Skip to main content
HENSHU

Subprocessors

Third-party service providers that help us operate HENSHU

Last updated: 2025-11-06

What are subprocessors?

Subprocessors are third-party service providers we use to help operate HENSHU. They may access personal data only to perform services on our behalf and must follow our instructions.

All subprocessors listed below have appropriate Data Processing Agreements (DPAs) and, where required, use Standard Contractual Clauses (SCCs) for international data transfers to ensure GDPR/UK GDPR compliance.

AI & Audio Processing

We do NOT use external AI APIs (such as OpenAI, Anthropic, or ElevenLabs) for audio processing.

All AI audio enhancement and processing is performed on our own private infrastructure (hosted on AWS/Google Cloud). Your raw audio files and voice data are never sent to third-party AI model providers.

Current Subprocessors

Amazon Web Services (AWS)

Privacy Policy →

Purpose

Cloud hosting, file storage, audio processing infrastructure

Data Processed

Audio files, metadata, application data, logs

Region

US (primary), Global

Google Cloud / Firebase

Privacy Policy →

Purpose

Authentication, database, analytics

Data Processed

User credentials, metadata, usage analytics

Region

US (primary), Global

Stripe

Privacy Policy →

Purpose

Payment processing, subscription management

Data Processed

Payment information, billing details, subscription status

Region

US (primary), Global

Google Analytics 4

Privacy Policy →

Purpose

Usage analytics and website performance monitoring

Data Processed

Device/browser data, page views, user interactions

Region

US (primary), Global

Changes to Subprocessors

We will update this page when we add or remove subprocessors. For material changes that may affect data processing, we will notify you via:

  • In-app notification
  • Email to your registered address
  • Updating the "Last updated" date on this page

Data Protection Standards

All subprocessors are required to:

  • Implement appropriate technical and organizational security measures
  • Process personal data only as instructed by HENSHU
  • Use Standard Contractual Clauses (SCCs) for EU/UK data transfers
  • Not use customer content to train AI/ML models (where applicable)
  • Comply with applicable data protection laws (GDPR, UK GDPR, CPRA, APPI)

Questions?

If you have questions about our subprocessors or data processing practices, contact us at privacy@henshu.io.

Privacy PolicyData RequestTerms of UseBack to home