Features
One place for every subprocessor obligation
From tracking per-customer variations to proving you notified the right controllers, subprocessor.io turns GDPR Article 28 into software your team can run.
Variation tracking
Map which subprocessors apply to which customers, by contracted scope. No more guessing who agreed to what.
Automated notifications
The right customers are notified through the right notice period, at the right contacts, every time the list changes.
Audit trail
Timestamped, exportable evidence of every notification sent, delivered, and acknowledged.
Objection management
Log objections, track deadlines, and manage resolution against each proposed change.
Subprocessor list
A live, always-current subprocessor list for every customer — scoped to what they contracted for.
DPA analyserComing soon
Upload a vendor DPA and get a structured scorecard before you onboard a new subprocessor.