Subprocessors

Last Updated: October 31, 2025

In accordance with GDPR Article 28, MarTech AI LLC uses the following third-party service providers (subprocessors) to help deliver our services. Each subprocessor has been carefully vetted for security and compliance.

Current Subprocessors

Service ProviderPurposeLocationData Transferred
Stripe, Inc.Payment processing and billingUnited StatesPayment details, billing information
Supabase, Inc.Database hosting and data storageUnited States (AWS)All application data
Sentry.ioError monitoring and performance trackingUnited StatesError logs, performance metrics
Google LLC (Gmail SMTP)Transactional email deliveryUnited StatesEmail addresses, notification content
OpenAI, L.L.C.AI Copilot - AI-powered analytics and insightsUnited StatesEmployee names, aggregated workforce statistics, shift patterns
Upstash, Inc.Session management and caching (Redis)United StatesSession tokens, temporary cache data
Vercel Inc.Application hosting and deployment infrastructureUnited StatesAll application data (hosting infrastructure)

Data Protection Measures

  • All subprocessors are bound by Data Processing Agreements (DPAs)
  • Data transfers comply with GDPR Article 28 requirements
  • Standard Contractual Clauses (SCCs) are in place for international transfers
  • All subprocessors maintain enterprise-grade security certifications
  • Regular security audits are conducted on all subprocessors

Notification of Changes

We will notify customers at least 30 days in advance of adding any new subprocessor or making material changes to existing subprocessors. Customers may object to the use of new subprocessors by contacting us at contact@xshift.ai.

Need More Information?

Enterprise customers can request detailed security documentation, DPAs, and audit reports.

Contact: contact@xshift.ai

Subprocessors List | Third-Party Data Processors | XShift AI GDPR