Subprocessors

Last Updated: March 2026

This page lists the third-party subprocessors that Promptise uses to provide our Service. All subprocessors are bound by data processing agreements (DPAs) ensuring compliance with GDPR and Swiss FADP.

What Are Subprocessors?

Subprocessors are third-party service providers that may process personal data (such as IP addresses in server logs) on our behalf as part of delivering the Promptise website. We ensure all subprocessors maintain appropriate security standards and comply with applicable data protection laws.

Our Subprocessors

1. Vercel Inc.

Service:

Website hosting and content delivery

Data Processed:

IP addresses, technical request data, server logs, usage analytics

Data Location:

United States (with EU adequacy decision and additional safeguards)

Transfer Safeguards:

EU-US Data Privacy Framework (certified adequacy)
UK Extension to EU-US Data Privacy Framework
Swiss-US Data Privacy Framework
Standard Contractual Clauses (2021 SCCs approved by European Commission)

Certifications:

SOC 2 Type II
ISO 27001

Documentation:

Privacy Policy: vercel.com/legal/privacy-policy
Data Processing Agreement: vercel.com/legal/dpa
Security & Compliance: vercel.com/security

2. Contentful GmbH

Service:

Content management and delivery (guides, learning paths, documentation)

Data Processed:

Website content, API requests, temporary IP addresses (processed during content delivery requests, not stored by us)

Data Location:

United States (EU-based company: Berlin, Germany)

Transfer Safeguards:

EU-US Data Privacy Framework (certified adequacy)
UK Extension to EU-US Data Privacy Framework
Swiss-US Data Privacy Framework
Standard Contractual Clauses
GDPR compliant by design (EU-headquartered company)

Certifications:

ISO 27001
SOC 2 Type II

Documentation:

Privacy Policy: contentful.com/legal/privacy-at-contentful/privacy-notice
Data Processing Agreement: contentful.com/legal/dpa
Security & Compliance: contentful.com/security

Data Transfer Mechanisms

We ensure appropriate safeguards for all international data transfers through one or more of the following mechanisms:

EU-US Data Privacy Framework

Both Vercel and Contentful are certified under the EU-US Data Privacy Framework (adequacy decision adopted by the European Commission on July 10, 2023), providing adequate protection under GDPR Article 45.

Standard Contractual Clauses (SCCs)

We use the 2021 Standard Contractual Clauses approved by the European Commission (Decision 2021/914) as an additional safeguard for data transferred outside the EU/EEA.

Swiss-US Data Privacy Framework

For transfers from Switzerland to the US, we rely on the Swiss-US Data Privacy Framework and Standard Contractual Clauses adapted for Swiss law, as approved by the Swiss Federal Data Protection and Information Commissioner (FDPIC).

Changes to This List

We will update this page if we add or remove subprocessors. For any questions, contact us at hello@promptise.com.

Contact

Email:

hello@promptise.com

For more information about how we handle data, see our Privacy Policy.

Our Subprocessors

1. Vercel Inc.

Service:

Website hosting and content delivery

Data Processed:

IP addresses, technical request data, server logs, usage analytics

Data Location:

United States (with EU adequacy decision and additional safeguards)

Transfer Safeguards:

EU-US Data Privacy Framework (certified adequacy)
UK Extension to EU-US Data Privacy Framework
Swiss-US Data Privacy Framework
Standard Contractual Clauses (2021 SCCs approved by European Commission)

Certifications:

SOC 2 Type II
ISO 27001

Documentation:

Privacy Policy: vercel.com/legal/privacy-policy
Data Processing Agreement: vercel.com/legal/dpa
Security & Compliance: vercel.com/security

2. Contentful GmbH

Service:

Content management and delivery (guides, learning paths, documentation)

Data Processed:

Website content, API requests, temporary IP addresses (processed during content delivery requests, not stored by us)

Data Location:

United States (EU-based company: Berlin, Germany)

Transfer Safeguards:

EU-US Data Privacy Framework (certified adequacy)
UK Extension to EU-US Data Privacy Framework
Swiss-US Data Privacy Framework
Standard Contractual Clauses
GDPR compliant by design (EU-headquartered company)

Certifications:

ISO 27001
SOC 2 Type II

Documentation:

Privacy Policy: contentful.com/legal/privacy-at-contentful/privacy-notice
Data Processing Agreement: contentful.com/legal/dpa
Security & Compliance: contentful.com/security

Data Transfer Mechanisms

We ensure appropriate safeguards for all international data transfers through one or more of the following mechanisms:

EU-US Data Privacy Framework

Standard Contractual Clauses (SCCs)

We use the 2021 Standard Contractual Clauses approved by the European Commission (Decision 2021/914) as an additional safeguard for data transferred outside the EU/EEA.