Last Updated: June 19, 2024
To deliver services, PrimeRole and its Affiliates may engage third-party processors and sub-processors to handle customer data. These entities are vetted to ensure they meet PrimeRole's stringent security, privacy, and confidentiality standards. The list of sub-processors includes providers for cloud infrastructure, product communications, customer support, and internal operations. PrimeRole regularly updates this list, and customers are notified of any changes to maintain transparency.
PrimeRole maintains control over the infrastructure used to host and process customer data, ensuring high performance and availability. Our production systems are housed within infrastructure sub-processors listed below, with user accounts typically established based on geographic location. PrimeRole may shift data among locations to optimize service delivery. The table below details the legal entities involved in storing and processing customer data to support our services.
| Entity Name | Activities | Country of Storage |
|---|---|---|
| Amazon Web Services (AWS) | Cloud data hosting Services, Infrastructure, and Storage. | United States, Frankfurt, India |
| Microsoft Azure | Cloud data hosting Services, Infrastructure, and Storage | United States, Frankfurt, India |
| Digital Ocean | Cloud data hosting Services, Infrastructure, and Storage | United States, Frankfurt, India |
| Cloudflare, Inc | Provides content distribution (CDN), security and DNS services for web traffic transmitted to and from the Services. OR Secure and manage traffic to the Services, with access to URL interactions and IP addresses. | Global |
PrimeRole leverages specific sub-processors to manage product communications and monitor service performance. These sub-processors facilitate real-time communication with users, oversee system health, and ensure the continuous availability of our services. They are carefully selected to meet PrimeRole's high standards for security and compliance, ensuring that all interactions and monitoring activities align with our commitment to protecting user data.
| Entity Name | Activities | Country of Storage |
|---|---|---|
| Atlassian | Project management and product & engineering related activity tracking, product quality documentation. | United States |
| Post Hog | Analytics & visualization software and customer experience platform | United States |
| SumoLogic | Application logs and monitoring solution | United States |
| Google Analytics | Website Visitor Analytics | United States |
| HashiCorp Vault | Security Vault for storing sensitive credentials and keys | United States |
| Entity Name | Activities | Country of Storage |
|---|---|---|
| Salesforce | Customer relationship management (CRM) platform, with access to name, email, role, and affiliation. | United States |
| LinkedIn Sales Navigator | Sales team find people on LinkedIn using this platform and outreach | United States |
| Stripe | Payment Processor & platform to accept and manage online payments | United States |
| JumpCloud IAM | Provides multifactor authentication and Identity and Access Management (IAM) capability Software-as-a-Service (SaaS) | United States |
| Slack | Messaging platform for internal communication, chat & notifications. | United States |
| 1Password | Provides secure credential storage application internally. | United States |
PrimeRole employs a rigorous selection process to evaluate the security, privacy, and confidentiality practices of all processors and sub-processors. We require these entities to adhere to standards that are equivalent to PrimeRole's own obligations under applicable Data Protection Agreements and privacy laws. This ensures that all data handling practices align with our commitment to maintaining the highest levels of data protection and compliance.
PrimeRole is committed to regularly updating its list of sub-processors, ensuring customers are always informed about the scope of sub-processing activities. Customers who have signed a Data Processing Agreement (DPA) with PrimeRole can object in writing to a new sub-processor within thirty (30) days of the update. The objection must outline legitimate reasons for the concern. If no objection is raised within this period, the new sub-processor is considered accepted.
PrimeRole regularly updates its list of processors and sub-processors by adding new or replacement entities. The last update date will also be noted above for your reference.
If you have any questions or concerns about our processors or sub-processors, please contact us at [email protected], and we will address your concerns promptly.