Sub-processors
The third-party services we use to operate the YesRef Dashboard. We name each sub-processor, what data we share with them, where they process it, and on what lawful basis.
Last reviewed: 25 April 2026. Questions: privacy@yesref.com
A. Active processors of personal data
Vendors that handle personal data on our behalf. Each is named in our privacy policy under UK GDPR Article 28; this list is the source.
A1. AWS SES (Simple Email Service)
- Vendor
- Amazon Web Services
- Region
- eu-west-2 (London)
- Data shared
- Recipient email, name, message body — transactional emails only (ticket notifications, invites, password resets, daily reminders)
- Purpose
- Transactional email delivery
- Lawful basis
- Contract
- Transfer
- UK-resident; no cross-border transfer
- Tracking
- Open + click events captured for delivery diagnostics. We do not use email tracking for marketing or profiling.
A2. Anthropic (Claude Haiku)
- Vendor
- Anthropic, PBC
- Region
- United States
- Data shared
- Truncated user-submitted ticket descriptions (1,000-character cap) and ticket metadata (page URL, page name, type)
- Purpose
- AI triage and classification of submitted tickets
- Lawful basis
- Legitimate interests (operational classification of feedback)
- Transfer
- UK → US, covered by Standard Contractual Clauses / UK IDTA
- Privacy posture
- Non-training: ticket data is never used to train AI models. Retention of model responses is capped at 90 days.
A3. Chargebee
- Vendor
- Chargebee Inc.
- Region
- UK / EU
- Data shared
- Customer record (email, billing address), invoice and subscription state
- Purpose
- Subscription billing, payment processing, invoice generation
- Lawful basis
- Contract + legal obligation (financial records)
- Transfer
- UK-resident
A4. Attio
- Vendor
- Attio Ltd.
- Region
- United Kingdom
- Data shared
- Organisation records, user records (name, email), deals, notes
- Purpose
- Customer relationship management — operational sales workflows
- Lawful basis
- Legitimate interests
- Transfer
- UK-resident
- Direction
- Outbound push only — we write data to Attio; we do not read user data back from it
A5. Google BigQuery + Stitch (analytics pipeline)
- Vendors
- Google LLC (BigQuery), Stitch Data / Talend (pipeline)
- Region
- EU multi-region (BigQuery); EU/UK (Stitch)
- Data shared
- Aggregate analytics: marketing traffic, pipeline metrics, behavioural aggregates. No raw personal data per our data-minimisation principle.
- Purpose
- Marketing analytics and dashboard reporting
- Lawful basis
- Legitimate interests
- Transfer
- UK → EU; within UK GDPR adequacy area
A6. Sentry (error tracking)
- Vendor
- Functional Software, Inc. (Sentry)
- Region
- EU (production target)
- Data shared
- Error stack traces, browser metadata, user identifier (when authenticated), breadcrumbs
- Purpose
- Production error tracking and alerting
- Lawful basis
- Legitimate interests (operational reliability)
- Transfer
- UK → EU; within adequacy area
A7. Aircall (emergency SMS channel)
- Vendor
- Aircall SAS
- Region
- EU (France)
- Data shared
- SMS message content, destination phone number (on-call phone only)
- Purpose
- Emergency SMS escalation for P1 incident alerts
- Lawful basis
- Legitimate interests (incident response)
- Transfer
- UK → EU; within adequacy area
- Rate-limited
- Maximum 3 SMS per organisation per rolling 24 hours
A8. Microsoft Entra ID (single sign-on)
- Vendor
- Microsoft Corporation
- Region
- EU
- Data shared
- User identity (email, name, tenant identifier, OIDC subject claim)
- Purpose
- Single sign-on for users whose organisation uses Microsoft 365
- Lawful basis
- Contract (necessary for the SSO sign-in path the user chose)
- Transfer
- Within EU/UK adequacy area
B. Infrastructure
Amazon Web Services hosts the entire dashboard stack in eu-west-2 (London). These are infrastructure services, not separately negotiated sub-processors, all covered by a single AWS Data Processing Agreement.
- AWS Lambda — application runtime
- AWS RDS (MySQL, PostgreSQL) — application databases
- AWS S3 — file storage (exports, generated reports)
- AWS Secrets Manager + Parameter Store — credentials
- AWS EventBridge Scheduler — scheduled jobs
- AWS CloudWatch Logs — application logs
All UK-resident in the eu-west-2 region.
C. Operational tools
We use Slack and GitHub for internal operations and code management. Neither receives user personal data in the normal course of operating the dashboard.
Changes to this list
We update this list when we add a new sub-processor or when an existing relationship changes materially. When the list changes, we notify users in the dashboard at next sign-in. If you have questions or want to object to a particular sub-processor's involvement, contact privacy@yesref.com.