Legal
Subprocessors. Who we let touch your data.
The third-party vendors we engage to help deliver PennyLens. Each is bound by a written DPA, confidentiality terms, and the international transfer instruments listed alongside them. We give 30 days' notice before adding or replacing any name on this list.
Last updated
May 20, 2026
Subscribe to changes by emailing privacy@pennylens.com with the subject “Subscribe to subprocessor updates”. We’ll notify you 30 days before any addition or replacement.
Subprocessor
Purpose
Region
Transfer mechanism
Infrastructure hosting — compute, object storage, queues, encrypted backups.
eu-west-1 (Ireland), eu-central-1 (Frankfurt), us-east-1 (N. Virginia)
EU SCCs Module 2 + UK IDTA for the US region.
Billing, invoicing, and payment processing. We never store full card numbers.
United States
EU SCCs Module 2 + UK IDTA.
AI insight generation from aggregated, redacted summaries. No End-User PII is sent; we do not send raw recordings. Zero-retention contractual mode is enabled on the Anthropic endpoint.
United States
EU SCCs Module 3 (PennyLens as Processor → Sub-Processor) + UK IDTA.
Transactional email delivery — verification, password reset, billing notifications.
United States
EU SCCs Module 2 + UK IDTA.
Application error monitoring with PII scrubbing applied at SDK level.
United States; EU residency option available for Business customers on request.
EU SCCs Module 2 + UK IDTA where applicable.
Changelog
- May 20, 2026Page introduced. Initial list reflects subprocessors active as of the v1.2 launch.
Object to a subprocessor?
Business customers may object to a new or replaced subprocessor within the 30-day notice window. We will work with you on an alternative; if none is available, you may terminate the affected portion of the service without penalty and receive a pro-rata refund of any prepaid, unused fees.
Send objections to legal@pennylens.com.