Subprocessors
Third-party service providers that process data on behalf of Redshift.
Overview
In accordance with GDPR transparency requirements, this page lists all third-party service providers (subprocessors) that may process customer data as part of the Redshift service. All subprocessors have been carefully vetted for security and compliance standards.
Change Notification
We will notify customers at least 30 days in advance before adding new subprocessors or making material changes to existing subprocessor arrangements.
Notification will be sent via email to workspace owners and posted on this page.
Current Subprocessors
Purpose — Team data storage
Data Processed — Team configurations and shared plugins
Location — United States
Security — SOC 2 Type II, ISO 27001
Purpose — Source control integration
Data Processed — Repository metadata, pull requests, issues, comments
Location — United States
Security — SOC 2 Type II
Purpose — Image uploads (optional)
Data Processed — Workspace logos and branding images
Location — United States
Security — ISO 27001
Data Transfer Mechanisms
All subprocessors listed above are located in the United States. For international data transfers from the EU/EEA, we rely on:
Optional Services
Some subprocessors are only engaged when you explicitly enable optional features:
Security Vetting Process
Before adding any new subprocessor, we conduct a security assessment that includes:
Contact
For questions about our subprocessors or to exercise your objection rights under our Data Processing Agreement, please contact us at hello@redshifthub.com
Get in Touch