This page lists the third-party sub-processors used by Guestwise Technology Ltd (“Guestwise”, “we”, “us”). These providers process personal data on behalf of our customers to help deliver our services.
This version was last updated on 19 November 2025.
1. Sub-processor List
| Sub-processor | Purpose | Data Processed | Processing Location | Link |
|---|---|---|---|---|
| AWS | Hosting, storage, compute | Guest PII, bookings, orders, vouchers, behaviour data, configuration data | eu-west-2 primary, eu-west-1 backup, CloudFront global | Privacy |
| Auth0 (Okta Customer Identity Cloud) | Authentication and identity | Email, first name, last name, password hash | EU-2 | Privacy |
| Databricks | Analytics, ETL and data processing | Same as AWS (guest PII, bookings, orders, behaviour data) | EU | Privacy |
| Google Workspace | Documents, sheets, email | Customer docs, analysis outputs, emails | EU data residency | Privacy |
| Mailchimp / Mandrill | Email delivery | Guest email addresses, email content, metadata | US / EU distributed | Privacy |
| Mailslurp | Dynamic inboxes, inbound email, AI responses | Email addresses and message content | EU / UK | Privacy |
| Twilio | SMS delivery (capability only) | Guest phone numbers (if used) | Global | Privacy |
| Sentry | Error monitoring | Stack traces that may contain incidental customer data | EU Sentry hosting | Privacy |
| Stripe | Payments | Guest payment metadata and identifiers | EU / US | Privacy |
| Slack | Internal communications | Customer information shared in discussions and files | US | Privacy |
| GitHub | Code repository and secrets storage | API keys and configuration secrets (no guest data) | US / EU | Privacy |
| Notion | Internal knowledge and documentation | Analysis outputs (no raw guest data) | US with EU options | Privacy |
| Google Drive | Document storage | Customer documentation and analysis | EU data residency | Privacy |
| Vercel | Hosting for web components | Stack traces may contain incidental data | London region, global edge | Privacy |
| Pusher | Real-time messaging | Restaurant orders with guest PII | EU / Global | Privacy |
| 1Password | Secure credential storage | Login details shared by customers | Global | Privacy |
2. How We Review Sub-processors
We review our sub-processors at least annually. We assess:
- security certifications
- data protection posture
- processing locations
- impact on our services
3. Contact
If you have questions about this list or wish to raise an objection under a data processing agreement, please contact our Data Protection Officer at [email protected].
