Introduction
This page lists the third-party sub-processors that helpful bits GmbH uses to provide the Vibe Manager service to users in the United States. We will provide advance notice of any material changes to our sub-processor arrangements, including the addition of new sub-processors or changes to existing ones that may affect the processing of your personal data.
All sub-processors are contractually bound to maintain appropriate security measures and comply with applicable data protection laws.
Current Sub-processors
Stripe
Purpose: Payment processing services
Data Processing Regions: United States, European Union
Legal Documents:
OpenAI
Purpose: AI model processing and natural language understanding
Data Processing Regions: United States
Data Usage: Training disabled where available and contractually restricted to service provision
Legal Documents:
Google AI/Gemini
Purpose: AI model processing and natural language understanding
Data Processing Regions: United States
Data Usage: Training disabled where available and contractually restricted to service provision
Legal Documents:
xAI
Purpose: AI model processing and natural language understanding
Data Processing Regions: United States
Data Usage: Training disabled where available and contractually restricted to service provision
Legal Documents:
OpenRouter
Purpose: AI routing and processing services
Data Processing Regions: United States
Data Usage: Training disabled where available and contractually restricted to service provision
Legal Documents:
Vercel
Purpose: Web hosting and edge infrastructure
Data Processing Regions: Global (with EU data residency options)
Legal Documents:
Amazon Web Services (AWS)
Purpose: Desktop application hosting and content delivery (CloudFront CDN and S3 storage)
Data Processing Regions: Global (with regional data residency options)
Legal Documents:
Auth0
Purpose: Authentication and identity management services
Data Processing Regions: United States, European Union
Legal Documents:
Mailgun
Purpose: Transactional email delivery services
Data Processing Regions: United States, European Union
Legal Documents:
Data Protection
All sub-processors are required to implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk of processing. We conduct due diligence on all sub-processors to ensure they meet our data protection standards and comply with applicable privacy laws.
Updates and Changes
We may update this list from time to time as we add or remove sub-processors. Material changes will be communicated in advance through appropriate channels, including updates to this page and direct notification where required by applicable law.
If you have questions about our sub-processor arrangements or data processing practices, please contact us at [email protected].
Data Processing Addendum
Business customers who process personal data through our Service should review and accept our Data Processing Addendum (DPA), which governs our data processing relationship and includes provisions for sub-processor management.