We use subprocessors to host our applications, and to provide specific functionality within our services. We perform due diligence on their information security practices and data protection compliance prior to engaging with them. We require each of them to provide at least the level of data protection and security required of OnceHub under our Master Services Agreement. None of them are permitted to sell or use your data for any other purpose.
You can subscribe to updates using our RSS feed (link below right).
|Subprocessor name||Service provided and certifications||Location|
|Microsoft Corporation||Cloud hosting services for OnceHub applications
(ISO 9001, 22301, 27001, 27017, 27018, 20000-1:2011 Certified, PCI DSS Level 1)
|Amazon Web Services, Inc.||Cloud hosting services for OnceHub applications
(ISO 9001, 27001, 27008, 27017 Certified; SOC 1, SOC 2, SOC 3 audited)
|Google Inc.||Calendar integration services
(SOC 2 Type 2, SOC 3 audited, ISO 27001, 27017, 27018 Certified)
|Vonage||Text notification services
IBM SoftLayer ISO/IEC 27001:2013, ISO/IEC 27017:2015, ISO/IEC 27018:2014, ISO 22301:2012, ISO 31000:2009, HITRUST CSF v8.1, SOC 2, SOC 3
|Cyclr||Integration platform provider
SOC 2 Type 1
|Mailgun Technologies, Inc||Backup email relay services
For clarity, we have also listed our affiliate companies that process personal data as part of our day to day company operations.
|OnceHub Technologies Pvt. Ltd.||India|