Mentorloop Third-party subprocessors

Tracy Bongiorno
Tracy Bongiorno
  • Updated

Mentorloop engages the third-party entities listed below to perform limited activities in connection with its SaaS offering. The table below describes the activities the entity is used for, where the data is processed by the entity, and supporting documentation.

 

Entity name Activity description Country where processing is performed Supporting documentation
Filestack Manage and store file uploads. Mentorloop uses Filestack's Global CDN distribution option, which defaults to EU-based endpoints for EU-based users.

Adapting to GDPR

Terms of service

Privacy policy

Filestack maintains a DPA and associated SCCs. (Please note: you will be required to enter your name and email to request access to these documents.)

Filestack are aligned with ISO 27001 and SOC 2.

SendGrid Email generation platform - manages sending of emails from the Mentorloop application. USA

Terms of service

Data protection addendum

SOC 2 Type II certification

Typeform Opt-in mentor and mentee satisfaction and feedback survey platform. Customer onboarding questionnaires. USA

Typeform is ready for GDPR

Security at Typeform

Standard contractual clauses

ISO 27001, SOC 2 Type II, and more

Customer.io Email generation platform - manages sending of emails from the Mentorloop application. USA

GDPR

Security

Standard contractual clauses

SOC 2 Type II certification

Zendesk In-application support and communications software, accessible where users choose to engage via a chatbot and email. USA, EEA, Asia-Pacific
See more about Zendesk data hosting.

Security, Privacy and Legal

GDPR FAQs

Privacy Shield Invalidation and Zendesk’s Practices

ISO 270001, SOC 2 Type II, and more

Stripe Process credit card payments for a subset of customers Worldwide

Stripe Privacy center

Data processing agreement

International data transfers

SOC 1 and SOC 2 Type II

Cronofy Opt-in calendar integration Mentorloop uses the Cronofy UK data center

GDPR at Cronofy

What We're Doing About GDPR

Privacy notice:

For the purposes of GDPR Article 26(2) of Directive 95/46/EC, Cronofy will agree to sign standard contractural clauses (SCCs) for customers who require it.

ISO 27001, ISO 27018 and ISO 27701 certified and undergoes SOC 2 Type 2 audits annually

Pendo Product analytics Mentorloop uses the Pendo EU data storage.

Data Privacy & Security

Pendo is committed to compliance with GDPR regulations

General Data Protection Regulation (GDPR)

Disclosure and Transfer of personal data

SOC 2 Type II certification

HubSpot CRM used to track marketing and sales contacts generated from the marketing website and self-serve program registration USA

GDPR Compliance

HubSpot Data Processing Agreement

HubSpot's Commitment to Protecting EU Data Transfers

SOC 2 Type II and SOC 3

Vouch Opt-in video testimonials capture Australia

GDPR

Data processing addendum

Vouch are aligned with ISO 27001 and other ISO standards.

AWS Cloud hosting of application servers Sydney, Australia (Australian customers)
London, United Kingdom (UK/EU customers)

GDPR

Customer update: AWS and the EU-US Privacy Shield

AWS and EU data transfers: strengthened commitments to protect customer data

ISO 27001 and more

SOC 1, 2, and 3

MongoDB Cloud hosting of application databases Sydney, Australia (Australian customers)
London, United Kingdom (UK/EU customers)

GDPR compliance

MongoDB Data processing agreement

ISO/IEC 27001:2013

SOC 2 Type II certification

Sentry Error logging Mentorloop uses the Iowa, USA data center

SOC2 Report & ISO 27001 Certificate

Loggly Logging USA

Loggly is SOC Type 2 Level 2 certified. Several SolarWinds locations are covered by ISO/IEC 27001 certification.

 

 

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Submit a request