Lettermint B.V. uses certain third-party subprocessors to assist in providing our services. A subprocessor is a third-party data processor who has access to personal data of our customers or their end-users in order to provide services to Lettermint.
This page provides important information about the identity, location, and role of each subprocessor we use. We will update this page from time to time to reflect changes in our subprocessors.
Current Subprocessors
This list is automatically synced with our Trust Center, powered by Vanta, a security and compliance platform that continuously monitors our infrastructure and processes. For full insights into our security posture, certifications, and policies, visit trust.lettermint.co.
Service Subprocessors
Cloud provider
Provider for our Private Cloud infrastructure
Cloud provider
Provider for our infrastructure and backup services.
Finance and payments
Payment processing, financial reporting, and subscription management.
Product analytics, session recording, and feature flagging.
Product analytics, session recording, and feature flagging.
Cloud monitoring
Deliverability and IP reputation monitoring
*Email Data indicates whether email content sent through Lettermint is processed by this subprocessor to deliver our services. All email data is encrypted at rest.
Business Operations
Mailbox provider
Email hosting for employee and shared mailboxes.
Security
Continuous security and compliance monitoring
Security
Continuous security scanning of our infrastructure and source code.
Version control
Source code hosting, version control, and CI/CD pipelines.
AI inference
Natural language processing and automated content generation.
Accounting and administration
Cloud-based accounting and financial administration.
Collaboration
Project management and issue tracking.
Collaboration
Internal team communication and collaboration.
Finance and payments
Tooling for our administration
Finance and payments
Our accountant
International Data Transfers
For any transfers of data outside the European Economic Area (EEA) or the United Kingdom, we ensure appropriate safeguards are in place through:
- Adequacy decisions (where the European Commission has determined that a third country ensures an adequate level of protection)
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Binding Corporate Rules (BCRs) where applicableAdditional technical and organizational measures to ensure the protection of personal data
- Additional technical and organizational measures to ensure the protection of personal data
Updates to Subprocessors
We may update our list of subprocessors from time to time. We will notify customers of any new subprocessors according to the terms of our Data Processing Agreement.
If you have questions or concerns about any of our subprocessors, please contact us at legal@lettermint.co.
Objecting to Subprocessors
If you are a customer of Lettermint and wish to object to a new subprocessor, please contact us promptly at legal@lettermint.co. If you do not object within 30 days of us providing notice of a new subprocessor, you will be deemed to have accepted the new subprocessor.
If we determine that your objection is reasonable, we will work with you to find a mutually acceptable resolution. If we cannot reach a resolution, you may terminate your agreement with us in accordance with the terms of your contract.
