Last Updated: 16 March 2026 | Version 1.1.0
To support the delivery of our services, OpenChair Platform ("OpenChair") uses service providers directly authorised to process data on our behalf ("Sub-processors"). This page provides a list of these Sub-processors, their role, and their location.
We maintain a high standard of security and privacy, and we ensure that all Sub-processors are bound by data processing agreements that adhere to applicable data protection laws.
Third-Party Sub-processors
| Name | Purpose | Location |
|---|
| Stripe | Payment Processing | Global / USA |
| Supabase | Authentication & Database | EU / USA |
| Vercel | Web Hosting & Edge Functions | USA / Global (Edge) |
| OpenRouter | AI Model Routing (to OpenAI, Anthropic, Google) | USA |
| PostHog | Product Analytics | USA / EU |
| Resend | Transactional Email | USA |
| Twilio | SMS & Voice Communications | Global |
| Langfuse | AI Observability & Tracing | USA |
| Expo (EAS) | Mobile Push Notifications & OTA Updates | USA |
| Google Maps Platform | Maps & Location Services | Global |
Updates
As our business grows and evolves, the Sub-processors we engage may also change. We will provide prior notice of new Sub-processors where required by applicable law or contract. Updated sub-processors and transfer regions will be published on this page before use, except where urgent security or continuity changes are required.
Please check back frequently for updates.
Contact Us
If you have questions about our data processing practices, please contact us at: