Subprocessors

JustAutomateIt uses the following third-party service providers ("subprocessors") to help deliver our services. Each subprocessor is bound by data protection obligations and maintains appropriate security certifications.

Last updated: February 6, 2026

Data Processing Agreement|Privacy Policy|Security & Compliance

Subprocessor	Purpose	Data Categories	Location	Compliance
Supabase	Database, authentication, and backend services	All user data (accounts, usage, content)	US / EU (AWS)	SOC 2 Type IIGDPRHIPAA
Vercel	Application hosting and edge delivery	IP addresses, cookies, access logs	Global (AWS)	SOC 2 Type IIGDPRISO 27001
Stripe	Payment processing	Billing information, payment methods	US / EU	PCI DSS Level 1SOC 2 Type IIGDPR
Google Cloud	OAuth authentication services	Email address, profile information	Global	ISO 27001SOC 2GDPRFedRAMP
GitHub	OAuth authentication services	Email address, username, profile information	US	SOC 2 Type IIGDPR
Anthropic	AI assistant (Claude models)	User prompts, messages, uploaded documents	US	SOC 2 Type IIGDPR
OpenAI	AI assistant (GPT models)	User prompts, messages, uploaded documents	US	SOC 2 Type IIGDPR
Google (Gemini)	AI assistant (Gemini models)	User prompts, messages, uploaded documents	US	ISO 27001SOC 2GDPR
xAI	AI assistant (Grok models)	User prompts, messages, uploaded documents	US	GDPR
OpenRouter	AI model routing and aggregation	User prompts, messages (routed to model providers)	US	GDPR
Resend	Transactional email delivery	Email addresses, email content	US	SOC 2 Type IIGDPR
n8n	Workflow automation engine	Workflow data, integrations, automation logs	EU (self-hosted)	GDPRISO 27001
Notion	CMS for legal and policy pages	None (public content only)	US	SOC 2 Type IIGDPR

SupabaseUS / EU (AWS)

Database, authentication, and backend services

All user data (accounts, usage, content)

SOC 2 Type IIGDPRHIPAA

VercelGlobal (AWS)

Application hosting and edge delivery

IP addresses, cookies, access logs

SOC 2 Type IIGDPRISO 27001

StripeUS / EU

Payment processing

Billing information, payment methods

PCI DSS Level 1SOC 2 Type IIGDPR

Google CloudGlobal

OAuth authentication services

Email address, profile information

ISO 27001SOC 2GDPRFedRAMP

GitHubUS

OAuth authentication services

Email address, username, profile information

SOC 2 Type IIGDPR

AnthropicUS

AI assistant (Claude models)

User prompts, messages, uploaded documents

SOC 2 Type IIGDPR

OpenAIUS

AI assistant (GPT models)

User prompts, messages, uploaded documents

SOC 2 Type IIGDPR

Google (Gemini)US

AI assistant (Gemini models)

User prompts, messages, uploaded documents

ISO 27001SOC 2GDPR

xAIUS

AI assistant (Grok models)

User prompts, messages, uploaded documents

GDPR

OpenRouterUS

AI model routing and aggregation

User prompts, messages (routed to model providers)

GDPR

ResendUS

Transactional email delivery

Email addresses, email content

SOC 2 Type IIGDPR

n8nEU (self-hosted)

Workflow automation engine

Workflow data, integrations, automation logs

GDPRISO 27001

NotionUS

CMS for legal and policy pages

None (public content only)

SOC 2 Type IIGDPR

Updates and Notifications

We may update this list when we engage new subprocessors or change existing ones. Material changes will be communicated to customers with active subscriptions at least 30 days before the change takes effect.

To receive notifications about subprocessor changes or to raise concerns, please contact us at support@just-automate-it.org.