Subprocessor List
Last updated:
Tendrill, LLC ("Tendrill," "we," "us," or "our") uses certain third-party service providers ("subprocessors") to assist in providing our services. This page lists our current subprocessors and the types of data they may process on our behalf.
Current Subprocessors
The following table lists our current subprocessors:
| Subprocessor | Purpose | Location | Data Types |
|---|---|---|---|
| Convex | Database and backend infrastructure | United States | Account data, user preferences, application data |
| Plaid Inc. | Financial account connections and data aggregation | United States | Financial account identifiers, balances, holdings, transactions |
| Resend | Transactional email delivery | United States | Email addresses, email content |
| Twilio / Sendblue | SMS and RCS messaging services | United States | Phone numbers, message content, delivery status |
| PostHog | Product analytics and usage insights | United States / European Union | Usage data, device information, anonymized analytics |
| Sentry | Error monitoring and application performance | United States | Error logs, stack traces, device information |
| OpenAI | AI-powered features and insights generation | United States | User queries, context data for AI processing |
| Massive | Market data and financial information | United States | Ticker symbols, price queries |
| Composio | Third-party integrations and automation | United States | Integration credentials, workflow data |
| Polar | Payment processing and subscription management | United States | Payment information, subscription status, billing details |
| Vercel | Web hosting and content delivery | United States (Global CDN) | HTTP request data, access logs |
Convex
Plaid Inc.
Resend
Twilio / Sendblue
PostHog
Sentry
OpenAI
Massive
Composio
Polar
Vercel
International Data Transfers
Some of our subprocessors may process data outside of your country of residence. For transfers of personal data from the European Economic Area (EEA), United Kingdom, or Switzerland to countries that have not been deemed to provide an adequate level of data protection, we rely on appropriate safeguards such as:
- •Standard Contractual Clauses (SCCs) approved by the European Commission
- •Data Processing Agreements with appropriate security commitments
- •Subprocessor certifications (e.g., SOC 2 Type II, ISO 27001) where available
Updates & Notifications
How We Notify You of Changes
We update this page when we add or remove subprocessors. We encourage you to check this page periodically. For enterprise customers with Data Processing Agreements (DPAs), we provide advance notice of new subprocessors as specified in your agreement.
If you have concerns about a subprocessor listed above, please contact us at the address below. For customers subject to GDPR or similar regulations, you may have the right to object to the use of a new subprocessor as outlined in your DPA.
Data Processing Agreements
Enterprise customers may request a Data Processing Agreement (DPA) that governs the processing of personal data on their behalf. Our DPA includes:
- •Standard Contractual Clauses for international transfers
- •Security commitments and incident notification procedures
- •Subprocessor notification and objection rights
- •Data deletion and return procedures
To request a DPA, please contact us at the address below.
Contact
If you have questions about our subprocessors or wish to request a Data Processing Agreement:
Tendrill, LLC
141 N Water St, Unit 20
Milwaukee, WI 53202 United States
Email: privacy@tendrill.com