Sub-processors
Last updated: January 2025
This page lists the sub-processors that Marxel uses to process personal data on behalf of our customers. This list forms Annex 1 of our Data Processing Agreement.
We will provide at least 14 days' notice before engaging any new sub-processor. If you have questions or wish to object to a sub-processor, contact us at hello@marxel.co.
Authorised Sub-processors
The following sub-processors are authorised to process personal data on behalf of our customers:
| Sub-processor | Purpose | Location | Data Processed |
|---|---|---|---|
| Vercel Inc. | Application hosting and delivery | United States | All Customer Data in transit |
| Railway Corporation | Database hosting | United States | All Customer Data at rest |
| Resend Inc. | Transactional email delivery | United States | Email addresses, names, email content |
| Stripe Inc. | Payment processing | United States | Billing data (not candidate data) |
| PostHog Inc. | Product analytics | EU / United States | Usage data, anonymised events |
| Google LLC | Website analytics | United States | IP addresses, browsing behaviour |
| OpenAI LLC | AI-powered features | United States | Candidate data submitted to AI features |
Transfer Safeguards
Standard Contractual Clauses (SCCs) approved by the European Commission are in place with all US-based sub-processors. These provide the legal mechanism for transferring personal data outside the UK and EEA.
For transfers from the UK, we also rely on the UK International Data Transfer Agreement (IDTA) or UK Addendum to the EU SCCs where applicable.
Notification of Changes
We will update this page and provide at least 14 days' notice before engaging any new sub-processor.
If you wish to be notified of changes by email, please contact us at hello@marxel.co to subscribe to sub-processor updates.
Objection Process
If you have reasonable data protection grounds to object to a new sub-processor:
- Notify us within 14 days of receiving notice of the change
- Explain your objection with reference to specific data protection concerns
- We will work with you to find a mutually acceptable solution
- If no resolution is reached, you may terminate the affected service with no penalty
Contact
For questions about our sub-processors or to request a copy of the safeguards in place:
Email: hello@marxel.co
See also our Data Processing Agreement, Privacy Notice, and Terms of Service or contact us with any questions.