Legal

Sub-processors

Every vendor that helps us run the Service, what they do, and where they operate.

Draft for review. This document is being finalized with counsel for Northbeams Inc. It is not yet the authoritative version. Questions: privacy@northbeams.com.

Last updated: 10 July 2026. Northbeams Inc. uses the sub-processors below to run the Service. Each is bound by terms that require appropriate security and confidentiality. Customer data (the labels, counts, severity, hashed snippets, and per-user attribution described in our Privacy Policy) is stored on Google Cloud.

Sub-processorPurposeDataLocation
Google Cloud / Firebase Core infrastructure and customer data storage (Firestore, Cloud Storage) Account data and product data (labels, counts, severity, hashed snippets, per-user attribution) United States and EU [TODO: confirm with Joe: default region and per-tier residency]
Vercel Marketing site hosting and edge compute Site visitor request data (IP address, user agent). No customer product data United States, global edge network
Stripe Payments and subscription billing Billing contact and payment details. Northbeams does not store full card numbers United States
Resend Transactional email (sign-in, alerts, product notifications) Recipient email address and message content United States
Crisp In-app support chat Support messages and any contact details you provide European Union

Changes to this list

We keep this page current as our vendors change. When we add or replace a sub-processor that handles customer data, we will update this page and notify account admins in advance, so you have time to raise questions or objections. [TODO: confirm with Joe: notification method and notice period, and whether customers can subscribe to change alerts.]

Questions

To ask about a sub-processor, or to request a data processing agreement, email privacy@northbeams.com.