Solidlab relies on a small set of trusted third parties to operate. This page lists all of them — what they do, where, and which certifications they hold. Updated whenever we add or remove a vendor.
What we build our SaaS products and client projects on.
| / vendor | / purpose | / location | / compliance |
|---|---|---|---|
| Vercel, Inc. | Application hosting, serverless functions, edge network and deployment. | Global edge · Primary EU | SOC 2 Type IIISO 27001 |
| Supabase, Inc. | Postgres database, authentication, file storage and realtime services. | Ireland (eu-west-1) | SOC 2 Type IIEU region |
| Amazon Web Services | Underlying cloud infrastructure for Supabase — databases, storage, compute. | Ireland, Stockholm | SOC 2ISO 27001 |
| Cloudflare, Inc. | DNS, DDoS protection, CDN, edge security. | Global edge | ISO 27001SOC 2 Type II |
We do not store card details ourselves.
| / vendor | / purpose | / location | / compliance |
|---|---|---|---|
| Stripe, Inc. | Payment processing, subscription billing, invoicing, tax calculation. | Ireland (Stripe Payments Europe) | PCI DSS L1SOC 2 Type II |
Transactional and marketing communications.
| / vendor | / purpose | / location | / compliance |
|---|---|---|---|
| Resend, Inc. | Transactional email — verification, password reset, notifications. | Ireland (eu-west-1) | GDPR · EU region |
| 46elks AB | SMS delivery and voice call infrastructure for alerts and 2FA. | Sweden | EU-based |
| Google (Workspace) | Business email, calendar, internal administration. | EU / USA | ISO 27001EU-US DPF |
Used only when customers activate AI features. Data sent to these providers is limited to what the feature requires.
| / vendor | / purpose | / location | / compliance |
|---|---|---|---|
| Anthropic, PBC | Claude language models — summaries, analysis, chat features. | USA | SOC 2 Type IIZDR available |
| OpenAI, L.L.C. | GPT models used as fallback or for specific AI features. | USA | SOC 2 Type IIEU-US DPF |
| Google (Gemini / Imagen) | Image generation and multimodal AI — primarily Lara AI. | USA / EU | ISO 27001EU-US DPF |
| ElevenLabs, Inc. | Text-to-speech synthesis for voice assistant features. | USA | GDPR · SCC |
Error tracking, performance monitoring, aggregated usage statistics.
| / vendor | / purpose | / location | / compliance |
|---|---|---|---|
| Sentry (Functional Software) | Error tracking and performance monitoring. Pseudonymized logs only. | USA (EU option available) | SOC 2 Type IIISO 27001 |
| Vercel Analytics | Privacy-friendly, cookieless web analytics. | EU | Cookie-free · GDPR |
Used to run Solidlab as a business — not customer product data.
| / vendor | / purpose | / location | / compliance |
|---|---|---|---|
| Fiken AS | Accounting, invoicing and financial administration for Stå på Pinne AS. | Norway | Norwegian law · GDPR |
We notify customers at least 30 days before onboarding new subprocessors. Email us to subscribe.