Updated 08.23.2025

Data Subprocessors Disclosure

Get Access to support if you have questions regarding this document:
We support companies with deep privacy needs. Please see our privacy policy below. For customization, reselling Rantir or other commercial goals and needs for your company please reach out to hello@rantir.com or support@rantir.com.
Subprocessors Policy for Rantir Cloud, Rantir Templates and Development & Services at Rantir
At Rantir, DBA Hexigon AI, Inc. (“Rantir,” “we,” “us,” or “our”), we work with carefully selected third-party service providers (subprocessors) to help us deliver, operate, and maintain our services. This Subprocessors Policy outlines the vendors we rely on to process data on our behalf and provides transparency into where and how personal data may be stored or transferred.
Type:
Subprocessors Policy
Last updated 08.23.2025
SOC2 Compliance is not applied by default:  Rantir may or may not have shared hosting based on if the customer self-hosts Rantir Cloud. SOC2 is on a per case basis and can be applied to with a Self-Host option. This can be achieved by your hosting provider where Rantir is installed. We work alongside your hosting provider to successfully apply for and receive SOC2.

Rantir Cloud, focusing on Confidential Information (including Non-public Personal Information with key components:

1. Who Are Our Subprocessors?

We currently engage the following subprocessors:

  • Supabase Inc.
    • Service: Database hosting, authentication, and storage
    • Data Location: United States / European Union (configurable)
  • Vercel Inc.
    • Service: Frontend application hosting and deployment
    • Data Location: United States
  • OpenAI, L.L.C.
    • Service: AI model inference for chat and generative features
    • Data Location: United States
  • Stripe Inc.
    • Service: Payment processing and subscription management
    • Data Location: United States
  • Cloudflare, Inc.
    • Service: Content delivery network (CDN), DNS, and security (WAF)
    • Data Location: Global (Edge Network) / United States

We may update this list from time to time as our infrastructure evolves. Any changes will be posted to this page with an updated effective date.

2. Data Residency & Compliance Notice

We utilize Supabase Inc. as a core subprocessor for database management and user authentication services. Supabase offers region-specific data hosting, and we endeavor to use data centers within the European Union (EU) for users covered under the GDPR.

However, if you are an EU data subject, please be aware that some processing may occur outside of the EU depending on your configuration or use case. While Supabase offers tools and contractual clauses to support GDPR compliance, our usage of Supabase may not fully satisfy all GDPR requirements depending on your jurisdiction and specific data handling needs.

Please contact us at [legal@rantir.com] if you require a signed Data Processing Agreement (DPA) or additional compliance documentation.

3. GDPR Disclaimer

At this time, due to reliance on third-party infrastructure outside of the EU—including Supabase for database operations—Rantir, DBA Hexigon AI, Inc. is not fully compliant with the General Data Protection Regulation (GDPR).

We are actively evaluating our vendor relationships and data handling practices to align with international data protection standards. Our platform is currently designed primarily for U.S.-based customers, and any processing of EU personal data should be considered limited in scope and subject to further clarification.

4. Your Rights and Control

If you are a customer or end user seeking access to, correction of, or deletion of personal data held by one of our subprocessors, we encourage you to first contact us directly at [support@rantir.com]. We are committed to helping you exercise your data rights to the fullest extent permitted by applicable laws.

5. Updates to This Policy

We may revise this Subprocessors Policy from time to time. Changes will be reflected by updating the “Effective Date” at the top of this document. In the event of material changes, we may also provide notice through our website or service dashboard.

The next generation of personalized software.
G2
star iconstar iconstar iconstar iconstar icon
620+ Reviews
"The community & partners program behind Rantir is intense. The amount the community has developed in 2-3 months has been wild. If you want a new Journey build a template with Rantir. "
Jilian Day
Head of Marketing, Rantir
FAQs & Support
Get support & ask questions
Arrow up right icon
Rantir Research
Read our papers and blog
Arrow up right icon
Documentation & Changelog
View our Guides and API Docs
Arrow up right icon
Join the Community
Over 330+ Rantir Vibe Coders
Arrow up right icon
Cloud Software
Rantir StudioData & AuthoLogic and WorkflowsTIR + Open Source API & EmbedsIntegrations WorkflowsPricingManifesto
Services
All ServicesEnterprise
Software Partners
Rantir with Framer
Rantir with Webflow
Rantir with Shopify
Rantir and Lovable
Rantir and V0
Rantir and Wordpress
Rantir & Cursor AI
Rantir and Bolt
Rantir and Windsurf
Company
About UsRantir ResearchDocumentationFair-Use OS LicenseContact Rantir SalesRequest Demo
Markets
For ConstructionFor HealthcareFor EnterpriseFor Agencies
Support
hello@rantir.comSupport TicketsGet StartedLogin
Privacy PolicyData ClassificationData PolicyCompany Services PolicySecurity PolicySuprocessors DisclaimerTerms and ConditionsLicensing
Main logo link that leads to home page
© Designed by Medium Rare, Developed by Webtir powered by Rantir
If the software is used in conjunction with third-party AI APIs—including but not limited to OpenAI, Google Gemini, Anthropic, AWS Bedrock, or similar systems—the user is responsible for ensuring that their chosen AI provider complies with their own organization’s privacy and data-handling requirements. When the user supplies their own API keys for any such provider, Rantir makes no copies of those keys and does not facilitate their use beyond forwarding requests directly to the provider under the user's explicit instruction within Rantir Cloud or Rantir Studio. In these cases, the user’s data is governed by the data policies of the external AI provider, and the user is responsible for reviewing those terms. All Rantir Products are under the parent company called Hexigon AI, Inc. a Colorado, USA s-corp.