OrderPier

Sub-processors

Last updated: 2026-05-28

OrderPier engages the third-party service providers below to deliver the service. Each is bound by a written data-processing agreement aligned to GDPR Article 28. We commit to 30 days' advance notice of any addition or material change.

To subscribe to change notices, email subprocessor-updates@orderpier.com.

ProviderPurposeDataRegionDPA
Google LLC (Gemini API)LLM inference for PO extractionEmail body & attachments processed during extractionUnited StatesView
Anthropic, PBCLLM inference for PO extractionEmail body & attachments processed during extractionUnited StatesView
PostHog, Inc.Product & website analyticsUsage events, page views, device/browser metadata, user + org idEuropean Union (eu.posthog.com)View
Amazon Web Services (SES, S3, SNS)Inbound email ingress + raw message storage. Outbound transactional emailEmail contents, attachments, sender metadata, raw MIMEEU (eu-west-1, Ireland)View
Fly.ioApplication hosting + compute (marketing site, dashboard, workers)App traffic, auth tokens, email payloads processed in-memoryUnited States (iad) + global edgeView
Neon (managed Postgres)Primary datastoreAll customer data, extracted orders, audit log, attachment metadataEU (eu-west-2, London)View
Clerk Inc.Authentication & organization managementUser identity, session tokens, organization membershipsUnited StatesView
Stripe Inc.Billing & subscription managementBilling contact, payment method, invoice historyUnited StatesView

International transfers

For data subjects in the EU/EEA, UK, and Switzerland, transfers to US-based sub-processors are governed by the 2021 EU Standard Contractual Clauses (Module 2) plus the UK International Data Transfer Addendum, annexed to our DPA.