Subprocessors
Transparency about the third-party services that process data on behalf of ForensicShield. We carefully select subprocessors that meet our security and compliance standards.
Who processes your data.
| Subprocessor | Service | Data Processed | Location |
|---|---|---|---|
Amazon Web Services (AWS) | Cloud Infrastructure | Encrypted PHI (compute, storage, database, AI inference via Bedrock) | US (configurable region) |
Clerk | Authentication & Identity Management | Email addresses, names, authentication tokens | US |
Stripe | Payment Processing | Billing information (no PHI) | US |
AWS CloudFront | Content Delivery | Static assets only (no PHI) | Global (edge locations) |
CourtListener (Free Law Project) | Legal Citation Verification | Public case law citations only (no PHI) | US |
Sentry | Error Monitoring | Error events with PHI automatically scrubbed (15+ regex patterns, field-level redaction) | US |
Mailchimp (Intuit) | Marketing Email | Email addresses for marketing communications only (no PHI) | US |
Open States (Civic Eagle) | Legislative Monitoring | Public bill search queries and bill metadata (no PHI) | US |
Google Fonts | Font Delivery | Font asset requests in marketing site and email templates (no PHI) | Global (CDN) |
No Third-Party AI Providers
ForensicShield does NOT send protected health information (PHI) to any third-party AI providers. All AI inference runs through AWS Bedrock, keeping data entirely within the AWS security boundary covered by our Business Associate Agreement (BAA).
Last updated: March 2026
Your data deserves this level of protection.
Try ForensicShield on a sample report — no upload required. Then run your own.
Run a Free Sample Analysis →14-day free trial · 2 reports included (1 sample + 1 of your own) · A payment method is collected for identity verification — your card will not be automatically charged when the trial ends · HIPAA compliant