Privacy / Subprocessors

Who we share data with

Ophie relies on a small set of vetted service providers to deliver voice sessions, store memories, and keep the service safe. This page lists every one of them, what they receive, and where they process it.

Last updated April 26, 2026

Written DPAs

Every provider is bound by a data-processing agreement requiring breach notification, security controls, and subprocessor flow-downs.

No model training

Where a provider trains models, we contractually prohibit them from training on data we send.

30-day notice

We give at least 30 days' advance notice before adding a new subprocessor that handles consumer health data.

Supabase, Inc.

Data

Postgres database, authentication, and auth-flow email (account confirmation, password reset)

Data: Account identity, sessions, transcripts (Memory mode), memories, consents
Region: United States
Links: Privacy DPA / Terms

LiveKit, Inc.

Infrastructure

WebRTC voice transport and agent orchestration

Data: Voice stream (transient), session control metadata, session IDs
Region: United States
Links: Privacy DPA / Terms

Deepgram, Inc.

AI / ML

Speech-to-text transcription

Data: Voice stream (transient, not retained for training)
Region: United States
Links: Privacy DPA / Terms

Cartesia AI, Inc.

AI / ML

Text-to-speech voice synthesis (default provider)

Data: Response text (transient, not retained for training)
Region: United States
Links: Privacy DPA / Terms

ElevenLabs, Inc.

AI / ML

Text-to-speech voice synthesis (alternate provider, configurable per session)

Data: Response text (transient, not retained for training)
Region: United States
Links: Privacy DPA / Terms

Inworld AI, Inc.

AI / ML

Text-to-speech voice synthesis with emotion adapter (alternate provider, configurable per session)

Data: Response text (transient, not retained for training)
Region: United States
Links: Privacy DPA / Terms

DigitalOcean, LLC

AI / ML

Primary conversational LLM inference (Qwen 3.5-397B via Gradient AI / vLLM)

Data: Conversation context (system prompt + user transcripts + model responses, transient, not retained for training per DPA)
Region: United States
Links: Privacy DPA / Terms

Groq, Inc.

AI / ML

Background LLM, RAG summarization, and safety-classifier inference (GPT-OSS-20B, Llama-3.1-8B, GPT-OSS Safeguard-20B)

Data: Conversation context, safety-classifier inputs (not retained for training)
Region: United States
Links: Privacy DPA / Terms

OpenAI, L.L.C.

AI / ML

Fallback LLM, embeddings, sentiment / summary / memory-trigger helpers, supplementary safety classification

Data: Conversation snippets, transcript chunks, safety-classifier inputs (not retained for training)
Region: United States
Links: Privacy DPA / Terms

Anthropic, PBC

AI / ML

Image OCR / 'read this' tool inference (Claude Haiku via OpenRouter)

Data: User-uploaded images and the prompts the tool sends with them (not retained for training)
Region: United States
Links: Privacy DPA / Terms

Google LLC (Google AI)

AI / ML

PDF reading tool inference (Gemini 2.5 Flash via OpenRouter)

Data: User-uploaded PDFs and the prompts the tool sends with them (not retained for training)
Region: United States
Links: Privacy DPA / Terms

OpenRouter Inc.

AI / ML

Routing intermediary for tool-level LLM calls (Anthropic, Google AI, supplementary models)

Data: Pass-through of user-uploaded images / PDFs / text from the affected tool prompts (not retained for training)
Region: United States
Links: Privacy DPA / Terms

Voyage AI Innovations, Inc. (a MongoDB company)

AI / ML

Embedding and reranking models for semantic memory

Data: Memory and transcript snippets (not retained for training)
Region: United States
Links: Privacy DPA / Terms

Pinecone Systems, Inc.

Data

Vector database (retrieval-augmented memory)

Data: Embedding vectors and minimal identifiers
Region: United States
Links: Privacy DPA / Terms

Stripe, Inc.

Payments

Payment processing and subscription billing

Data: Name, billing email, ZIP, last-4 of payment card, transaction IDs
Region: United States
Links: Privacy DPA / Terms

Netlify, Inc.

Infrastructure

Frontend application hosting and CDN

Data: Service traffic and operational logs
Region: United States
Links: Privacy DPA / Terms

Render Services, Inc.

Infrastructure

Backend API hosting

Data: Service traffic and operational logs
Region: United States
Links: Privacy DPA / Terms

Functional Software, Inc. (Sentry)

Infrastructure

Error monitoring and performance tracing (PII scrubbed)

Data: Stack traces, request metadata
Region: United States
Links: Privacy DPA / Terms

PostHog, Inc.

Analytics

Product analytics (opt-in only)

Data: Hashed user identifier, feature events
Region: United States
Links: Privacy DPA / Terms

Intuition Machines, Inc. (hCaptcha)

Security

Bot and abuse prevention on signup and waitlist forms

Data: IP address, anti-abuse signals
Region: United States
Links: Privacy DPA / Terms

Kraken Technologies, S.L. (ipapi.co)

Security

IP-based geolocation for regional access controls (IL / TX / EU / EEA / UK block)

Data: Client IP address
Region: European Union
Links: Privacy DPA / Terms

Doppler, Inc.

Security

Secrets management (internal infrastructure only)

Data: No user data — operational secrets only
Region: United States
Links: Privacy DPA / Terms

Resend, Inc.

Communications

Transactional email delivery (notifications, reminders, verifications)

Data: Email address, message body
Region: United States
Links: Privacy DPA / Terms

Tango Card, Inc. (Blackhawk Network)

Payments

Gift-card fulfillment for promotional rewards

Data: Recipient name, email, reward amount
Region: United States
Links: Privacy DPA / Terms

International transfers

We do not transfer personal information outside the United States. All providers above process data in U.S. data centers under U.S. legal frameworks. EU, EEA, and UK access to the service is currently region-gated. If we ever change this, we will update this page and provide advance notice to affected users where required by law.

Stay informed of changes

To request advance notice when we add or change a subprocessor that handles consumer health data, email us with the subject line "Subprocessor notifications."

team@ophie.app