Sign in Run Free Scan
Trust

Subprocessors.

The third-party services that process customer data on AIVZ's behalf. Updated when the list changes; notification subscription available below.

Last updated: May 2, 2026 Version 1.0
Subscribe to change notifications Contact security
Last updatedMay 2, 2026
Last material changeInitial publication of subprocessor list.
Artifact

Current subprocessor list.

Each row represents one subprocessor. Where AIVZ uses additional third parties for non-customer-data purposes (e.g., internal tooling), they are not listed here.

Subprocessor Service / role Data processed Location Status
Cloud hosting provider Cloud infrastructure (compute, storage, database) All AIVZ customer data United States DPA in place
Email delivery provider Transactional email (account confirmations, notifications, scan reports) Customer email addresses, message content United States DPA in place
Error tracking Application error tracking and observability Application error metadata; may incidentally include customer-input fragments United States DPA in place
Product analytics Product usage analytics Usage events, account metadata United States DPA in place
Payment processor Subscription billing and payment Customer billing details (no card data stored by AIVZ) United States DPA in place
Customer support Customer support tooling (helpdesk, chat) Support conversation content United States DPA in place
AI engine APIs Third-party AI engine APIs for citation monitoring (OpenAI, Anthropic, Perplexity, etc., where used) URLs being monitored, prompts being run Per provider Per provider

Per-row legal entity names, sub-subprocessors, and certifications held by each subprocessor are available on request via security@aivz.app.

Subscribe to change notifications.

Get email notice when AIVZ adds, removes, or materially changes a subprocessor — typically 30 days in advance for additions; immediate notice for removals.

How AIVZ handles changes.

When AIVZ adds, removes, or materially changes a subprocessor:

  1. For additions: AIVZ commits to 30 days advance notice via email to subscribed customers and via this page. Customers have the right to object (objection process described below).
  2. For removals: AIVZ updates this page when the change is effective. No advance notice is required for removals, since they reduce the data-processing surface.
  3. For material changes to an existing subprocessor's role, scope, or location: same as additions — 30 days advance notice with right to object.

Customer objection process

Customers who object to a new subprocessor's addition can:

  1. Email security@aivz.app within the notice window with a written objection.
  2. AIVZ will engage in good faith to resolve — possible outcomes include: AIVZ chooses an alternative subprocessor, AIVZ explains why the change is necessary and the customer accepts, or, if no resolution is reachable, the customer can terminate the affected service per the contract terms.

Questions?

For specific questions about a subprocessor, AIVZ's contracting practice, or DPA-related requests: email security@aivz.app. Response SLA: 5 business days.

For general trust questions, see the Trust Center. For privacy questions, see the Privacy Policy.

Trust · Subprocessors