RightsVault uses the following third-party service providers (subprocessors) to help deliver our services. All subprocessors have been carefully vetted and are bound by appropriate data protection agreements.

Notification of Changes

We will notify customers at least 30 days in advance before adding or replacing a subprocessor. See our Data Processing Agreement (DPA) for details.

Current Subprocessors

Clerk

Authentication

Service: User authentication, identity management

Data Processed: Email addresses, names, authentication tokens

Location: United States (AWS)

Website: clerk.com

Stripe

Payments

Service: Payment processing, subscription management

Data Processed: Payment information, billing addresses

Location: United States (PCI DSS Level 1)

Website: stripe.com

AWS S3

File Storage

Service: Cloud file storage

Data Processed: Contract documents, uploaded files

Security: AES-256 encryption at rest

Location: United States (us-east-1)

Website: aws.amazon.com/s3

Neon PostgreSQL

Database

Service: Managed PostgreSQL database

Data Processed: All application data

Security: Encrypted at rest, SSL/TLS connections

Location: United States

Website: neon.tech

Vercel

Hosting

Service: Application hosting, edge network

Data Processed: Application code, static assets

Location: United States and global edge

Website: vercel.com

Sentry

Error Tracking

Service: Error monitoring, performance tracking

Data Processed: Error logs (PII scrubbed)

Location: United States

Website: sentry.io

PostHog

Analytics

Service: Product analytics

Data Processed: Usage analytics (anonymized)

Location: United States

Website: posthog.com

Upstash Redis

Caching

Service: Redis caching and rate limiting

Data Processed: Cache data, rate limit counters

Location: United States (AWS)

Website: upstash.com

Contact

For questions about subprocessors, contact privacy@rightsvault.studio

← Back to Data Processing Agreement

Current Subprocessors

Clerk

Authentication

Service: User authentication, identity management

Data Processed: Email addresses, names, authentication tokens

Location: United States (AWS)

Website: clerk.com

Stripe

Payments

Service: Payment processing, subscription management

Data Processed: Payment information, billing addresses

Location: United States (PCI DSS Level 1)

Website: stripe.com

AWS S3

File Storage

Service: Cloud file storage

Data Processed: Contract documents, uploaded files

Security: AES-256 encryption at rest

Location: United States (us-east-1)

Website: aws.amazon.com/s3

Neon PostgreSQL

Database

Service: Managed PostgreSQL database

Data Processed: All application data

Security: Encrypted at rest, SSL/TLS connections

Location: United States

Website: neon.tech

Vercel

Hosting

Service: Application hosting, edge network

Data Processed: Application code, static assets

Location: United States and global edge

Website: vercel.com

Sentry

Error Tracking

Service: Error monitoring, performance tracking

Data Processed: Error logs (PII scrubbed)

Location: United States

Website: sentry.io

PostHog

Analytics

Service: Product analytics

Data Processed: Usage analytics (anonymized)

Location: United States

Website: posthog.com

Upstash Redis

Caching

Service: Redis caching and rate limiting

Data Processed: Cache data, rate limit counters

Location: United States (AWS)

Website: upstash.com

Contact

For questions about subprocessors, contact privacy@rightsvault.studio

Subprocessors List

Notification of Changes

Current Subprocessors

Clerk

Stripe

AWS S3

Neon PostgreSQL

Vercel

Sentry

PostHog

Upstash Redis

Contact

Subprocessors List

Notification of Changes

Current Subprocessors

Clerk

Stripe

AWS S3

Neon PostgreSQL

Vercel

Sentry

PostHog

Upstash Redis

Contact