Vorbe AI Logo
Vorbe
GDPR Transparency

Data Sub-Processors

Transparency is a priority for VorbeAI. We want you to know exactly who, why, and under what conditions may have limited access to your data.

Last Updated: January 2026

About this page

This page describes the list of data sub-processors used by VorbeAI to provide its services, as well as how they may process personal data on our behalf.

This list complements the VorbeAI Privacy Policy and transparently describes third-party providers involved in data processing, in accordance with Article 28 of Regulation (EU) 2016/679 (GDPR).

1. What are data sub-processors

A data sub-processor is a third-party provider that may process personal data exclusively on behalf of VorbeAI, for the purpose of providing our services (e.g., cloud infrastructure, payment processing, usage analytics).

All sub-processors:

Are carefully selected
Are subject to strict contractual obligations
Operate in compliance with Regulation (EU) 2016/679 (GDPR)
Process data only according to our instructions

2. General principles

We use sub-processors only when necessary for service delivery
We prefer sub-processors with servers located in the European Union
User data is not used for AI model training, neither by VorbeAI nor by sub-processors
All sub-processors are covered by GDPR compliant Data Processing Agreements (DPA)

3. First-tier Sub-Processors

These are providers with whom VorbeAI has a direct contractual relationship and who may process data directly to provide the service.

Google
EU
Role:Transcription processing and temporary storage of audio files during processing
Data Type:Audio files, technical data associated with processing
Security:AES-256 encryption for stored data, TLS encryption for data in transit
Notes:Data is retained only for the duration of active processing
RunPod
EU
Role:Transcription processing in exceptional scaling situations
Data Type:Audio files, strictly during processing
Notes:Used only when necessary to ensure service performance
MongoDB
EU
Role:Storage and management of transcription editor state
Data Type:Technical and session state data for editing sessions
Notes:Ensuring platform availability and performance

4. Second-tier Sub-Processors

These providers do not have a direct contractual relationship with VorbeAI, but may process data indirectly through first-tier sub-processors.

Stripe Payments Europe
EU
Role:Payment processing (through Chargebee)
Data Type:Billing and payment data
Notes:VorbeAI does not store complete card data
PostHog
EU
Role:Website usage analytics
Data Type:Aggregated data on pages visited and actions
Notes:Used only with user consent (analytics cookies)
Google
EU
Role:Email services and internal reporting tools
Data Type:Email addresses and aggregated data
Notes:Used for communication and administrative activities

5. Security and compliance

All sub-processors:

Use advanced security measures
Comply with high data protection standards
Are subject to contractual confidentiality obligations

Data is:

Encrypted at rest (AES-256)
Encrypted in transit (TLS)

Processed exclusively for providing VorbeAI services

6. Sub-processor list updates

This list may be updated periodically to reflect operational or legal changes.

Significant changes will be communicated by updating this page and the last revision date.

7. Additional information

For more details on how data is processed, stored, and protected, please refer to:

VorbeAI Privacy Policy
VorbeAI Cookie Policy
VorbeAI Terms & Conditions

For questions about sub-processors:

[email protected]

Your Trust is Our Priority

We take data protection seriously and are committed to maintaining the highest standards of privacy and security for all our users.