Subprocessors

Last Updated: June 6, 2025

Introduction

This page lists the third-party services that help us run Ecliptic. These services may process your data to provide their services to us. We carefully choose these partners and make sure they protect your data according to GDPR Article 28 requirements.

Data Processing Agreements

We have signed Data Processing Agreements (DPAs) with all our subprocessors. These agreements ensure that:

  • Subprocessors only process data as instructed by us
  • Subprocessors implement appropriate security measures
  • Subprocessors assist us with data subject rights requests
  • Subprocessors notify us of any data breaches
  • Subprocessors delete or return data when services end

Our Subprocessors

OpenRouter

What they do: Provide unified access to multiple AI models

Data they process:

  • User prompts and inputs
  • AI model responses
  • Usage statistics
  • Performance metrics

Note: OpenRouter routes our AI requests to various providers including:

  • Google Vertex AI
  • Anthropic
  • Amazon Bedrock
  • OpenAI
  • Nebius
  • Fireworks
  • Cerebras

Each provider processes data according to their own privacy policies and terms of service. We select providers based on performance, reliability, and data protection standards.

Polar

What they do: Handle all our payments and subscriptions

Data they process:

  • Payment information
  • Billing details
  • Subscription data
  • Tax information

Note: Polar acts as our Merchant of Record, meaning they handle all payment processing, tax calculations, and billing inquiries on our behalf.

Cloudflare

What they do: Host our code and storage, protect our website from attacks and make it faster

Data they process:

  • IP addresses
  • Browser information
  • Request data
  • Security logs

Neon Database

What they do: Store and manage our database

Data they process:

  • User account data
  • Application data
  • System logs

Data Protection Measures

All our subprocessors implement appropriate technical and organizational measures to protect your data, including:

  • Encryption of data in transit and at rest
  • Regular security assessments
  • Access controls and authentication
  • Backup and disaster recovery
  • Staff training on data protection

Changes to Subprocessors

We may add or change subprocessors. We will update this page when we do. For major changes, we will notify you by email at least 30 days in advance.

Contact

If you have questions about our subprocessors or data processing, contact us at:
Digital Reset UG
[email protected]