Sub-processors
The full list of sub-processors that may handle Personal Data on behalf of resumAI under our DPA.
Last updated: 2026-06-21. Material changes are announced 30 days in advance via email to billing contacts.
| Sub-processor | Purpose | Data category | Location | Transfer mechanism |
|---|---|---|---|---|
Clerk Clerk Inc. clerk.com | Authentication, session management, user identity. | Account identifiers (email, name), session tokens, login metadata. | United States | Standard Contractual Clauses (SCCs) + DPF (EU-U.S. Data Privacy Framework). |
Stripe Stripe Payments Europe Ltd. stripe.com | Payment processing, billing, subscription management, invoicing. | Billing identity, payment method tokens, transaction history. Card details are tokenized by Stripe; we never see card numbers. | Ireland (EU) for EU-region accounts; US for global processing. | Stripe Payments Europe acts as EU-region controller; SCCs cover transfers. |
Anthropic Anthropic PBC anthropic.com | Large language model inference for CV parsing and analysis. | CV text content (transient — not retained for training). No account identifiers passed. | United States | SCCs + Anthropic enterprise data-processing terms (no training on customer data). |
OpenAI OpenAI, L.L.C. openai.com | Alternative LLM provider for CV parsing (used as fallback or A/B option). | CV text content (transient — API mode, no training on customer data per OpenAI API ToS). | United States | SCCs + OpenAI API data-processing addendum. |
Resend Resend, Inc. resend.com | Transactional email delivery (welcome, payment receipts, upload-failure notices). | Recipient email address, message subject, message body. | United States (EU region available; verify current configuration in DPA). | SCCs. |
Hetzner Hetzner Online GmbH hetzner.com | Primary application hosting (compute, database, object storage). All resumAI application data lives on Hetzner. | All customer data: account, CV files, parsed structured data, billing records, audit logs. | Germany / Finland (EU). | Intra-EU; no third-country transfer. |
Notes
- Transient processing means the sub-processor handles the data only for the duration of a single request and does not store it (subject to the provider’s logs and abuse detection windows, which are bounded by their own retention policies).
- LLM providers (Anthropic, OpenAI) are configured in API mode with training-on-customer-data disabled per their respective enterprise terms.
- Right to object: under our DPA, customers may object to a new sub-processor within 30 days of notice. If we cannot accommodate the objection, customers may terminate the affected service with a pro-rated refund.
- For more information, see our Data Processing Addendum and Privacy Policy.