Legal · Sub-processors
Sub-processors.
Every third-party provider that touches customer data in the course of running the Truss Service. We keep this list current and email customers at least 30 days before we add or change a sub-processor.
01.Infrastructure & hosting
| Provider | Purpose | Data categories | Location |
|---|---|---|---|
| Railway | Primary application hosting, compute, storage, encrypted backups, and database replication. | All Customer Content and account data, encrypted at rest. | United States |
| Cloudflare | CDN, DNS, edge caching, DDoS mitigation, and Web Application Firewall for the marketing site and product edge. | Request metadata, IP addresses, transient TLS-terminated traffic. | Global edge |
02.Communications & delivery
| Provider | Purpose | Data categories | Location |
|---|---|---|---|
| Postmark | Transactional email delivery — receipts, password resets, security alerts, customer-facing replies sent from Truss Desk. | Recipient email, subject line, message body for transactional email only. | United States |
| Twilio | SMS / voice (used by Truss Automation when Customer configures an SMS or phone step in a workflow). | Phone numbers and message content for messages sent by Customer's workflows. | United States |
03.Billing
| Provider | Purpose | Data categories | Location |
|---|---|---|---|
| Stripe | Subscription billing and payment processing. | Billing contact, address, tax ID, payment-method tokens. We do not store card numbers ourselves. | United States |
04.Observability & operations
| Provider | Purpose | Data categories | Location |
|---|---|---|---|
| Datadog | Application performance monitoring, metrics, and infrastructure logs. | System metrics, application logs (scrubbed of Customer Content where feasible). | United States |
| Sentry | Error tracking and stack-trace capture for production incidents. | Stack traces, anonymized user identifiers; Customer Content is scrubbed on capture. | United States |
05.AI inference
| Provider | Purpose | Data categories | Location |
|---|---|---|---|
| Google LLC | AI inference for reply drafts in Truss Desk and AI workflow features in Truss Automation, powered by Google Gemini. | Content of the specific customer message or workflow input being processed at the moment an AI feature is invoked. Not sent in bulk or in advance. | United States |
Customer Content is sent to Google only when a Truss AI feature is actively used. Use of Gemini is governed by Google's enterprise terms applicable to the Gemini API. Truss does not use Customer Content to train any AI model, and we do not retain prompts beyond what is needed to deliver the AI response to you.
How we notify you of changes
When we plan to add or change a sub-processor, we:
- Update this page with the new provider and the effective date — at least 30 days in advance.
- Email the security and admin contacts on every customer account.
- Provide a way for customers to object to the change. Reasonable, data-protection-grounded objections that we can't resolve in good faith give the customer a right to terminate the affected portion of the Service for cause.
Want to subscribe to changes? Email security@trussapp.co and we'll add you to the notice list — even if you're not a customer (yet).
Need a counter-signed DPA, or have a question about a specific sub-processor?
legal@trussapp.co