LegalSubprocessors
Subprocessors
Last updated: April 15, 2026
Pinnacle MAV Media LLC uses the third parties listed below to operate Pinnora(the "Service"). Each listed subprocessor is bound by a written data processing agreement that imposes confidentiality, security, and (where applicable) Standard Contractual Clauses for cross-border transfers materially consistent with our Data Processing Addendum. We disclose nested infrastructure providers (so-called sub-subprocessors) for transparency in the second table below; their use is governed by our direct subprocessor's own DPA.
Notice of changes
We will provide at least thirty (30) days' advance notice of any new or replaced subprocessor that processes Customer personal data. Customers under our DPA may subscribe to change notifications by emailing privacy@thepinnacle.media. You may object to a new subprocessor on reasonable data-protection grounds during the notice window; if we cannot accommodate the objection, you may terminate the affected Service components without penalty for the remainder of the then-current term.
Direct subprocessors
| Provider | Purpose | Data categories | Region(s) | Transfer mechanism / DPA |
|---|---|---|---|---|
| Vercel Inc. | Application hosting, edge network, serverless compute, deployment logs, cron scheduling, image optimization | Account identifiers, customer content (rendered pages, request bodies), telemetry | United States and EU regions per customer configuration | EU SCCs (Module 2/3) + UK IDTA + Swiss addendum via Vercel DPA; EU-US DPF |
| Supabase Inc. | Authentication (email/OAuth/SAML), managed database, optional SCIM proxy, auth email templates | Account identifiers (email, name, role, OAuth profile), customer content, auth tokens, session metadata | United States, EU, and Asia-Pacific regions per project | EU SCCs + UK IDTA via Supabase DPA |
| Google Cloud — Storage & CDN | Object storage for media, creative assets, exports, reports; CDN delivery of public assets | Customer content (uploaded images, generated creative, reports), associated metadata | Per bucket (configurable; multi-region available) | EU SCCs + UK IDTA via Google Cloud DPA; EU-US DPF |
| Stripe, Inc. | Payment processing, subscription billing, customer billing portal, optional tax calculation, meter events for usage-based billing | Payment instrument tokens (processor-stored), billing metadata, invoice history; we do not store full card numbers | United States, EU, global processing | EU SCCs + UK IDTA via Stripe DPA; EU-US DPF |
| Dodo Payments Inc. | Checkout, subscription processing, customer portal, webhook delivery for entitlement | Payment instrument tokens (processor-stored), billing metadata, invoice history | Global processing per merchant configuration | Standard Contractual Clauses via Dodo DPA on request |
| Resend | Transactional email (account, auth, billing, invitations, module run reports) | Recipient name & email, message body (which may include report summaries containing customer content) | United States | EU SCCs via Resend DPA |
| Functional Software, Inc. d/b/a Sentry | Error tracking, performance monitoring, source-map upload, cron monitoring | Telemetry (stack traces, request URLs, breadcrumbs, optional user identifiers), operational metadata | United States; EU region available | EU SCCs + UK IDTA via Sentry DPA; EU-US DPF |
| Vercel AI Gateway | Unified routing, observability, and failover proxy for upstream LLM providers | Prompts, contextual fields, generated outputs, token-usage telemetry (transit only; not retained for training) | Routing through US/EU per upstream provider region | Covered by Vercel DPA + each upstream provider DPA |
| OpenAI, L.L.C. (via AI Gateway) | Inference for selected text-generation models (model line-up may change without notice) | Prompts and contextual fields, generated outputs | United States | EU SCCs via OpenAI Enterprise/API DPA; API terms prohibit training on customer prompts |
| Anthropic, PBC (via AI Gateway) | Inference for selected text-generation models (model line-up may change without notice) | Prompts and contextual fields, generated outputs | United States | EU SCCs via Anthropic API DPA; API terms prohibit training on customer prompts |
| Google LLC — Gemini API | Inference for selected text, image, video, and research models (model line-up may change without notice) | Prompts, attachments, research queries, generated outputs | Google Cloud (global) | EU SCCs via Google Cloud DPA; paid Gemini API does not use customer prompts to train models |
| xAI Corp. (via AI Gateway, fallback) | Inference fallback when other providers are unavailable | Prompts and contextual fields, generated outputs | United States | EU SCCs via xAI API DPA on request |
