Subprocessors
This page summarizes the third-party services PHIGuard uses to operate the platform and the public
marketing site. It is derived from the internal vendor inventory in docs/hipaa/vendors.md.
Current list
| Name | Purpose | Data scope | Status |
|---|---|---|---|
| Amazon Web Services | Infrastructure hosting, database, storage, encryption, logging, and CDN services | Application data, encrypted files, audit data, and operational metadata | Production |
| Sentry | Application error monitoring and alerting | Sanitized error and request metadata with PHI scrubbing enabled | Production |
| Resend | Transactional email and marketing email delivery | Recipient email address and message metadata only; no PHI permitted in email content | Production |
| Stripe | Subscription billing and payment processing | Organization billing metadata and billing contact details only; no PHI permitted | Production |
| DocuSeal (self-hosted) | Business Associate Agreement signature workflows | BAA envelope metadata and signed agreement artifacts hosted inside PHIGuard-controlled cloud infrastructure | Production |
| PostHog | Marketing-site analytics only | Public-site analytics only; not loaded in the authenticated app | Marketing only |
| WorkOS | Enterprise SSO and directory sync | Workforce identity attributes for enterprise SSO tenants | Disabled until BAA is signed |
Change notice
PHIGuard updates this list as new subprocessors are added, removed, or materially changed. Launch-critical vendor contract status is tracked in the internal vendor inventory and launch checklist.
Contact
Questions about subprocessors or vendor controls can be sent to [email protected].