TeamHQ partners with the third-party service providers detailed below (referred to as "Sub-processors") to handle Customer Personal Information on behalf of TeamHQ users and integration partners under contractual arrangements that ensure TeamHQ maintains its data protection commitments.
Third-Party Sub-processors
TeamHQ conducts yearly compliance assessments of these Sub-processors, and when engaging a Sub-processor involves international data transfers, TeamHQ performs Transfer Risk Evaluations in compliance with Relevant Privacy Legislation governing such transfers.
TeamHQ requires its Sub-processors to establish suitable technical and administrative safeguards to ensure Personal Information processing meets the protection standards mandated by Relevant Privacy Legislation.
As well as cloud service providers, TeamHQ makes use of other companies and services to help us operate our business. Collectively, we refer to these companies and cloud service providers as sub-processors. From time-to-time we will change sub-processors may be required to let you know. When we do, we will contact you via email detailing the change. The key cloud-based services and other sub-processors that TeamHQ uses to process personal data are:
| Sub-processor | Applicable Cloud Products | Nature and Purpose of Processing | Categories of personal data | Location of Processing | Security Measures |
|---|---|---|---|---|---|
| Hosting and Infrastructure Service Providers | |||||
| Amazon Web Services (AWS) | All EnrolHQ Cloud Products | Cloud hosting provider | Customer Personal Data created by customer and stored in Applicable Cloud Products | Australia, UAE | AWS Security Measures |
| GitHub, Inc. | All EnrolHQ Cloud Products | Code repository hosting and version control service provider | Customer Personal Data created by customer and stored in code repositories and related development data | USA | GitHub Security Measures |
| Communications Technology Service Providers | |||||
| Mailgun Technologies, Inc. | All EnrolHQ Cloud Products | Email server and communications technology provider for product notifications | Customer Personal Data created by customer, in particular, personal data contained in email communications | USA | Mailgun Security Measures |
| SendGrid (Twilio) | All EnrolHQ Cloud Products | Email server and communications technology provider for product notifications | Customer Personal Data created by customer, in particular, personal data contained in email communications | USA | SendGrid Security Measures |
| BurstSMS / Kudosity | All EnrolHQ Cloud Products | SMS provider and communications technology provider for product notifications | Customer Personal Data created by customer, in particular, personal data contained in SMS communications | Australia | BurstSMS Security Measures |
| Business Operations Service Providers | |||||
| Xero Limited | All EnrolHQ Cloud Products | Finance and invoicing service provider | Customer Personal Data related to billing and financial transactions | Australia | Xero Security Measures |
| Google Analytics | All EnrolHQ Cloud Products | Website analytics service provider | Customer Personal Data related to website usage and analytics | USA | Google Analytics Security Measures |
| Google Workspace (Google Apps) | All EnrolHQ Cloud Products | Administration and productivity service provider | Customer Personal Data used in administrative functions | Australia | Google Workspace Security Measures |
| Support Service Providers | |||||
| Freshdesk (Freshworks) | All EnrolHQ Cloud Products | Customer support service provider | Customer Personal Data shared during support communications | Australia | Freshdesk Security Measures |
| Monitoring and Error Tracking Service Providers | |||||
| Sentry | All EnrolHQ Cloud Products | Error logging and application monitoring service provider | Customer Personal Data contained in error logs and application monitoring data | USA | Sentry Security Measures |