Sub-processors
Last updated: 23 April 2026
This page lists the third-party service providers ("sub-processors") Carrotly Pte. Ltd. uses to deliver Reckon. It is published in accordance with Article 28(2) GDPR and is part of our standard Data Processing Addendum.
Current sub-processors
| Provider | Entity | Region | Purpose | Category |
|---|---|---|---|---|
| Notion | Notion Labs, Inc. | United States | Upstream API for the Customer's task database. Reckon reads and writes via the official Notion API at the Customer's instruction. | Upstream API |
| Vercel | Vercel Inc. | Global edge; data plane in United States | Web hosting, edge delivery of the marketing site and OAuth surface, build and deployment pipeline. | Core platform |
| Microsoft Azure | Microsoft Corporation / Microsoft Operations Pte Ltd | Singapore (Southeast Asia region) | PostgreSQL database (Azure Database for PostgreSQL) holding encrypted OAuth tokens and device metadata; Redis cache (Azure Cache for Redis) holding rate-limit counters and OAuth state nonces. | Core platform |
| Apple Push Notification Service | Apple Inc. | United States | Delivery of silent and user-visible push notifications to the Customer's Apple devices using APNS device tokens. | Notification |
| Sentry | Functional Software, Inc. d/b/a Sentry | United States (US data residency) | Crash reports and diagnostic traces. Personal identifiers and task content are scrubbed before submission. | Diagnostics |
| PostHog | PostHog Inc. | United States and European Union (EU data residency for EEA users) | Pseudonymous product-usage events keyed to a random device identifier. No Notion account email, no task content. | Analytics |
Notification of changes
Before adding or replacing a sub-processor, we will publish the change on this page and, for Customers with a written DPA in place, send an email notice to the Customer's account contact at least 30 days in advance. Customers may object on reasonable data-protection grounds within that 30-day period; see section 5 of our Data Processing Addendum.
Cross-border transfers
Where a sub-processor is located outside the country of the data subject (for example, a provider in the United States processing data of an EU resident), the transfer is protected by the European Commission's Standard Contractual Clauses, the UK International Data Transfer Addendum, or another lawful transfer mechanism as appropriate. Singapore residents' data transferred out of Singapore is protected by contractual terms requiring a standard of protection comparable to the PDPA.
What this list does not include
We do not consider the following to be sub-processors of personal data:
- The Customer's own end users and the Apple devices they use to access Reckon
- Domain registrars, certificate authorities, and DNS providers that do not have access to personal data inside the service
- Internal subsidiaries or affiliates of an existing sub-processor, where the same contractual data-protection terms continue to apply
Contact
Questions about our sub-processors can be directed to hello@usereckon.com.