To support delivery of our Services, NEXT may engage and use data processors with access to certain Customer Data or Personal Information (each, a “Subprocessor”). This page provides information about each Subprocessor. Please email security@nextapp.co if you have any questions.
Amazon Web Services
Location: Ireland, European Union
Security certifications: SOC 2 Type II and more
Data processed: Anonymized content, email address, IP address.
Use: Data storage, backups, CDN, DNS, SSL, domain management, emails.
DPA signed: Yes – incorporated into terms
Rev
Location: European Union or United States (explicit choice)
Security certifications: SOC 2 Type II
Data processed: User-added content (when using transcription).
Use: Audio and video transcription
DPA signed: Yes – incorporated into terms
Intercom
Location: San Francisco, United States.
Security certifications: Privacy Shield, ISO 27001, SOC 2 Type II, HIPAA, CSA.
Data processed: User name, email address, IP address, analytics
Use: Marketing and transactional emails
DPA signed: Yes – incorporated into terms
Shiny Planes
Location: San Francisco, United States.
Security certifications: SOC 2 Type I
Data processed: email address
Use: Feature announcements
DPA signed: Yes – incorporated into terms.
OpenAI
Location: United States
Security certifications: SOC 2 Type II
Data processed: User-added content
Use: Audio and video transcription
DPA signed: Yes – incorporated into terms
Microsoft Azure AI
Location: European Union or United States (explicit choice)
Security certifications: SOC 2 Type II
Data processed: User-added content
Use: Audio and video transcription
DPA signed: Yes – incorporated into terms