Data Subprocessors
To support the delivery of our Services, TheyDo may engage and use data processors with access to certain Customer Data or Personal Information. This page provides information about each Subprocessor.
Please email [email protected] if you have any questions.
AWS
Location: Ireland.
Data security certifications: ISO27001, Privacy Shield, SOC3.
Data processed: All user content.
Use: Cloud service provider.
Heap
Location: United States.
Data security certifications: ISO27001, SOC2 Type II.
Data processed: E-mail, usage data.
Use: App analytics.
Heroku
Location: Ireland.
Data security certifications: ISO27001, ISO27017, ISO27018, SOC3.
Data processed: All user data.
Use: Cloud service provider.
Intercom
Location: United States.
Data security certifications: Privacy Shield, SOC2 Type II, CSA STAR.
Data processed: Username, E-mail.
Use: Customer support service provider.
Mailchimp
Location: United States.
Security certifications: Privacy Shield, SOC2 Type II.
Data processed: Username, E-mail.
Use: E-mail marketing.
Mailgun
Location: Germany.
Security certifications: Privacy Shield.
Data processed: Username, E-mail.
Use: Transactional E-mails.
Typeform
Location: United States.
Security certifications: Privacy Shield.
Data processed: Username, E-mail.
Use: Recurring customer satisfaction survey, onboarding calls.
Stripe
Location: United States.
Security certifications: Privacy Shield, PCI DDS.
Data processed: Billing contact name, E-mail, addresses, card details.
Use: Payment processing and subscription management.
Sentry
Location: United States.
Security certifications: Privacy Shield, SOC2 Type I, HIPAA.
Data processed: Session data.
Use: Error reporting.
Timber
Location: United States.
Security certifications: PCI DSS level 2.
Data processed: E-mail, usage data.
Use: Payment processing and subscription management.
WorkOS
Location: United States.
Security certifications: SOC2 Type II.
Data processed: Username, E-mail.
Use: Identity management.