Legal
Pericls uses the following third-party service providers (“sub-processors”) to deliver and operate the Regulatory Compliance Intelligence Platform. Each sub-processor is bound by a Data Processing Agreement requiring GDPR-equivalent protections.
| Provider | Purpose | Data Categories | Location | Privacy Policy |
|---|---|---|---|---|
| Stripe | Payment processing | Billing data, email address | US + EU | View → |
| Resend | Transactional email delivery | Email addresses, notification content | US | View → |
| PostHog | Product analytics | User ID, page views, feature usage events | US | View → |
| Sentry | Error monitoring & diagnostics | User ID, error context, device info | US | View → |
| OpenAI | LLM inference for regulatory analysis | Content submitted for analysis | US | View → |
| Anthropic | LLM inference for regulatory analysis | Content submitted for analysis | US | View → |
| Google (Gemini) | LLM inference for regulatory analysis | Content submitted for analysis | US / EU | View → |
| AWS S3 | Document storage | Uploaded documents | Configurable (region-specific) | View → |
| Google OAuth | Authentication (single sign-on) | Auth tokens, email address, display name | US | View → |
Where sub-processors are located outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including:
We will update this page and notify affected customers at least 30 days before engaging a new sub-processor or materially changing how an existing sub-processor is used. Customers on Enterprise plans may object to new sub-processors per the terms of their Data Processing Agreement.
To receive notifications of sub-processor changes, contact privacy@pericls.com.