Subprocessors

Vendor processors we use.

We notify customers before adding new subprocessors. Current list below; effective dates and processing purpose included. Email legal@brainstorm.co to receive update notifications via email.

/ 01

Infrastructure

AWS (Amazon Web Services).

Primary compute, storage, networking. ECS Fargate (compute), RDS PostgreSQL (data), S3 (object storage), KMS (key management), ALB (ingress), Route53 (DNS). us-east-1 region.

/ 02

Edge

Cloudflare.

DNS, Universal SSL, page rules, edge cache. All five product zones (brainstorm.co, brainstormrouter.com, etc.).

/ 03

Identity

Keycloak (self-hosted).

Operator SSO + OIDC. Self-hosted in the platform ECS cluster; no third-party identity processor.

/ 04

Observability

CloudWatch (AWS-native).

Application logs + metrics. Tenant data does not flow to external observability vendors.

/ 05

Email

Postmark.

Transactional email (operator notifications, security disclosure responses). Customer email contents stay within the platform.

Notification updates.

Email legal@brainstorm.co to subscribe to subprocessor change notifications.

Subscribe to updates Privacy policy