracking data, activity levels, work descriptions, active window and url information
- NONE
Third party vendors we share desktop screenshots (if enabled)
Name |
Purpose |
Data Shared with Sub-processor |
Data Location |
International Transfer Mechanism |
Additional Info |
|---|---|---|---|---|---|
| Amazon Web Services | Hosting and storage systems provider, Amazon S3 | Screenshots |
European Union |
SCCs | DPA AWS Security Center |
Other vendors that collect some form of non-personalized data:
Name |
Purpose |
Data Shared with Sub-processor |
Data Location |
International Transfer Mechanism |
Additional Info |
|---|---|---|---|---|---|
| Google Analytics | Analytics | Analytics data (non-personalized) |
United States European Union |
SCCs | DPA |
| Google Ads | Ads | Ad performance data (non-personalized) |
United States European Union |
SCCs | DPA |
Vendors with whom we exclusively share encrypted data - no access to any information:
Name |
Purpose |
Data Shared with Sub-processor |
Data Location |
International Transfer Mechanism |
Additional Info |
|---|---|---|---|---|---|
| Contabo | Dedicated servers hosting | No access to any information. Our servers are hosted on unmanaged root servers provided by Contabo, ensuring maximum privacy and security. As these servers are exclusively managed by us, we maintain full control over customer data in compliance with GDPR and our privacy policy. Contabo does not monitor server content unless required by German law or their Terms of Service. |
European Union |
SCCs | Signed DPA Agreements |
Last updated: 17 February, 2025