Subprocessors

Last updated: May 13, 2026 · Version 1.0

This page lists the third-party vendors that may process Customer Firm data on Suture's behalf. We provide at least thirty (30) days' notice before adding a new subprocessor that processes Customer Firm content.

Overview

Suture AI LLC operates a multi-tenant workflow platform for U.S. professional services firms. To deliver its services, Suture engages a limited set of subprocessors — third-party vendors that may process data belonging to subscribing Customers (“Firm Data”). All subprocessors are contractually bound to process Firm Data only on Suture’s documented instructions. Data is encrypted in transit (TLS 1.2+) and at rest (AES-256 or provider-managed equivalent). Suture’s contractual posture is zero data retention: AI providers are configured not to retain prompt or response content beyond the minimum required for request completion, and no prompt or response text is written to Suture’s own databases.

Subprocessors That May Process Firm Data

Vendor	Purpose	Data category	Location	BAA / DPA status
AWS (Bedrock)	AI inference — Claude Opus 4.6, Sonnet 4.6, Haiku 4.5	Prompt text submitted for generation (email drafts, mitigation packets, closeout letters, redaction analysis)	us-east-1 / us-east-2 / us-west-2	AWS BAA available — to be executed before any HIPAA-eligible data enters Bedrock
AWS (Textract)	OCR — scanned PDF documents	Document page images uploaded to S3 staging; auto-deleted after 24 hours	us-west-2	Covered under AWS BAA
AWS (S3)	Temporary staging for Textract jobs	PDF bytes in a firm-scoped path; 24-hour bucket lifecycle	us-west-2	Covered under AWS BAA
AWS (SNS)	Async job completion notifications	Job IDs and status metadata only; no document content	us-west-2	Covered under AWS BAA
AWS (KMS)	Encryption key management for OAuth tokens	Encrypted key material only; plaintext tokens never leave application memory	us-west-2	Covered under AWS BAA
Google Cloud / Vertex AI	AI inference — Gemini 3.1 Pro (long-context and video tasks only)	Prompt text for documents exceeding Claude context window; body-cam or deposition video for video-analysis tasks	Global (configurable)	Vertex AI BAA-eligible — pending execution
AssemblyAI	Audio transcription (HIPAA-eligible tier)	Uploaded audio files; deleted post-processing per ZDR contract	USA	✓ BAA signed (effective May 1, 2026)
Supabase	PostgreSQL database — primary data store	All Firm and case metadata: firms, users, email threads, case records, redaction jobs, transcription jobs, audit logs	us-east-2	Supabase BAA available on Enterprise plan; pending upgrade
Vercel	Application hosting, serverless functions, Blob storage, Cron	Application request/response data; discovery audio files in Blob (private mode)	US edge network	Vercel Enterprise supports BAA; current plan pending verification before HIPAA-eligible data lands in Blob
Clerk	Authentication, session management, organization membership	User account records, session tokens, organization metadata; no Firm content	USA	Clerk supports BAA on Enterprise tier
Stripe	Subscription billing, invoicing, payment processing	Billing metadata; card numbers handled directly by Stripe (Suture never sees PANs)	USA	Stripe is Level 1 PCI DSS certified; no BAA required (no PHI processed)
Gmail / Google Workspace (per-firm OAuth)	Email read, triage, and send for each firm’s connected inboxes	Email content read with explicit per-user OAuth consent; scopes: `gmail.readonly`, `gmail.compose`, `gmail.modify`	USA (Google data centers)	Google Workspace BAA available
Gmail / Google Workspace (platform-admin OAuth)	Outbound email from Suture to firm contacts (contracts, notifications)	Email content sent by platform admins; `gmail.send` scope only — no read or modify	USA (Google data centers)	Covered under same Google Workspace BAA
MyCase	Case management read/write	Case records, exhibits, contacts, notes; read and written under per-firm OAuth authorization	USA	Firm-to-MyCase relationship; Suture is a connected app under firm’s own MyCase agreement

