Subprocessors
We keep the list of third parties that can touch customer data short, and we keep it honest. Wentzel Investments LLC runs its own infrastructure on AWS and Cloudflare, uses an in-house connector adapter rather than a third-party integration broker, and routes customer prompts only to our named AI provider. Every subprocessor below operates under a signed data processing agreement and a recognized third-party attestation. The continuously maintained inventory is available to customers on request.
| Subprocessor | What we use it for | Data handled | Region | Attestation | DPA |
|---|---|---|---|---|---|
| Amazon Web Services (AWS) | Core cloud platform — compute, object storage, encryption (KMS), workflow orchestration (Step Functions), transactional email (SES), and observability (CloudWatch). | All data classes | United States (us-east-1) | SOC 2 Type 2 · ISO/IEC 27001 · PCI DSS Level 1 · HIPAA (BAA) | ✓ |
| Cloudflare | Edge hosting and primary database — Workers, Pages, D1, global DNS, and the web application firewall that fronts every request. | Product traffic, request metadata, persistent product data (D1) | Global edge network | SOC 2 Type 2 · ISO/IEC 27001 | ✓ |
| Anthropic | Our primary AI provider — the Claude API powers assistant and automation features across the portfolio. (HIPAA-tagged paths route to Claude via AWS Bedrock under the AWS BAA instead.) | Customer prompts and model completions | United States | SOC 2 Type 2 | ✓ |
| Stripe | Payment processing and customer billing. Checkout is fully Stripe-hosted — card numbers are entered directly into Stripe and never reach our servers. | Billing identifiers and payment metadata (no card data on our origin) | Global | PCI DSS Level 1 · SOC 2 | ✓ |
| GitHub | Source-code hosting and continuous-integration pipelines. Customer product data does not flow here; it holds our code, commit history, and build metadata. | Source code and commit metadata | United States | SOC 2 Type 2 · ISO/IEC 27001 | ✓ |
| Atlassian | Internal work tracking and documentation — Jira and Confluence — including our compliance and security records. | Internal operational and program records | United States | SOC 2 · ISO/IEC 27001 | ✓ |
| Google Workspace | Workforce identity and single sign-on for Wentzel personnel, plus internal email and collaboration. | Employee identity and internal collaboration data | United States | SOC 2 · ISO/IEC 27001 · ISO 27017/27018 | ✓ |
| Twilio | Outbound SMS and voice for product notifications and account verification, where a customer has opted in. | Phone numbers and message content for opted-in messaging | United States | SOC 2 Type 2 · ISO/IEC 27001 | ✓ |
Where your data lives
Customer data is stored and processed in the United States (AWS us-east-1) and at Cloudflare's global edge. When data from the EU reaches the United States, the transfer is governed by Standard Contractual Clauses in the relevant data processing agreement, backed by a documented transfer impact assessment.
What we deliberately don't use
A short subprocessor list is a security decision, not an accident. We build and operate the pieces that handle customer data ourselves rather than reaching for additional vendors:
- Connectors are in-house. Integrations run through our own adapter and per-vendor first-party OAuth clients, with credentials held in AWS Secrets Manager — so no third-party integration broker ever sees customer tokens or data.
- Orchestration is AWS-native. Background workflows run on AWS Step Functions; we don't hand work to an external orchestration service.
- Observability is AWS-native. Telemetry stays inside our own AWS account (CloudWatch) rather than flowing to a separate monitoring SaaS.
- Break-glass credentials are offline. Recovery secrets are printed and sealed in a physical safe alongside a hardware security key — not in a cloud password manager.
How we announce changes
Material additions or changes to this inventory are announced through our trust center updates, with reasonable advance notice before a new subprocessor begins handling customer data.