Guidelines for Sub-processors
Last Updated: January 1, 2025
1. Introduction
Ivory Inc. ("GrowHub", "we", "our" or "us") is committed to protecting the privacy and security of your data. In order to provide our Services, we engage certain third-party service providers ("Sub-processors") to process data on our behalf. This document provides information about our Sub-processors and the guidelines we follow when engaging them.
As described in our Privacy Policy, we only share your data with Sub-processors to the extent necessary to provide our Services. All Sub-processors are required to maintain appropriate security measures and comply with applicable data protection laws.
2. Our Sub-processors
The following is a list of Sub-processors we currently use to support the delivery of GrowHub Services:
Supabase Inc.
Service: Cloud database and authentication service
Data Processing: Stores user account information, team data, workspace settings, notification messages, and related application data
Location: United States
Website: https://supabase.com
Google Cloud Platform (Google LLC)
Service: Cloud infrastructure and BigQuery integration
Data Processing: Hosts application infrastructure, processes BigQuery queries, and stores query results for data visualization
Location: United States and other regions as configured
Website: https://cloud.google.com
Stripe, Inc.
Service: Payment processing
Data Processing: Processes subscription payments and manages billing information. GrowHub does not store credit card information - all payment data is securely stored and managed by Stripe
Location: United States
Website: https://stripe.com
OpenAI, L.L.C.
Service: AI-powered insights and report generation
Data Processing: Processes data queries and generates AI-powered insights, reports, and recommendations based on your BigQuery data
Location: United States
Website: https://openai.com
3. Sub-processor Requirements
Before engaging any Sub-processor, GrowHub ensures that the Sub-processor:
- Provides appropriate technical and organizational security measures to protect personal data
- Agrees to process personal data only on documented instructions from GrowHub
- Maintains confidentiality of personal data
- Complies with applicable data protection laws and regulations
- Assists GrowHub in meeting its data protection obligations
- Implements appropriate measures to ensure data security, including encryption in transit and at rest where applicable
- Notifies GrowHub of any data breaches or security incidents
4. Changes to Sub-processors
GrowHub may update or change the list of Sub-processors from time to time. When we add a new Sub-processor that will process personal data, we will:
- Update this page with information about the new Sub-processor
- Ensure the new Sub-processor meets all our security and privacy requirements
- Provide notification through our Services or via email to account administrators
We encourage you to periodically review this page to stay informed about any changes to our Sub-processors.
5. Data Protection and Security
GrowHub maintains oversight of all Sub-processors to ensure they process data in accordance with our instructions and applicable data protection laws. We regularly review our Sub-processors' security practices and require them to maintain certifications and compliance standards appropriate to the services they provide.
For more information about how we protect your data, please refer to our Privacy Policy.
6. Your Rights and Control
You maintain control over your data at all times. You have the right to:
- Access your personal data processed by GrowHub and its Sub-processors
- Request correction of inaccurate data
- Request deletion of your data
- Object to certain types of data processing
- Request data portability
To exercise any of these rights, please contact us at privacy@growhub-data.com.
7. Contact Information
If you have any questions about our Sub-processors or data processing practices, please contact us at:
Ivory Inc.
Email: privacy@growhub-data.com