Sub-processors
What is a sub-processor
A sub-processor is a third-party service provider that Vendorapp engages to process personal data on our behalf. These providers support the operation, delivery, and security of our platform. When acting as a data processor, Vendorapp may share limited personal data with sub-processors as part of providing the service.
Our approach
Vendorapp maintains a clear, transparent policy on sub-processors. We only engage reputable providers who meet our standards for data protection, security, and compliance. Each sub-processor is subject to strict contractual obligations, including data processing agreements that reflect GDPR and other applicable data protection laws.
Current sub-processors
We use a small number of trusted providers to deliver our services effectively. This includes services for:
- Cloud infrastructure and hosting
- User authentication and account management
- Email delivery and customer communication
- Analytics and platform monitoring
- Payment processing
For the most accurate and up-to-date list, please refer to our privacy documentation or contact our support team.
How we assess sub-processors
Before engaging any sub-processor, we conduct a due diligence process that includes:
- Security and compliance reviews
- Verification of data protection practices
- Contractual safeguards (including standard contractual clauses if required)
- Ongoing monitoring for performance and risk
We also require sub-processors to notify us of any intended changes so we can evaluate impact and notify customers where appropriate.
Your rights and options
As a Vendorapp customer, you have the right to:
- Be informed of our use of sub-processors
- Object to a new sub-processor if you believe it poses a material risk to your data
- Request details about how a specific sub-processor handles personal data
We are committed to transparency and will work with you to address any concerns regarding data handling or compliance.