This page is the authoritative list of sub-processors that Syntharra Limited engages to deliver the service. It is referenced and incorporated by the Privacy Policy and the Data Processing Agreement.
Change notice procedure. Before adding or replacing a sub-processor we give every client at least 14 days’ advance email notice and update this page. Clients may object by emailing legal@syntharra.com; an unresolved objection is grounds for termination of the affected services without penalty.
Current sub-processors
| Sub-processor | Purpose | Data shared | Location | Transfer mechanism |
|---|---|---|---|---|
| Stripe (Stripe Inc., Stripe Payments Europe Ltd) Privacy | Payment processing, Stripe Connect onboarding, payouts to clients. | Client account details; payer name, email, payment amounts and metadata. | United States and Ireland. | EU-US Data Privacy Framework (self-certified) and 2021 Standard Contractual Clauses Module 2 / Module 3 in fallback. |
| Retell AI Privacy | AI voice agent platform; real-time speech, transcription, and response generation. | Outbound call audio and transcripts; invoice metadata necessary for the AI agent to identify the call context. | United States. | 2021 Standard Contractual Clauses Module 3 (processor to processor) under our DPA with Retell. Transfer Impact Assessment process in place. |
| Telnyx LLC Privacy | Telephony carrier for outbound voice calls and SMS messages. | Recipient phone number, call metadata, SMS content and delivery status. | United States, with global delivery network. | 2021 Standard Contractual Clauses Module 3 under our DPA with Telnyx. Transfer Impact Assessment process in place. |
| Supabase Inc. Privacy | Managed PostgreSQL database hosting all Syntharra production data. | All Personal Data described in the Privacy Policy that is stored in our database. | United States. | 2021 Standard Contractual Clauses Module 3 under our DPA with Supabase. Transfer Impact Assessment process in place. |
| Anthropic PBC Privacy | Periodic, de-identified service-improvement analysis. Used via the Claude Code CLI subscription; the Anthropic API is not used. | De-identified, aggregated weekly call metrics only. No raw audio. No unredacted transcripts. Client may opt out in the dashboard. | United States. | 2021 Standard Contractual Clauses Module 3 under the Claude Code subscription terms. Transfer Impact Assessment process in place. |
| Brevo (Sendinblue SA) Privacy | Transactional email delivery (welcome messages, outcome reports, system notifications). | Client name, email address, and the content of transactional messages. | European Union (Paris). | No transfer outside the EEA for Brevo’s primary services. Where Brevo subcontracts US infrastructure, 2021 Standard Contractual Clauses apply. |
| Sentry (Functional Software, Inc.) Privacy | Application error monitoring. | Application error metadata. Configured to scrub Personal Data fields before ingestion. | United States. | 2021 Standard Contractual Clauses Module 3 under our agreement with Sentry. Transfer Impact Assessment process in place. |
US registered agent for service of process
Syntharra has appointed a US registered agent for service of process to support its obligations under Section 8 of the Terms of Service. Agent name and address: pending appointment. This page will be updated within 5 business days of appointment.
UK Article 27 representative
Syntharra has appointed a UK representative under UK GDPR Article 27 to receive inquiries from UK residents and the ICO. Representative name and address: pending appointment. This page will be updated within 5 business days of appointment.
Historical changes
Material changes to this list since publication will be logged below, including the effective date and a short description.
- (no changes recorded since publication)