Prism uses the following third-party subprocessors to deliver the service. All
subprocessors are bound by data processing agreements and provide adequate data protection
guarantees under GDPR.
Infrastructure & hosting
|
Processor
|
Purpose
|
Location
|
| Supabase |
Database, authentication, file storage |
EU (AWS eu-west-1) |
| Fly.io |
API server hosting |
EU (Amsterdam) |
| Cloudflare Pages |
Frontend hosting, CDN, DDoS protection |
Global CDN / EU data processing |
AI & LLM
|
Processor
|
Purpose
|
Location
|
| Anthropic |
Contract analysis (Claude models). Data is not used for training.
|
US (SCCs in place) |
Payments
|
Processor
|
Purpose
|
Location
|
| Stripe |
Payment processing and subscription management |
US / EU (SCCs in place) |
Email & communications
|
Processor
|
Purpose
|
Location
|
| Resend |
Transactional email (magic links, notifications) |
US (SCCs in place) |
Analytics
|
Processor
|
Purpose
|
Location
|
| Plausible Analytics |
Cookieless, privacy-friendly web analytics |
EU (Germany) |
| Lodd |
Cookieless web analytics |
EU |
To be notified of changes to this list, email
hi@prism.moe.