Subprocessors

Introduction

Biqli LLC uses certain third-party service providers ("Subprocessors") to help deliver our services to you. This page provides a comprehensive list of all subprocessors we work with, what they do for us, where they're located, and links to their Data Processing Agreements (DPAs).

We carefully vet all our subprocessors to ensure they meet our high standards for data protection and security. All subprocessors are required to comply with applicable privacy laws including GDPR, CCPA, and other relevant regulations.

Notification of Changes

We will update this page whenever we add, remove, or change subprocessors. If you have subscribed to our service, we will notify you via email at least 30 days before any material changes to our subprocessor list take effect.

You can also bookmark this page to stay informed of any updates to our subprocessor relationships.

Current Subprocessors

Below is the complete list of our current subprocessors, organized by the services they provide:

Cloudflare, Inc.

Content Delivery Network & Image Hosting

Purpose

Image hosting, content delivery network, and website performance optimization

Location

United States

Reference (DPA)

View DPA

Stripe, Inc.

Payment Processing

Purpose

Credit card and payment processing for subscription billing

Location

United States

Reference (DPA)

View DPA

PayPal Holdings, Inc.

Payment Processing

Purpose

Alternative payment processing and digital wallet transactions

Location

United States

Reference (DPA)

View DPA

Zoho Corporation Pvt. Ltd.

Email Services

Purpose

Email sending, marketing communications, and transactional email delivery

Location

United States

Reference (DPA)

View DPA

Google LLC

Server Hosting & Cloud Services

Purpose

Server hosting, cloud infrastructure, and application deployment services

Location

United States

Reference (DPA)

View DPA

Upstash, Inc.

Session Data Storage (Redis)

Purpose

Temporary session data storage for Shopify integration (session IDs, tracking data)

Location

United States

Reference (DPA)

View DPA

Data Protection Measures

All subprocessors listed above are required to:

• Sign Data Processing Agreements (DPAs) that meet GDPR, CCPA, and other applicable privacy law requirements
• Implement appropriate technical and organizational measures to protect personal data
• Process personal data only for specified purposes and in accordance with our instructions
• Maintain confidentiality and ensure their personnel are bound by confidentiality obligations
• Assist us in responding to data subject requests and regulatory inquiries
• Delete or return personal data upon termination of services, unless retention is required by law
• Notify us promptly of any data breaches or security incidents

Your Rights Regarding Subprocessors

As a user of our services, you have certain rights regarding how your data is processed by our subprocessors:

• Right to Object: You may object to the use of specific subprocessors, though this may impact our ability to provide certain services
• Right to Access: You can request information about how your data is being processed by our subprocessors
• Right to Data Portability: You can request your data in a machine-readable format from applicable subprocessors
• Right to Deletion: You can request deletion of your personal data from our subprocessors, subject to legal retention requirements

To exercise these rights or if you have concerns about any of our subprocessors, please contact us using the information provided in the Contact section below.

International Data Transfers

Some of our subprocessors may transfer your personal data outside of your country or region. When this occurs, we ensure that:

• Appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs)
• The receiving country has been deemed adequate by relevant data protection authorities
• Other lawful transfer mechanisms are implemented as required by applicable law

For specific information about international transfers by any of our subprocessors, please refer to their individual privacy policies and DPAs linked above.

Contact Us