Sub-processors

Last updated: 10 May 2026

Overview

Qone uses the third parties listed below to deliver the platform. They process personal data on our behalf in the role of sub-processor as defined by GDPR Article 28. We require each sub-processor to provide a Data Processing Agreement (DPA) and apply technical and organisational measures equivalent to our own.

Current sub-processors

Sub-processorPurposeRegionData accessedDPA
OpenAIAI chat assistant + embeddings for in-product knowledge baseUnited StatesChat messages and tool-call payloads when AI features are enabled by the workspace.Link
Cloudflare R2Object storage for uploads (images, PDFs, attachments)Global (jurisdiction selectable per bucket)User-uploaded files and exported PDFs.Link
ResendTransactional email delivery (notifications, password resets)United StatesRecipient email addresses and email body content.Link
PaddleSubscription billing, payments, and invoicing for the Qone platformUnited Kingdom + global payment networksBilling-related data: account email, plan, transaction amounts. Payment card data is tokenized by Paddle.Link
PostHogProduct analytics and feature flagsEU (data residency configured to EU pod)Pseudonymous usage events, page views, and feature interactions. PII fields are masked at the SDK.Link
SentryApplication error tracking and performance monitoringUS or EU — depends on SENTRY_DSN pod (verify before launch; EU pod preferred)Stack traces, request metadata, and breadcrumbs. Cookies, auth headers, and password/token fields are stripped before send.Link
Slack TechnologiesSlack workspace integration for notifications, slash commands, and ticket creationUnited StatesOnly enabled when a workspace admin connects Slack. Notification text and minimal user identity (email-to-Slack-user mapping) are sent.Link
Database hosting (managed Postgres)Primary application databaseProduction region — see DPA on requestAll tenant data persisted by the platform. Encryption-in-transit (TLS) is enforced; encryption-at-rest depends on the host configuration.On request

Notification of changes

We will provide written notice (email to the workspace owner) at least 30 days before adding, removing, or replacing a sub-processor that processes customer personal data. Customers may object on reasonable grounds; if we cannot find a commercially reasonable alternative, the customer may terminate the affected service for the remaining unused term.

Contact

For questions about sub-processors or to request copies of the DPAs we hold, email [email protected].