Subprocessor list.
This page identifies the third-party subprocessors used by Clevyre, Inc. in connection with the Clevyre EU Withdrawal Button and Clevyre Accessibility Widget apps, and our website at clevyre.com. Each subprocessor processes data only to help us deliver the Services, under appropriate data-protection terms.
1. App subprocessors
| Provider | Purpose | Data processed | Location & transfer |
|---|---|---|---|
| Amazon Web Services (AWS) | Cloud hosting and infrastructure | Application data, customer data, merchant data | EU — Ireland (eu-west-1), EEA. Vendor: AWS, Inc. (US) under SCCs / EU-US DPF. |
| PlanetScale | Database hosting and storage | Withdrawal requests, merchant settings, customer information | EU region. Vendor: PlanetScale, Inc. (US) under SCCs / EU-US DPF. |
| Cloudflare | CDN, security, caching, DDoS protection | IP addresses, request metadata, security logs | Global edge network. Vendor: Cloudflare, Inc. (US) under SCCs / EU-US DPF. |
| Resend | Transactional email delivery | Email addresses, notification content | United States. Vendor: Resend, Inc. under SCCs / EU-US DPF. |
2. Website subprocessors
These providers operate on our marketing website (clevyre.com) and load subject to your cookie consent. See our Cookie Policy for details.
| Provider | Purpose | Data processed | Location & transfer |
|---|---|---|---|
| Google Analytics | Website usage and traffic analytics | IP address, device & browser data, usage events | Vendor: Google LLC (US) under SCCs / EU-US DPF. |
| Mixpanel | Product and engagement analytics | Usage events, device data, identifiers | Vendor: Mixpanel, Inc. (US) under SCCs / EU-US DPF. |
| Cookiebot | Cookie consent management | IP address (truncated), consent records | EU — Denmark (EEA). Vendor: Cybot A/S. |
3. Infrastructure overview
- AWS — hosts application servers and related infrastructure in the EU (Ireland) region.
- PlanetScale — securely stores application data and customer-submitted withdrawal requests.
- Cloudflare — website performance, caching, security, and DDoS protection.
- Resend — sends transactional emails such as notifications and withdrawal-request communications.
- Google Analytics & Mixpanel — measure website and product usage.
- Cookiebot — captures and stores website cookie-consent choices.
4. International transfers
Our apps' core infrastructure and databases are hosted in the EU (Ireland) region, within the EEA. Where a subprocessor processes data outside the EEA, the transfer is protected by appropriate safeguards — a European Commission adequacy decision, the EU-US Data Privacy Framework, or Standard Contractual Clauses (SCCs).
5. Subprocessor changes
We may add or replace subprocessors as our Services evolve. We will give affected merchants at least 30 days' prior notice by email, and material updates will be reflected on this page. If you object to a new subprocessor on reasonable data-protection grounds, contact us within that period; if we cannot resolve the objection, you may terminate the affected Service.
6. Contact
Questions regarding subprocessors may be directed to Clevyre, Inc., Whitefield, Bengaluru, Karnataka 560066, India, or privacy@clevyre.com.