Subprocessors That Do NOT Process Firm Data

The vendors below support Suture’s internal operations but do not receive Firm Data:

Vendor	Purpose	Notes
Resend	Support-ticket email notifications (operational)	Receives only Suture-internal support metadata; no Firm client content
ClickUp	Internal task management (Suture team)	Sales and engineering tasks; no Firm data copied in

Data Handling Posture

Encryption at Rest

OAuth tokens (Gmail, MyCase): KMS envelope-encrypted per row. Each row carries a unique Data Encryption Key (DEK) generated by AWS KMS and wrapped with a Key Encryption Key (KEK). Encryption context: {firmId, connectionId} — a DEK cannot be used to decrypt a different row. Cipher: AES-256-GCM with 12-byte IVs and 16-byte authentication tags.
Platform-admin OAuth tokens: separate PlatformOAuthConnection table with encryption context {platformAdminUserId, connectionId}; cannot cross-decrypt with firm-side rows.
Database: Supabase-managed encryption at the storage layer.
Discovery audio: Vercel Blob private mode with per-firm access control.

Encryption in Transit

All API calls over HTTPS / TLS 1.2+.
Webhook signatures verified before processing: Stripe HMAC, Clerk Svix, AssemblyAI per-job secret, AWS SNS for Textract.

Zero Data Retention

Suture’s primary commitment: prompt text and AI response text are never written to Suture’s own database.

AiCall table stores model identifier, token counts, estimated cost in cents, duration, firmId, userId — never prompts or responses.
UsageEvent table stores structural events (tool opens, action types, timestamps) — never form contents or PII.
AuditEvent metadata is allowlisted per action type — no raw req.body literals.
AssemblyAI: audio files deleted post-processing per ZDR contract; Suture retains only TranscriptionJob metadata.
AWS Bedrock: ZDR by default per AWS data-processing terms; Anthropic does not see request content via Bedrock.
Google Vertex AI: customer data not used to train Google models per Vertex AI data-processing terms.

Access Control

Platform-administrator role conferred only via Clerk publicMetadata.role='platform_admin' set manually by Suture founders.
404-not-403 on /admin/* routes prevents enumeration by external parties.
Platform-administrator impersonation re-verifies role on every request and writes an audit row.
Firm-member isolation enforced at the Prisma query layer (every query requires a resolved firmId) plus an ESLint rule flagging unscoped queries.
Human-in-the-loop required for any AI-generated content sent to clients, opposing counsel, or courts.

Breach Notification

24-hour notification commitment to affected Customer Firms.
Audit log surfaces unauthorized access attempts for incident investigation.

Data Retention

AiCall + UsageEvent + AuditEvent: 18-month default retention.
Signed contracts and LOIs: 7-year legal hold.
Firm-exported data: available at any time during the engagement; full export on termination with a 30-day window.
S3 staging PDFs (Textract input): 24-hour auto-delete via bucket lifecycle rule.
AssemblyAI audio: deleted post-processing per ZDR contract.

BAA / DPA Status Summary

Vendor	BAA / DPA	Status as of 2026-05-13
AWS (Bedrock, Textract, S3, SNS, KMS)	AWS BAA	Available — to be executed
Google Cloud / Vertex AI	Google Cloud BAA	BAA-eligible — pending execution
AssemblyAI	AssemblyAI BAA	✓ Signed (effective May 1, 2026)
Supabase	Supabase BAA	Available on Enterprise — pending plan upgrade
Vercel	Vercel BAA	Available on Enterprise — pending plan verification
Clerk	Clerk BAA	Available on Enterprise — pending plan upgrade
Stripe	PCI DSS Level 1 (no BAA required)	Certified
Gmail / Google Workspace	Google Workspace BAA	Available — to be executed alongside Vertex BAA
MyCase	Firm-direct (Suture is a connected app)	Governed by firm’s own MyCase agreement

Reference Documents

For the legal terms that govern Suture’s handling of Firm Data, see the Data Processing Addendum, the Privacy Policy, and the Terms of Service.