PixediReelio
Drafted internally. Drafted by Pixedi engineering. This pack has not been reviewed by external counsel. We will publish counsel-reviewed versions when any trigger in docs/37 §7 fires.

Sub-processors

Version v1.0.0 · Effective 2026-05-12 · Last updated 2026-05-12

1. About this page

This page lists the third-party sub-processors that Pixedi Digital Agency Limited (company number 16968210, registered office Flat 5-7 Leamington Road, Stockport, England, SK5 6BD) currently uses to provide the Aristo AI receptionist service. The same list is summarised in narrative form in the Privacy Policy at /legal/privacy section 5. Material additions or replacements are notified to active Customers in accordance with the Privacy Policy section 11.

2. OpenAI

Purpose: AI text generation and real-time voice processing.

Region: United States.

Categories of data flowed: chat message content, voice transcript content, system prompts, page URL context where supplied, and timestamps.

Transfer mechanism: relies on OpenAI's published Data Processing Addendum and standard contractual clauses for transfers outside the United Kingdom and European Economic Area.

3. Stripe Payments UK, Ltd.

Purpose: billing, payment processing, fraud and risk scoring.

Region: United Kingdom.

Categories of data flowed: billing email address, billing name, billing address, payment method metadata (Pixedi does not see full card numbers), invoice and subscription metadata, IP address at checkout, and risk signals.

Transfer mechanism: governed by Stripe's UK-entity terms; cross-border transfers within the Stripe group rely on Stripe's published standard contractual clauses and equivalent transfer mechanisms.

4. Neon (Frankfurt region)

Purpose: primary Postgres database hosting for the Service.

Region: Germany (Neon Frankfurt region).

Categories of data flowed: all Customer Data stored by the Service, including account profile, configuration, chat transcripts, voice transcripts, lead records, and audit events.

Transfer mechanism: data is stored at rest in the European Union; cross-border transfers (for example to Neon support engineers outside the EEA) rely on Neon's published Data Processing Addendum and standard contractual clauses where applicable.

5. Better Auth

Purpose: authentication library used by the Service to manage Customer accounts, sessions, and credentials.

Region: runs on the Neon database described in section 4 (Germany); no separate hosted infrastructure is engaged for Better Auth.

Categories of data flowed: email address, password hash, session tokens, login timestamps, and IP address at login.

Transfer mechanism: data resides in the same EU region as the primary database; no additional cross-border transfer is introduced by Better Auth itself.

6. Cloudflare, Inc.

Purpose: DNS, content delivery, web application firewall, DDoS protection, and Turnstile bot mitigation in front of public endpoints.

Region: global edge.

Categories of data flowed: HTTP request metadata (IP address, user-agent, headers, URL), Turnstile challenge tokens, and traffic patterns used for security decisions.

Transfer mechanism: relies on Cloudflare's published Data Processing Addendum and standard contractual clauses for transfers outside the United Kingdom and European Economic Area.

7. Resend (eu-west-1 region)

Purpose: transactional email delivery (notifications, lead alerts, account emails).

Region: Ireland (eu-west-1 region).

Categories of data flowed: recipient email address, email subject and body content, sending metadata, and delivery status.

Transfer mechanism: data is processed at rest in the European Union; any onward processing by Resend relies on its published Data Processing Addendum and standard contractual clauses where applicable.

8. Google LLC — Google Calendar

Purpose: Google Calendar booking redirect and booking integration; only invoked when a Customer enables booking and a Visitor follows the booking action.

Region: United States.

Categories of data flowed: redirect parameters, booking preferences, and Visitor-supplied booking details where the Customer has configured Google Calendar booking.

Transfer mechanism: relies on Google's published Data Processing Addendum and standard contractual clauses for transfers outside the United Kingdom and European Economic Area.

9. CapRover on Contabo VPS

Purpose: application hosting and orchestration of the Service.

Region: Germany (Contabo VPS, EU).

Categories of data flowed: all data processed by the Service in transit, plus technical logs (request logs, error logs, infrastructure metrics) stored on the host.

Transfer mechanism: data is stored at rest in the European Union; no cross-border transfer is required to operate the Service on this infrastructure.

10. Changes

Pixedi may add, replace, or remove sub-processors from time to time. This page is the source of truth for the current list. Material additions or replacements will be communicated to active Customers in accordance with Privacy Policy section 11.