Customer data is never shared, except with sub-processor vendors who are only allowed to use it to assist us in providing our services.

Privacy and security assessments are conducted for each vendor used by the supplier. Vendors must be SOC 2, SOC 3, ISO 27001/27701, Privacy Shield, or STAR certified.

For more information on how we protect client data, please go to this article on Worksphere's Data Privacy or our Privacy Policy.

Sub-processor List

Auth0 (Identity Management / SSO)

Location: United States

Data processed: user name, email address, encrypted authentication credentials

Use: identity management, authentication, and single sign-on (SSO)

Data security certifications: SOC 2 Type II, ISO 27001, ISO 27018, Gold CSA Star

Amazon Web Services (Cloud/data hosting services)

Location: United States

Data processed: application data

Use: application infrastructure

Data security certifications: SOC 3, Privacy Shield, ISO 27001

Mailgun (Email service provider)

Location: United States

Data processed: email address, application email content

Use: application infrastructure

Data security certifications: Privacy Shield

Hubspot (CRM)

Location: United States

Data processed: user name, email address, analytics

Use: email marketing, sales management

Data security certifications: SOC 2 Type II

LogRocket (Monitoring)

Location: United States

Data processed: user name, email address, session replay

Use: error monitoring, analytics, proactive support

Data security certifications: SOC 2 Type II

Rollbar (Monitoring)

Location: United States

Data processed: email address, application error reports

Data security certifications: ISO 27001, SOC 2 Type 1, STAR