Third-Party Processors — Hedotype
processor_list_version: 1 last_reviewed_at: 2026-05-25 Status: Engineering draft pending counsel review.
We share information with the third-party processors listed below. Each row names the processor, the role it plays, the lawful basis for the transfer, and a link to the processor's Data Processing Agreement.
| Processor | Role | Lawful basis | DPA |
|---|---|---|---|
| Anthropic | AI inference (Claude Sonnet 4.6, Claude Haiku moderation) for the AI companion feature | Article 9(2)(a) GDPR explicit consent; Article 6(1)(b) GDPR contract performance | Anthropic DPA |
| Vercel | Application hosting + edge runtime + analytics | Article 6(1)(b) GDPR contract performance; Article 6(1)(f) legitimate interests (security) | Vercel DPA |
| Neon | Managed PostgreSQL database (account, quiz answers, encrypted companion messages) | Article 6(1)(b) GDPR contract performance | Neon DPA |
| Resend | Transactional email (magic-link login, withdrawal confirmation) | Article 6(1)(b) GDPR contract performance | Resend DPA |
| Stripe | Payment processing | Article 6(1)(b) GDPR contract performance; Article 6(1)(c) legal obligation (tax/accounting) | Stripe DPA |
Notes
- We do NOT use any advertising or cross-site-tracking processors.
- We do NOT share data with any processor not listed above. Updates to
this list are CODEOWNERS-pinned and require Mike's review (see
apps/hedotype/docs/legal/README.md). - Anthropic processes prompts and completions per its own retention
policy; Hedotype's contract with Anthropic includes zero-retention
routing for the production endpoint at the time of writing. Verify
the current contract in
apps/hedotype/docs/legal/lawful-basis-matrix-v1.md. - All processors above are bound by appropriate contractual safeguards for international data transfers (Standard Contractual Clauses where applicable).
For the Privacy Policy that links here, see /legal/privacy.