Our Subprocessors
Transparency is a core part of our data protection commitment. This page lists the third-party subprocessors FSM Navigator uses to deliver and support our platform.
Table of Contents
1. Overview
As described in our Data Processing Agreement, FSM Navigator engages a limited number of third-party service providers (“subprocessors”) to assist in delivering the Service.
Each subprocessor has been carefully evaluated to ensure it meets our security and data protection standards, as described in our Privacy Policy.
Subprocessors only have access to the data necessary to perform their specific function.
We maintain contractual agreements with each subprocessor requiring them to protect personal data to at least the same standard as this policy.
This list is updated whenever subprocessors are added, removed, or their scope of processing changes. For details about our security practices, see our Security & Trust page.
2. Current Subprocessors
The following table lists the subprocessors engaged by FSM Navigator as of the date indicated above.
| Subprocessor | Purpose | Data Processed | Location |
|---|---|---|---|
| Amazon Web Services (AWS) | Cloud infrastructure hosting and storage | All service data (encrypted at rest) | United States |
| Amazon Simple Email Service (SES) | Transactional email delivery | Recipient email addresses, email content | United States |
| Stripe | Payment processing and billing | Billing contact information, payment metadata | United States |
| Cloudflare | CDN, DDoS protection, and bot mitigation | IP addresses, request metadata | Global (edge network) |
| Google (Routes API) | Dispatch optimization and geocoding | Service addresses, location coordinates | United States |
| Google (Analytics 4) | Website analytics (public pages only) | Anonymous page views, traffic sources, general geographic region (no personal data) | United States |
| Google (Firebase Crashlytics) | Mobile app crash and error reporting (90-day retention) | Technical crash reports only: stack trace, app version, OS version, device model, anonymous/hashed user identifier. No personal contact information, authentication tokens, or cryptographic keys (stripped before transmission). Transfers safeguarded by Standard Contractual Clauses (SCCs) and a Data Processing Agreement (DPA) with Google LLC. | United States |
| Intuit (QuickBooks Online) | Accounting integration (Enterprise plan) | Customer names, invoice data, payment records | United States |
3. Due Diligence
Before engaging any subprocessor, we conduct a thorough evaluation that includes:
- Review of the subprocessor’s security policies, certifications, and compliance posture
- Assessment of data handling and encryption practices
- Verification that appropriate data processing agreements are in place
- Evaluation of the subprocessor’s incident response and breach notification procedures
- Ongoing monitoring of subprocessor compliance and security posture
4. Data Transfer Safeguards
Personal data processed by subprocessors may be transferred outside of your jurisdiction.
Where such transfers occur, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) where required by applicable law.
All subprocessors are required to maintain data protection standards equivalent to or exceeding our own.
We do not transfer data to jurisdictions without adequate protections unless proper safeguards exist.
5. Notification of Changes
We will update this page whenever a new subprocessor is added, an existing subprocessor is removed, or the scope of processing changes materially.
For customers with active Data Processing Agreements, we will provide at least thirty (30) days advance notice before engaging a new subprocessor.
Historical changes will be noted below the current subprocessor table where applicable.
6. Objection Process
If you have a legitimate concern about a new subprocessor, you may object by notifying us within thirty (30) days of the change notification.
Objections should be sent to [email protected] with a detailed explanation of your concern.
We will work in good faith to address your concern, which may include proposing an alternative subprocessor or implementing additional safeguards.
If we are unable to resolve your objection, you may terminate the affected service in accordance with the Terms of Service.
7. Contact Us
If you have questions about our subprocessors or wish to receive notifications about changes, please contact us using the details below.
CJD Technologies LLC
Privacy inquiries: [email protected]
Data protection: [email protected]
General support: [email protected]
Website: fsmnavigator.com/contact
Questions about our subprocessors? Contact us at [email protected].
© 2026 CJD Technologies LLC. All rights reserved.