Shielda — Sub-processor List

_Gate ID: G-6 / P3.3-V1 · Last reviewed: 2026-04-23._

Gate ID: G-6 / P3.3-V1 · Last reviewed: 2026-04-23.

This page lists every third-party service that may process Customer Data in the course of delivering Shielda. It is published under our Data Processing Agreement and updated whenever a sub-processor changes. The machine-readable source of truth is control-plane/public/trust/sub-processors.json and is served at https://shielda.io/trust/sub-processors.json.

Notification

We notify Customers at least 30 days before a new sub-processor is engaged, via email to the organisation's billing contact and via the /dashboard/trust-center page. Customers may object; see the DPA, §Sub- processing.

Current sub-processors

Provider Purpose Data categories Location Safeguards --- --- --- --- --- AWS (Amazon Web Services, Inc.) Primary cloud compute, storage (S3), database (RDS PostgreSQL), secrets All Customer Data at rest and in transit us-east-1 (default), eu-west-1 (EU tenants) SOC 2 Type II, ISO 27001, DPA in place, SCCs for EU transfers Auth0 (Okta, Inc.) Identity & access management (SSO, MFA, session) User identifiers, login metadata us SOC 2 Type II, ISO 27001, DPA in place Stripe, Inc. Subscription billing, payment method storage Billing contact, payment tokens (no PANs) us PCI-DSS Level 1, DPA in place Anthropic, PBC LLM inference (Counselor, fix generation) — only for tenants using our managed LLM tier Prompts + completions (opt-out available) us DPA + zero-retention configuration OpenAI, L.L.C. LLM inference — only for tenants using managed LLM tier with OpenAI selected Prompts + completions (opt-out available) us DPA + enterprise no-training default Sentry (Functional Software, Inc.) Application error telemetry Stack traces, request IDs, user IDs (pseudonymous) us SOC 2 Type II, scrubbing of PII at client Cloudflare, Inc. CDN, DNS, DDoS protection Request metadata (IPs, user-agents) Global edge ISO 27001, DPA in place SendGrid (Twilio, Inc.) Transactional email delivery Recipient email, message content us DPA in place Grafana Labs (for managed observability tier only) Logs, metrics, traces Operational telemetry (no Customer Data payloads) us / eu DPA in place

Not sub-processors

Customer-chosen integrations (GitHub, GitLab, Bitbucket, Slack, Jira, AWS, Azure, GCP accounts connected by the Customer). Shielda acts on behalf of the Customer under their credentials; those vendors are the Customer's sub-processors, not ours. BYOK LLM providers. When a Customer supplies their own API key, the LLM call is made directly under the Customer's contract with that provider.

Data residency

Enterprise tenants can pin their region to eu-west-1 at contract signing; in that case the AWS entry above is Ireland-only and we exclude US-only sub-processors (Sentry, SendGrid, OpenAI, Anthropic) unless the Customer opts in explicitly.

Changes since last revision

Date Change --- --- 2026-04-23 Initial publication (Phase 3 launch-gate G-6).