Sub-processors
To run anon.li we rely on a small set of vetted providers. Here's exactly who they are and what each one processes. By design, the services that touch your files and form responses see only ciphertext — never your content.
What our sub-processors cannot see
Drop files and Form submissions are end-to-end encrypted in your browser. Storage and infrastructure providers receive only encrypted blobs; encryption keys never leave your device unencrypted. Account data lives in anon.li's own PostgreSQL database, where vault-protected fields are stored as ciphertext.
| Provider | Purpose | Data processed |
|---|---|---|
Stripe Payments | Card & subscription billing | Billing contact and subscription metadata. Card details are entered directly with Stripe — anon.li never stores them. |
NOWPayments Payments | Cryptocurrency payments | Crypto invoice and transaction data for orders paid in cryptocurrency. |
Vercel Infrastructure | Application hosting & serverless compute | Request metadata and operational logs needed to serve the application. |
| Object storage for Drop & Form files | Encrypted file blobs only. Files are encrypted in your browser before upload; R2 never receives plaintext or keys. | |
Upstash Infrastructure | Redis for rate limiting & transient state | Ephemeral counters and short-lived tokens, keyed by hashed identifiers. No message or file content. |
Resend Email | Transactional email delivery | Recipient address and message content for account email — magic links, verification, and security alerts. |
Cloudflare Turnstile Security | Bot & abuse protection on sign-in | Browser and network signals used to confirm a request comes from a human. |
Google & GitHub Authentication | Optional social sign-in (OAuth) | Account email and basic profile — only if you choose to sign in with one of these providers. |
Data residency follows each provider's configuration and DPA. Contact us for region-specific details or a signed data processing agreement.
Changes to this list
We update this page when we add or remove a sub-processor. For a data processing agreement (DPA), sub-processor change notifications, or a security review, reach our team — Enterprise plans include a contractual DPA.