Legal — Sub-processors
Sub-processor list
Version 1.1 · Effective: 2026-05-19 · Last updated: 2026-05-19 · Document id: regunav-subs-v1
Regunav engages the sub-processors below to deliver the ReguNav™ Service. Each sub-processor is contractually bound by terms substantively equivalent to the obligations Regunav owes Customer under the DPA. Regunav remains fully responsible for sub-processor performance.
This list is the single source of truth — the same data appears on trust.regunav.com/sub-processors and in DPA Annex II, all generated from packages/seed-data/src/sub-processors.ts per Constitution Amendment 40 (canonical implementations).
We provide 30 days' advance notice of new or replaced sub-processors via the authenticated console banner and to your designated DPA contact. Customer may object in writing under DPA §6; if the parties cannot agree, Customer may terminate the affected portion of the Service with pro-rata refund.
To subscribe to sub-processor change notifications: privacy@regunav.com (subject line "subscribe sub-processors").
1. Infrastructure
| Vendor | Role | Data | Region | Transfer safeguard |
|---|---|---|---|---|
| Cloudflare, Inc. | Edge compute (Workers), CDN, DNS, DDoS protection, WAF, R2 object storage, D1 SQL, Queues, KV, Logpush | All Customer Data in transit and at rest | Global (customer-region selectable; EU-only on request) | EU SCCs Module 2 + UK IDTA + Swiss FDPIC supplement; DPF-certified |
| Stripe, Inc. | Billing, subscription management, tax calculation | Billing contact + invoice metadata; PAN never reaches Regunav | United States (Stripe is the PCI-DSS Level 1 processor) | EU SCCs Module 2/3 + UK IDTA; DPF-certified |
| Clerk, Inc. | Authentication, SSO, SAML 2.0, OIDC, SCIM provisioning | Account credentials, MFA factor metadata, SSO assertions | United States | EU SCCs Module 2 + UK IDTA; SOC 2 Type II |
| Cerbos Inc. | Authorization policy decision point (PDP) | Principal id + resource id + action (no PII payload) | US / EU (bundle ships to our edge; PDP runs in-tenant) | EU SCCs Module 2 (data limited to identifiers) |
| Meilisearch | Full-text search index | Per-tenant searchable metadata (no PII payload) | EU (Frankfurt) | EU-resident processor; no transfer required |
2. Outbound communications
| Vendor | Role | Data | Region | Transfer safeguard |
|---|---|---|---|---|
| Postmark (ActiveCampaign LLC) | Transactional email delivery via the single outbound rail (Constitution Amendment 38) | Recipient email + template id + minimal context | United States | EU SCCs Module 2 + UK IDTA; DPF-certified |
3. Support & engineering
| Vendor | Role | Data | Region | Transfer safeguard |
|---|---|---|---|---|
| GitHub, Inc. (Microsoft) | Source-code hosting + GitHub App integration surface (Code Constitution) | Public repository data + App installation metadata | United States | EU SCCs Module 2 (Microsoft Online Services DPA); DPF-certified |
| Linear, Inc. | Issue tracking, engineering workflow | Customer-name + redacted ticket text when escalated | United States | EU SCCs Module 2 + UK IDTA |
4. Optional (customer-elected)
| Vendor | Role | Data | Region | Transfer safeguard |
|---|---|---|---|---|
| Customer-elected BYOC vault provider (AWS / Azure / GCP / Cloudflare) | Holds Customer signing keys + audit-trail copy in Customer's own account | Customer Data per Customer configuration | Customer-controlled | Customer-controlled; Regunav holds zero credentials |
| Hugging Face, Inc. | Optional model hosting for customers using HF-hosted inference | Model artifacts + per-tenant API metadata (no PII without explicit Customer routing) | United States / France (customer choice) | EU SCCs Module 2 + DPA |
5. Onward sub-processors
Each of the above engages its own sub-processors (e.g. Cloudflare engages AWS in some sub-regions). The current onward-sub-processor lists are maintained by those vendors and available on request.
6. Contact
Privacy: privacy@regunav.com · DPA: /legal/dpa.
Regunav Inc. · 2026.