Gobi Stories AS shares data with third-party providers to deliver our services. Prior to engaging any sub-processor, we conduct a thorough assessment encompassing detailed analysis of security and legal aspects, in accordance with GDPR Article 28 and Chapter V.
Definitions:
- End Users: Individuals who use products and services delivered by Gobi's customers
- Customers: Individuals or companies that have an account with Gobi
1 Distribution Tool
Sub-processors used to deliver Gobi's distribution tool to end users.
| Service | Data processed | Purpose | Storage location |
|---|---|---|---|
| Cloudinary | Connection information | Video distribution | EU + US* |
| Google Cloud | Connection information, analytics | Storage/processing | EU |
2 Production Tool
Sub-processors used to deliver Gobi's production tool to customers.
| Service | Data processed | Purpose | Storage location |
|---|---|---|---|
| Chatlio LLC | Connection information, chat content | Chat support | US** |
| Cloudinary | Videos, images, connection information | Processing/distribution | EU + US** |
| Customer.io | Contact information | Newsletter/email | EU |
| Google Cloud | Uploaded content, user/company/story information | Storage/processing | EU |
| Hotjar | Connection information, analytics | Feedback, statistics, behavior | EU |
| Hubspot | Contact information | CRM | EU |
| Twilio Segment | Contact, connection, and analytics data | Feedback, statistics, behavior | US** |
| Sentry.IO | Errors and crash logs | Crash, debug and error reporting | US** |
| Tripletex AS | Contact, company, and billing information | Invoicing | EU |
* Transfer based on the EU adequacy decision (Data Privacy Framework, effective from 10.10.2023).
** All sub-processors have signed DPAs and Standard Contractual Clauses (SCCs).
Standard Contractual Clauses and Data Processing Agreements have been signed with all sub-processors. For more information about our Data Processing Agreement, see the DPA.