Subprocessors — FerrLens

A subprocessor is a third party we contract with that may, in the course of providing a service to us, process personal data we hold. This list is exhaustive — if it's not here, it doesn't process your data on our behalf.

Current list

Let's Encrypt (Internet Security Research Group)

Role: TLS certificate issuance
Location: United States
Data processed: Public DNS names of FerrLens hostnames. No personal data.
Their privacy policy: https://letsencrypt.org/privacy/ ↗

Google PageSpeed Insights

Role: Backend for the Lighthouse SEO checker
Location: United States (EU-US Data Privacy Framework)
Data processed: The public URL submitted by users for SEO scans, plus the FerrLens server IP.
Their privacy policy: https://developers.google.com/speed/docs/insights/v5/about ↗

GitHub (Microsoft)

Role: Hosts our source code, container registry, CI runners
Location: United States (EU-US Data Privacy Framework)
Data processed: No user data of FerrLens visitors. Only employee / contractor accounts.
Their privacy policy: https://docs.github.com/en/site-policy/privacy-policies/github-general-privacy-statement ↗

Stripe

Role: Payment processor for Pro / Team subscriptions
Location: Ireland (EU) + United States (EU-US Data Privacy Framework)
Data processed: Billing email, name, address, payment method, invoice history. Only for paid customers.
Their privacy policy: https://stripe.com/privacy ↗

When we add or remove one

Any change to this list is announced in the FerrLabs changelog (subscribe to the RSS). Paid customers under our DPA get 30 days to object to a new subprocessor — if you object, you can cancel your subscription for a pro-rata refund.

What's NOT a subprocessor

Analytics providers — we use none. No Google Analytics, no Plausible, no Fathom, no Posthog.
CDN — none. The site is served directly from our origin.
Customer support tools — we handle support over email; no Intercom, no Zendesk.
Error tracking — we ingest internal traces only (no user data); no Sentry or equivalent capturing payloads.