Legal document
Subprocessors
Last updated: June 19, 2026
Agentic Labs LLC engages the following subprocessors to provide the Service. We require each subprocessor to maintain security and data-protection commitments at least as protective as those in our Data Processing Addendum.
Current subprocessors
| Subprocessor | Purpose | Data processed | Region |
|---|---|---|---|
| Cloudflare, Inc. | Edge hosting, CDN, DNS, DDoS protection | Request metadata, IP, user-agent | Global edge (primary: US/EU) |
| Supabase (managed Postgres, Auth, Storage) | Application database, authentication, file storage | Account data, Customer Data, audit logs | EU (Frankfurt) / configurable |
| Stripe, Inc. | Payments, subscription billing, tax | Billing contact, payment method tokens, invoices | US, EU |
| Resend / transactional email provider | Transactional and account email delivery | Email address, message content | US, EU |
| OpenAI / model providers via Lovable AI Gateway | AI-generated summaries, classification, embeddings | Prompt content submitted by the user; no training on customer data | US, EU |
| Sentry (or equivalent) | Error monitoring and performance telemetry | Stack traces, error context, user/account identifiers | EU |
Notice of new subprocessors
We will provide at least 30 days' advance notice of new subprocessors that process customer Personal Data by updating this page and emailing account administrators who have subscribed to subprocessor updates. To subscribe, email legal@ctizero.com with the subject " Subprocessor notifications".
Objection
If a customer has a reasonable, documented objection to a new subprocessor, the parties will work in good faith to resolve it. If we cannot, the customer may terminate the affected portion of the Service for convenience.