| Meta Platforms, Inc. — Marketing API (Phase 3) | Ad-account OAuth, campaign insights ingestion, webhook events for performance | Encrypted Meta access tokens, ad account IDs, campaign metadata, performance metrics | Global (Meta infrastructure) | Meta Platform Terms + Business Tools DPA |
| Google LLC — Google Ads API (Phase 3) | Ad-account OAuth, campaign insights polling | Encrypted Google Ads tokens, customer IDs, campaign metadata, performance metrics | Global (Google Cloud) | EU SCCs via Google Ads Data Processing Terms |
| TikTok Pte. Ltd. — Business Marketing API (Phase 3) | Ad-account OAuth, campaign insights, performance webhooks | Encrypted TikTok tokens, ad account IDs, campaign metadata, performance metrics | Global (TikTok infrastructure; data may transit Singapore, Ireland, US) | EU SCCs via TikTok Business DPA |
| Web research & extraction providers (one or more of: Exa, Tavily, Firecrawl) | Web search and content extraction for research-oriented modules | Research queries, extracted web-page content (no personal data sent unless customer includes it in a query) | United States | Standard Contractual Clauses via each provider's DPA on request |
| GitHub, Inc. (operational) | Source code hosting, CI/CD, deployment integration | Operational data (code, deploy logs); no Customer Content stored here | United States (Microsoft) | EU SCCs via GitHub DPA; EU-US DPF |
Nested infrastructure (sub-subprocessors)
For transparency, the following are the major infrastructure providersour direct subprocessors publicly disclose. We do not contract with these parties directly; our customers' data flows to them only via the corresponding direct subprocessor and is governed by that direct subprocessor's own commitments. The list below tracks each vendor's public disclosures and is provided for diligence purposes; refer to the linked vendor pages for canonical, up-to-date detail.
| Direct subprocessor | Discloses use of |
|---|---|
| Vercel | Amazon Web Services, Cloudflare |
| Supabase | Amazon Web Services, Cloudflare |
| Google Cloud (Storage / CDN) | Google LLC global infrastructure |
| Stripe | Amazon Web Services, Google Cloud, Cloudflare |
| Dodo Payments | Cloud infrastructure providers; downstream card networks |
| Resend | Amazon Web Services, Cloudflare |
| Sentry | Google Cloud Platform, Amazon Web Services |
| OpenAI | Microsoft Azure |
| Anthropic | Amazon Web Services, Google Cloud Platform |
| Google Gemini API | Google Cloud Platform |
| xAI | Cloud infrastructure providers |
| Meta Marketing API | Meta-owned data centers |
| Google Ads API | Google Cloud Platform |
| TikTok Marketing API | TikTok / ByteDance data centers |
| Web research & extraction providers | Cloud infrastructure providers |
| GitHub | Microsoft Azure |
AI subprocessors and model training
For each LLM provider above, we route inference through API endpoints whose contractual terms prohibit training on customer prompts or outputs (OpenAI API Enterprise terms, Anthropic API DPA, Google Gemini API for paid use, xAI API). We do not enroll the Service in any opt-in training, feedback-collection, or model-improvement program that would expose Customer Content to the provider's general training corpus. See AI & automated systems for the full per-provider statement.
Ad platform integrations
Where you connect a Meta, Google Ads, or TikTok ad account, the corresponding access token is encrypted at rest in our database and used only to (i) read the campaigns and metrics you scope, (ii) receive webhook events for changes in those scopes, and (iii) where you explicitly initiate it, write changes back to the platform. Disconnecting an integration revokes the stored token.
Content delivery networks (no customer personal data)
For UI assets we load from public CDNs that do not receive customer personal data: Unsplash (stock imagery API), jsDelivr (open-source library distribution), Dicebear Avatars (procedural avatar generation), and Google's public CDN (e.g., googleusercontent.com). These services receive only request metadata (IP, user agent) inherent to delivering a public asset.
Internal / operational tools
We also use limited operational tools that may incidentally process employee data or aggregated diagnostics (for example, source-control via GitHub above). We do not route Customer Content to internal productivity tools without an explicit DPA-covered purpose.
Contact
Subprocessor questions and DPA copies: privacy@thepinnacle.media — for data-protection officer inquiries: dpo@thepinnacle.media.
1507 Lampman Ct
Cheyenne, WY 82007
United States of America