Pre-launch placeholder. The list below names the categories of sub-processor in use today. The named entities, regions and processing purposes will be published here ahead of general availability.
Current sub-processors
| Provider | Purpose | Region |
|---|---|---|
| Cloud infrastructure | Application hosting, document storage, database, compute | UK (London) |
| AI inference | Document understanding and draft generation | UK / EU regions only |
| Authentication | Sign-in, single sign-on, multi-factor authentication | UK / EU |
| Transactional email | Account, security and notification emails | UK / EU |
| Customer support tooling | Support tickets and operational comms with your firm | UK / EU |
| Product analytics | Aggregate usage metrics, no third-party advertising trackers | UK / EU |
How we vet a sub-processor
- Documented security posture (SOC 2 Type II, ISO 27001 or equivalent).
- UK or EU data residency and Standard Contractual Clauses where relevant.
- A signed Data Processing Agreement that flows down our customer commitments.
- A defensible answer to: "what happens to firm data if this provider goes away?"
Notifications and objections
Customer firms are notified of new or replacement sub-processors at least 30 days before they take effect. To object, email info@trillic.co.uk within the notice period and we'll work with you on a path forward.