Subprocessors
Version 1.2 • Effective: March 2026 • See Legal Changelog
Audit-IQ uses trusted third-party service providers ("subprocessors") to operate and deliver the Service (for example: hosting, authentication, billing, email delivery, and operational monitoring).
We engage subprocessors that support appropriate security and privacy practices, and we limit data sharing to what is necessary for them to perform their services.
This page complements our Privacy Policy and Security Overview.
Current subprocessors
| Provider | Purpose | Data categories | Processing location |
|---|---|---|---|
| Supabase | Database, authentication, storage | Account/workspace data, uploaded documents (as applicable) | Varies by project region (see Data Residency) |
| Stripe | Billing & payments | Billing identifiers, invoices, payment status (no card data stored by Audit-IQ) | Varies by Stripe processing region |
| Vercel | Web hosting (public website) | Basic request metadata (e.g., IP address, user-agent) | Global edge / varies by region |
| Email provider | Transactional email delivery | Email address, message metadata (delivery events) | Varies by provider configuration |
| Monitoring / Logging | Operational observability | Service logs and error traces (may include limited identifiers; no document content by default) | Varies by provider configuration |
Note: The exact provider configuration may vary by environment (development, beta, production). If you require a procurement-ready list with specific regions and services enabled for your tenant, contact us.
See also: Data Residency.
Vendor due diligence
We evaluate subprocessors based on their suitability for the role they perform, which may include security documentation, contractual commitments, and privacy controls. We restrict access to customer data to what is necessary for service delivery.
Change notifications
We may update this list from time to time. Material changes will be reflected on this page and in our legal changelog. Where reasonably practicable, we will provide advance notice of material subprocessor changes through the Service or by email.
Contact: founder@audit-iq.com