New
Why we raised $4M and what we’re planning for 2020
Learn more →

Data Subprocessors

This is a list of the data subprocessors we use to support delivery of our Services.

To support delivery of our Services, Dovetail may engage and use data processors with access to certain Customer Data or Personal Information (each, a “Subprocessor”). This page provides information about each Subprocessor.

Please email security@dovetailapp.com if you have any questions.


Amazon Web Services

aws.amazon.com

  • Location: Seattle, United States.
  • Data security certifications: Privacy Shield, ISO27001, SOC3.
  • Data processed: Anonymized content, email address, IP address.
  • Use: Data storage, backups, CDN, DNS, SSL, domain management, emails.
  • DPA signed: Yes – incorporated into terms.

Baremetrics

baremetrics.com

  • Location: San Francisco, United States.
  • Data security certifications: Privacy Shield.
  • Data processed: Billing contact name, email, card metadata.
  • Use: Payment analytics and subscription management.
  • DPA signed: Yes – 22 October 2019.

Google Cloud

cloud.google.com

  • Location: Mountain View, United States.
  • Data security certifications: Privacy Shield, ISO27001, SOC3.
  • Data processed: User-added content (when using sentiment analysis).
  • Use: Natural language processing.
  • DPA signed: Yes – incorporated into terms.

Heroku

heroku.com

  • Location: San Francisco, United States.
  • Data security certifications: Privacy Shield, ISO27001, 27017, 27018 SOC2 Type 1.
  • Data processed: User name, email address, IP address.
  • Use: Infrastructure hosting and encrypted data storage.
  • DPA signed: Yes – incorporated into terms.

Mixpanel

mixpanel.com

  • Location: San Francisco, United States.
  • Data security certifications: Privacy Shield.
  • Data processed: User name, email address, IP address, analytics.
  • Use: CRM, product analytics, marketing emails.
  • DPA signed: Yes – incorporated into terms.

Stripe

stripe.com

  • Location: San Francisco, United States.
  • Data security certifications PCI.
  • Data processed: Billing contact name, email, address, card details.
  • Use: Payment processing and subscription management.
  • DPA signed: Yes – 8 October 2018.

Vitally

vitally.io

  • Location: Brooklyn, United States.
  • Data security certifications None.
  • Data processed: User name, email address, IP address, analytics.
  • Use: CRM, product analytics.
  • DPA signed: Yes – 26 July 2019.
Updated 22 Oct 2019

Try now for free

Try free for 7 days

Trusted by companies likeSee all →

shopify.comsquare.comsketch.comtarget.comvmware.com

Product

Data analysisResearch repositoryCollaborative researchCustomersIntegrationsPricing

© Dovetail Research Pty. Ltd.

Made in Australia