Table of Contents
This page lists the third-party subprocessors that Genchi Software Inc ("Genchi," "we," "us," or "our") uses to provide the Genchi SaaS platform and website at www.genchi.com (the "Service"). It is published in support of our Privacy Policy, Terms of Service, and Security Policy.
Genchi is a Delaware C-Corporation registered in California and headquartered in San Francisco.
This list is effective as of [TODAY'S DATE].
Last updated: [TODAY'S DATE].
1. Introduction
To deliver the Service reliably and securely, Genchi engages a small number of trusted third-party service providers. We refer to these providers as "subprocessors." Each subprocessor is selected for its security posture and contractual commitments to data protection.
This page is intended to give customers transparency into who handles Customer Data on Genchi's behalf and for what purpose. Capitalized terms not defined here have the meanings given in our Terms of Service.
2. What Is a Subprocessor
A subprocessor is a third party that processes Customer Data on Genchi's behalf as part of delivering the Service. Subprocessors are bound by contractual commitments — including, where applicable, data processing agreements — that require them to protect Customer Data and to use it only for the purposes Genchi specifies.
Subprocessors are distinct from third-party services that customers themselves choose to connect to Genchi (see Section 4).
3. Current Subprocessors
As of the effective date above, Genchi uses the following subprocessors:
| Subprocessor | Purpose | Data Location |
|---|---|---|
| Amazon Web Services, Inc. (AWS) aws.amazon.com |
Application and database hosting. Stores encrypted credentials, imported issue data, and user account data. | United States (US-East region) |
| Stripe, Inc. stripe.com |
Payment processing for paid plans. Receives customer billing information when a customer subscribes. | United States |
| Functional Software, Inc. (Sentry) sentry.io |
Application error monitoring. Receives error reports that may include limited user metadata when relevant to the error context. | United States |
| Google LLC (Identity) google.com |
"Sign in with Google" authentication. Receives the user's Google profile information at sign-in. | United States |
| Google LLC (reCAPTCHA) google.com |
Bot prevention on signup and invite flows. Receives the user's IP address and browser metadata for risk assessment. | United States |
| Twilio, Inc. (SendGrid) sendgrid.com |
Transactional email delivery (account verification, team invitations, password resets). | United States |
| Google LLC (Google Analytics) google.com |
Anonymous usage analytics on the Genchi marketing website at www.genchi.com only. Does not run inside the authenticated application and does not process Customer Data. | United States |
4. Customer-Initiated Integrations
In addition to the subprocessors listed above, Genchi supports optional integrations with third-party services that customers can choose to connect to their own Genchi account. These services are not subprocessors of Genchi: they are external systems that the customer controls, and the customer authorizes Genchi to exchange data with them through each provider's standard OAuth 2.0 flow.
Customers can connect, disconnect, and manage these integrations through the integrations panel inside the Service. Current customer-initiated integrations include:
- Atlassian Jira — import projects, epics, issues, and assignees from a Jira Cloud site into Genchi.
- Atlassian Identity — "Sign in with Atlassian" for user authentication.
- Asana — import projects and tasks from an Asana workspace into Genchi.
- Slack — deliver notifications and check-in prompts to a Slack workspace.
For each customer-initiated integration, the data shared with the third-party service is governed by that service's own terms and privacy policy.
5. How We Manage Subprocessors
- Selection: Subprocessors are selected based on their security practices, regulatory posture, reputation, and the suitability of their service for the purpose engaged.
- Contracts: Where applicable, Genchi enters into data processing agreements (DPAs) with each subprocessor that processes personal data on Genchi's behalf.
- Scope of access: Subprocessors only receive the data necessary for their stated purpose. We do not share Customer Data more broadly than required for the Service to function.
- Ongoing review: Genchi periodically reviews each subprocessor's security posture and continues engagement only where we remain satisfied with their controls.
6. Updates to This List
We will update this page when we add, replace, or remove a subprocessor that handles Customer Data. Customers can monitor this page for changes, or contact us to be notified of material updates.
Continued use of the Service after an update to this list constitutes acknowledgement of the updated subprocessor list.
7. Contact
For questions about this list, our subprocessor management process, or data processing agreements, please contact:
- Security email: support@genchi.com
- Address: Genchi Software Inc, San Francisco, California, United States