Subprocessor List
Last updated: 2025-10-26
As described in our Data Processing Agreement, Leveloper Kft. uses the following subprocessors to provide the Revisit Service. We maintain this list to ensure transparency regarding third-party service providers that may process customer data.
Notification of changes
We will notify customers of material changes to this list by email or dashboard notification at least 30 days before the new subprocessor begins processing customer data. Customers may object to the use of a new subprocessor as permitted under the DPA.
Current subprocessors
| Subprocessor | Purpose | Data Location | Safeguards |
|---|---|---|---|
Stripe, Inc. stripe.com | Payment processing and subscription management | USA (with EU presence) | EU-US Data Privacy Framework Standard Contractual Clauses |
Számlázz.hu (Kboss.hu Kft.) szamlazz.hu | Electronic invoice generation and delivery | Hungary (EU) | EU-based processor GDPR compliant |
Google LLC (Gemini API) Optional feature | AI-powered session video analysis (only if enabled by customer) | USA (global infrastructure) | EU-US Data Privacy Framework SCCs; opt-in only |
GitHub, Inc. (Microsoft) Optional integration | Issue tracking integration (only if enabled and connected by customer) | USA (global infrastructure) | EU-US Data Privacy Framework SCCs; opt-in only |
Atlassian (Jira) Optional integration | Issue tracking integration (only if enabled and connected by customer) | USA/Australia (customer choice) | EU-US Data Privacy Framework SCCs; opt-in only |
Infrastructure and hosting
Core infrastructure is self-hosted by Leveloper Kft. at our facility in Szigetszentmiklós, Hungary (EU). This includes:
- Application servers (API, web dashboard, recorder library)
- PostgreSQL databases (main and project-specific databases)
- Redis cache and real-time messaging
- File storage (session recordings, assets, exports)
- All customer session data and personal data
No customer personal data or session recordings are stored with third-party hosting providers. All data remains within the EU (Hungary) under our direct control.
Email delivery
Transactional emails (account notifications, password resets, export links) are sent directly from our own infrastructure using our own SMTP servers. We do not use third-party email service providers.
Optional vs. required subprocessors
Required for service operation:
- Stripe (payment processing for paid plans)
- Számlázz.hu (invoicing as required by Hungarian law)
Optional (enabled only at customer discretion):
- Google Gemini (AI analysis feature)
- GitHub (issue creation integration)
- Atlassian Jira (issue creation integration)
International data transfers
For subprocessors located outside the EEA (Stripe, Google, GitHub, Atlassian), we rely on:
- EU-US Data Privacy Framework adequacy decision (where applicable)
- Standard Contractual Clauses (SCCs) as approved by the European Commission
- Additional technical and organizational measures to ensure data protection
Customers may choose to disable optional features involving third-country transfers if required for their compliance needs.
Contact for objections
If you wish to object to the use of any subprocessor, please contact us at info@leveloper.io within 30 days of notification.