Sub-processors
TrustPlane minimizes sub-processors by running the platform inside your cloud. The list below applies to managed services operated by TrustPlane (trustplane.cloud) and to shared tooling used for support. Customer deployments in private modes do not rely on these services.
Subscribe to updates via the security contact form and we will provide at least 30 days’ notice before onboarding a new sub-processor for managed services.
Customer-hosted deployments
When TrustPlane runs inside your VPC/VNet (private or private-peered modes), TrustPlane does not engage any sub-processors for runtime data. You control compute, storage, logging, and key management. TrustPlane personnel access is governed by the Master Subscription Agreement and Data Processing Addendum.
Managed services & shared tooling
| Sub-processor | Services | Region | Notes |
|---|---|---|---|
| Amazon Web Services, Inc. | Compute, storage, networking for trustplane.cloud and evidence microsite | United States (us-east-1) | Used only for TrustPlane-managed control plane and evidence distribution. Customer deployments run in your accounts. |
| Postmark (ActiveCampaign, LLC) | Transactional email for security notifications and evidence bundle delivery | United States | Email content limited to routing metadata and links to encrypted evidence bundles. |
| Linear Operations, Inc. | Ticketing and incident response collaboration | United States | Used for support interactions initiated by customers; no production data uploaded. |
Managed service customers may request signed copies of the sub-processor list and audit attestations via the security contact form. We also maintain zero-trust access controls and log all support interactions.