Sign inRequest access
Trust & Legal

Subprocessors

Last updated 2026-05-24

Vendor table

The table lists the service providers that process personal data on behalf of Doxus.

VendorStatusPurposeDataLocationTransferDPACustomer contentNotice
CloudflareActiveIngress, WAF, DNS, Email Routing, and Cloudflare-owned edge servicesIP address, request metadata, and security event metadataGlobal CDN / edgeProcessor under Cloudflare DPA; restricted-transfer posture requires reviewDPA via Cloudflare DPANo customer document content intended for ingress, WAF, DNS, or public edge routing; discovery scan mapped S3-compatible R2 SDK hits to this existing frozen vendor30-day prior notice for new subprocessors that process customer content
Google CloudActiveResidual Google services: Cloud Vision OCR, Picker API key, project services/IAM, and historical evidence for retired GKE resourcesAccount data, tenant settings, business documents, extracted fields, and audit eventsUK/EU for retained project posture where configured; Google API processing varies by serviceProcessor under Google Cloud terms; restricted-transfer posture still requires evidence by serviceDPA via Google Cloud termsOCR-transient customer content may be sent to Cloud Vision; GKE no longer hosts production workloads30-day prior notice for new subprocessors that process customer content
AnthropicActiveLLM extraction with Claude APICustomer-provided document text, prompts, outputs, and processing metadataUSUK IDTA Addendum (included in Anthropic Commercial Terms DPA)DPA accepted via Anthropic Commercial Terms 2026-04-29; zero data retention enabled (no training, no retention beyond the API call)Customer document content is sent in prompts; zero-retention setting prevents persistence at Anthropic30-day prior notice for new subprocessors that process customer content
OpenAIActiveLLM extraction fallback / development, gated by configCustomer-provided document text, prompts, outputs, and processing metadataUSRestricted transfer; IDTA/Addendum or other valid transfer mechanism pending before production useDPA pendingCustomer document content is exposed if enabled30-day prior notice for new subprocessors that process customer content
SMTP2GOActiveTransactional emailEmail address, message metadata, and transactional message contentUK/EUProcessor terms; no restricted transfer recorded for UK/EU postureDPA pendingNo customer document content intended; rendered attachments can be sent to tenant-user recipients30-day prior notice for new subprocessors that process customer content
SentryActiveError monitoringError events, device metadata, route metadata, and stack contextUK/EUUK GDPR Article 28 processor terms; no restricted transfer recorded for UK/EU postureDPA pendingNo customer content intended30-day prior notice for new subprocessors that process customer content
GitHubActiveSource control, PR workflow, and CI runners with ARC self-hosted on PVE1 k3sDeveloper account data, source code metadata, and build metadataUSSubprocessor for tooling; restricted-transfer posture requires reviewDPA via GitHub Customer AgreementTooling only; no customer-data processing intended30-day prior notice for new subprocessors that process customer content
SuperTokensActiveAuthentication backendAccount identifiers, authentication metadata, and session metadataUK-hosted self-managed deployment in Doxus PVE1 k3s clusterNo restricted transfer for self-managed UK-hosted deployment; upstream image/vendor review still trackedSelf-hosted internal infrastructure; listed for completenessCustomer auth metadata stored30-day prior notice for new subprocessors that process customer content
Google OAuth/Drive APIsActiveOAuth identity, Gmail ingestion authorisation, Drive destination delivery, and Google Picker folder selectionAccount identifiers, OAuth scopes, Drive file metadata, and files handled under customer instructionUSProcessor under Google Cloud terms; restricted-transfer posture requires review for API processingDPA via Google Cloud termsCustomer content uploaded to the user's own Drive; no extra Doxus-side storage from Drive delivery30-day prior notice for new subprocessors that process customer content

Status

Each vendor is engaged under the provider's standard data processing terms.

Purpose

The purpose column explains why the provider is used in the service.

Data categories

The data categories column describes the types of personal data or customer content the provider processes.

Location and region

Locations reflect current provider or deployment regions and may change as infrastructure settings evolve.

Transfer mechanism

International transfers rely on UK-EU adequacy where it applies and on standard contractual clauses where it does not.

DPA status

A data processing addendum is in place with each listed vendor under its standard terms.

Customer content exposure

This field identifies whether the provider is expected to process customer documents or document-derived content.

Customer notice policy

30-day prior notice for new subprocessors that process customer content

On this pageVendor tableStatusPurposeData categoriesLocation and regionTransfer mechanismDPA statusCustomer content exposureCustomer notice policy
Doxus

Connect your inbox. Get clean reports. Skip the admin.

Product

  • How it works
  • Request access

Resources

  • Support
  • Talk to us

Legal

  • Privacy
  • Terms
  • Cookies
  • Security
  • Subprocessors
  • Data processing
  • GDPR
© 2026 Doxus. All rights reserved.