Sub-Processor Register
Last updated: 2 June 2026
MedPro (DJG Media Limited, trading as MedPro AI) engages the following third-party sub-processors to deliver the service. This register is maintained under GDPR Article 28(2) and forms part of the Data Processing Agreement you sign at sign-up.
We will give you at least 14 days' written notice before adding or replacing any sub-processor. You may object in writing; if we cannot accommodate your objection, you may terminate your subscription without penalty.
AI & inference
| Sub-processor | Purpose | Data processed | Location | Transfer mechanism |
|---|---|---|---|---|
| Google Vertex AI (Gemini) | Primary clinical text inference, Brigid AI assistant, document analysis | Clinical text, patient-context snippets (special-category health data) | EU — Vertex AI EU region (europe-west4; migrating to EU multi-region “eu”) | EEA — no Art. 46 transfer |
| Google Cloud Speech-to-Text v2 | Voice transcription (clinical sessions & dictation) | Audio recordings (special-category health data) | EU — Belgium (europe-west1) | EEA — no Art. 46 transfer |
| Google Cloud Document AI | PDF / scanned-document OCR and parsing | Document content (may include PHI) | EU | EEA — no Art. 46 transfer |
| Google Vertex AI (Claude via Vertex) | Brigid reasoning (selected clinical tasks) | Clinical text, conversation context | EU — Germany (europe-west3) | EEA — no Art. 46 transfer |
| ElevenLabs | Voice STT fallback & voice-webhook processing (used when Google STT is unavailable) | Audio recordings (special-category health data) | United States | Art. 28 DPA + Standard Contractual Clauses (SCCs 2021/914 Module 3) |
| Google AI Studio (Gemini — Live Voice) | Real-time voice AI for “Live with Brigid” feature only; pending migration to EU Vertex | Real-time audio (special-category health data) | United States (global) | Art. 28 DPA + SCCs + EU-US Data Privacy Framework. Per-session explicit consent required for EU-only tenants. |
Infrastructure & data storage
| Sub-processor | Purpose | Data processed | Location | Transfer mechanism |
|---|---|---|---|---|
| Supabase | PostgreSQL database, authentication, file storage, edge functions hosting | All PHI/PII — patient records, clinical notes, voice recordings, audit logs | EU — Ireland (eu-west-1) | EEA — no Art. 46 transfer |
Communications & billing
| Sub-processor | Purpose | Data processed | Location | Transfer mechanism |
|---|---|---|---|---|
| Vonage (formerly Nexmo) | Outbound SMS & inbound voice/WhatsApp | Phone numbers, SMS content, call metadata | EU + US routing | Art. 28 DPA + SCCs |
| Resend | Transactional email (appointment reminders, exports, notifications) | Recipient email address, email content (may include clinical summaries) | EU + US | Art. 28 DPA + SCCs |
| Stripe | Subscription billing & payment processing | Billing identity, payment tokens — no patient health data | EU Ireland + global card networks | Art. 28 DPA; adequate country (EU entity for EU transactions) |
Monitoring & hosting
| Sub-processor | Purpose | Data processed | Location | Transfer mechanism |
|---|---|---|---|---|
| Sentry | Application error monitoring | Stack traces and error context — PHI scrubbed before transmission (sendDefaultPii: false, custom scrubber) | United States | Art. 28 DPA + SCCs + EU-US Data Privacy Framework |
| Vercel | Marketing website (medproai.com) hosting — no patient data | Page views, anonymised analytics — no PHI | US + EU edge nodes | Art. 28 DPA; no PHI transferred |
Changes to this register
We maintain an internal version-controlled register aligned with our deployed code. If you are a MedPro customer and would like to object to a sub-processor change, please email david@medproai.com within 14 days of the change notice.
Related documents
Data Processing Agreement · Privacy Policy · Compliance Overview · Terms of Service