Fleece AI Sub-processors List
Last updated: March 9, 2026
Fleece AI uses a carefully selected set of third-party sub-processors to deliver our autonomous AI agent platform. In accordance with the GDPR (Article 28), we maintain this transparent list of every sub-processor that processes personal data on behalf of Fleece AI. Each sub-processor has a Data Processing Agreement (DPA) in place. We evaluate each provider for security posture, data handling practices, and compliance certifications before onboarding. Our sub-processor list is reviewed quarterly and updated whenever providers are added, replaced, or removed.
| Sub-processor | Purpose | Location | DPA |
|---|---|---|---|
| Neon (Neon Inc.) | PostgreSQL database hosting — stores all application data | United States (AWS us-east-1) | ✓ In place |
| Vercel Inc. | Application hosting, edge functions, analytics | Global CDN (primary: United States) | ✓ In place |
| Stripe Inc. | Payment processing, subscription billing, invoicing | United States | ✓ In place |
| Resend Inc. | Transactional email delivery | United States | ✓ In place |
| OpenAI, Inc. | AI model inference (GPT-5.2) — processes user prompts and agent tasks | United States | ✓ In place |
| Anthropic PBC | AI model inference (Claude Opus 4.6) — processes user prompts and agent tasks | United States | ✓ In place |
| Pipedream Inc. | Third-party app integrations and managed OAuth connections | United States | ✓ In place |
| Google LLC | OAuth authentication (Google Sign-In), Google Analytics 4 (with consent) | United States / Global | ✓ In place |
| GitHub Inc. (Microsoft) | OAuth authentication (GitHub Sign-In) | United States | ✓ In place |
| Microsoft Corporation | OAuth authentication (Microsoft Entra ID Sign-In) | Global | ✓ In place |
How Your Data Flows
- User prompts and agent tasks are sent to AI providers (OpenAI, Anthropic) for inference only — your data is never used for model training.
- When you connect third-party apps (e.g., Google Calendar, Slack), your data passes through Pipedream's managed OAuth infrastructure.
- All application data is stored in Neon PostgreSQL with encryption at rest.
- Transactional emails are delivered through Resend. Only the recipient email and message content are shared.
- Payment data is processed entirely by Stripe. We never store credit card numbers.
Changes to This List
We will update this page when we add or remove sub-processors. Significant changes will be communicated via email to active account holders.
Questions about our data processing practices? Contact us at contact@fleeceai.app