── Subprocessors ──

Every vendor, on the record.

Effective: May 14, 2026Last updated: May 14, 2026Version: 2026.05.14Entity: Verdict Systems Inc.

This page is the authoritative list of subprocessors that may process Personal Data on Verdict's behalf, by category. It is incorporated by reference into the Data Processing Addendum.

We give Customers 30 days' advance notice before adding or replacing a subprocessor that handles Customer Personal Data. To subscribe to changes by email, write to privacy@verdict.systems with the subject "Subprocessor notifications."

§1.0

Notice & Objection Policy

1.1 Advance notice. Verdict will notify Customers at least 30 days before adding or replacing a subprocessor with access to Customer Personal Data, by email and by updating this page.

1.2 Customer objection. A Customer may object to a new subprocessor within the 30-day window for documented data-protection concerns. The parties will work in good faith to resolve. If unresolved, the Customer may terminate the affected portion of the Service for the unused remainder of its prepaid term and receive a prorated refund.

1.3 Emergency replacements. Where a subprocessor must be replaced urgently to address a security or availability incident, Verdict will notify Customers as soon as practicable and explain the reason. The objection right continues to apply.

Roadmap entries
Items marked "Roadmap" are not yet processing Customer Personal Data. They are listed for transparency. They move to "Active" only after Verdict has executed a written DPA with the subprocessor and completed onboarding.
§2.0

Infrastructure

SubprocessorServiceData categoriesRegionTransfer basisStatus
Vercel, Inc.Edge hosting, CDN, deploy infrastructure (web + API)Customer identifiers, IPs (truncated), API metadata, telemetryGlobal (primary US-east)EU SCCs + DPAActive
Cloudflare, Inc.DDoS mitigation, R2 object storage (evidence payloads), DNSEdge logs, Customer Content payloadsGlobal (data plane US-east, EU-west)EU SCCs + DPAActive
Supabase, Inc.Postgres database + auth metadataAccount, billing metadata, evidence index recordsus-east-1, eu-west-1EU SCCs + DPAActive
Amazon Web Services, Inc.S3 cold storage, networking, CloudHSM (see § 3)Backup data, archived telemetry, signing keys (HSM only)us-east-1 primary; eu-central-1 for EU residencyEU SCCs + DPAActive
§3.0

Cryptographic Keys (HSM)

SubprocessorServiceData categoriesRegionTransfer basisStatus
AWS CloudHSMFIPS 140-2 Level 3 hardware security modules — Ed25519 signing key generation, storage, signingSigning-key material only. No Customer Content. Keys are non-exportable.us-east-1EU SCCs + DPAActive

The HSM provider never has access to Customer Content. The HSM holds Ed25519 signing keys that operate on 32-byte Merkle roots produced inside Verdict's production network. Keys are generated inside the HSM, are non-exportable, and are rotated quarterly.

§4.0

Transparency Log

SubprocessorServiceData categoriesRegionTransfer basisStatus
Sigstore Public Good InstancePublic transparency log (Rekor) — anchors Merkle roots onlyMerkle root hash (32 bytes), timestamp, public key, batch metadata. No Customer Content, no Personal Data.Global public infrastructure (operated by Linux Foundation / OpenSSF)Public service; no Personal Data transferredActive

Sigstore Rekor receives only the Merkle root and metadata identifying the entry as a Verdict batch. Customer Content and Personal Data are never written to Rekor. See Privacy § 6 and Terms § 9.

§5.0

Operational

SubprocessorServiceData categoriesRegionTransfer basisStatus
Stripe, Inc.Payment processing, invoicingBilling identifiers, payment last-4, transaction history (no full card data ever touches Verdict)Global (US data controller)EU SCCs + DPAActive
ResendTransactional and audience emailEmail address, message content, delivery metadataus-east-1EU SCCs + DPAActive
Google LLC (Google Workspace + Analytics 4)Business email, calendar, drive; opt-in website analytics with IP anonymizationBusiness communications; truncated technical identifiersGlobalEU SCCs + DPAActive
Plain (or equivalent ticketing)Customer support ticketingSupport correspondence and metadataus-east-1EU SCCs + DPARoadmap
LinearEngineering issue tracking (where Customer data is referenced in tickets)Issue metadata; redacted Customer referencesus-east-1EU SCCs + DPAActive
§6.0

AI / Model Providers

SubprocessorServiceData categoriesRegionTransfer basisStatus
Anthropic, PBCClaude models — assistive features (summaries, search, conformance helpers)Only prompts you submit to AI features; zero-retention enterprise terms requestedus-east, eu-westEU SCCs + Verdict no-train termsActive
OpenAI, L.L.C.Optional model provider for select featuresOnly prompts you submit to AI features; enterprise API (no training)us-eastEU SCCs + Verdict no-train termsRoadmap

AI providers receive only the prompts and content that you specifically submit through AI-powered features of the Service. Where commercially available, Verdict opts in to zero-retention and no-trainingterms with the provider so that prompts and outputs are not used to train shared models. Confirm the terms applicable to a specific feature in the feature's in-product disclosure or in your Order.

§7.0

Subscribe to Changes

Email privacy@verdict.systems with subject "Subprocessor notifications" and the account or Order ID for which you want to receive notice. We confirm subscription within five business days.

── Questions about this policy ──

Email privacy@verdict.systems. For all other legal matters: legal@verdict.systems.

Postal: Verdict Systems Inc. · Attn: Legal · Houston, Texas, USA