How we use subprocessors
Safer Inventory operates on managed infrastructure rather than maintaining our own data centers. The vendors below are bound by data-protection agreements substantially equivalent to the obligations in our Data Processing Addendum. We're liable for their acts and omissions as if they were our own.
Tier 1 subprocessors process customer data as part of normal service operation. Adding a new Tier-1 subprocessor triggers the 30-day notification under the DPA.
Tier 2 subprocessors process operational metadata or are only engaged when a customer explicitly chooses to connect their account.
Tier 1 — customer data access
| Subprocessor | Purpose | Data processed | Region | Trust |
|---|---|---|---|---|
| Supabase | Primary Postgres database | All customer + personal data | Canada (yyz) | Trust page |
| Cloudflare | CDN, R2 object storage, Workers | Static assets, uploaded files (logos, exports), encrypted at rest | Global edge · primary storage Canada | Trust page |
| Fly.io | API + worker hosting | In-flight request payloads only; no persistent storage | Canada (yyz primary) | Trust page |
| Vercel | Web app hosting (Next.js) | In-flight request payloads only; no persistent storage | Global edge · regional cache Canada | Trust page |
| Clerk | Authentication + session management | Email, name, hashed password, sessions | United States (Frankfurt for EU customers) | Trust page |
| Upstash | Redis (cache, queues, rate limits) | Ephemeral session + rate-limit counters | AWS us-east-1 (regional pin available) | Trust page |
| Stripe | Payment processing, Stripe Tax | Billing email, name, payment method tokens (PCI scope) | United States (PCI Level 1) | Trust page |
Tier 2 — operational + opt-in
| Subprocessor | Purpose | Data processed | Region | Trust |
|---|---|---|---|---|
| Resend | Transactional email (welcome, alerts) | Recipient email, message body | United States | Trust page |
| Sentry | Error monitoring | Stack traces, request metadata; PII filtered before send | United States · EU regional | Trust page |
| PostHog | Product analytics | Anonymised event stream, IP truncated | United States · EU regional | Trust page |
| GitHub | Source code hosting | No customer data; we host source code only | United States | Trust page |
| Intuit (QBO) | QuickBooks Online integration | Only if connected by the customer; OAuth scope minimal | United States | Trust page |
| Shopify | Shopify integration | Only if connected by the customer; OAuth scope minimal | Canada | Trust page |
Notification of changes
We notify all customers by email and via an in-app banner at least 30 days before adding a new Tier-1 subprocessor. Tier-2 changes are reflected on this page when they happen and announced in the next monthly product email.
To subscribe to subprocessor change notifications outside the in-app channel, email privacy@saferinventory.com.