Sub-processors
Last reviewed [effective date pending]
Draft pending legal review. This page is a working draft and is not yet final. It does not constitute legal advice.
Önduřř uses the service providers below to run the Service. Each is bound by a data processing agreement and may process data only on our instructions, never for its own purposes. This list is the current source of truth; the summary in our Privacy Policy (Section 6) should always match it.
| Vendor | Purpose | Data processed |
|---|---|---|
| Supabase | Authentication and database hosting | All account and profile data |
| Twilio | SMS delivery for optional phone verification | Phone number (hashed after verification) |
| Cloudflare R2 | Photo storage | Uploaded photos |
| Cloudflare Turnstile | Bot protection on signup and login | Browser/device signals, no account data |
| Resend | Transactional email | Email address, message content |
| Mapbox | Map rendering | Approximate (fuzzed) location |
| Sightengine | Automated photo moderation | Uploaded photos |
| Yoti | Facial age estimation at signup | Selfie image (not retained by Önduřř) |
| Stripe | Identity verification for photo uploads and adult-content access | Government ID and selfie (held by Stripe, not Önduřř) |
| PostHog | Product analytics | Usage events, excludes sensitive profile fields |
| Sentry | Error monitoring | Error/crash reports; session replays mask all text and block all media |
| Upstash | Rate limiting and ephemeral cache | Short-lived rate-limit counters, no profile data |
| Vercel | Application hosting | All data in transit through the app |
| Railway | Application hosting (socket server, cron worker) | All data in transit through the app |
Legal classification per vendor (service provider, contractor, or third party under CCPA) is confirmed as part of each vendor's data processing agreement; [classification table pending counsel review].
Questions about a specific vendor or processing purpose: privacy@ondurr.com