Last Updated: March 20, 2026
Chroma Inc. and its affiliates (“Chroma,” “we,” “our,” and/or “us”) utilize the following subprocessors in the delivery of the Chroma service. These subprocessors may process Customer Personal Data on our behalf when we provide services to our business customers.
| Category | Subprocessor | Security and Privacy Information | Location of Processing |
|---|---|---|---|
| Cloud Infrastructure | Amazon Web Services (AWS) | USA | |
| Cloud Infrastructure | Google Cloud Platform (GCP) | EU | |
| Web Hosting | Vercel | Processing performed at the data center closest to the end user. View regions | |
| Authentication | WorkOS | USA | |
| AI Services | OpenAI | USA | |
| AI Services | Google Gemini | USA | |
| AI Services | MorphLLM | USA | |
| AI Services | VoyageAI | USA | |
| Payment Processing | Stripe | USA | |
| Payment Analytics | Orb | USA | |
| Product Analytics | PostHog | USA & EU | |
| Customer Communication | Slack | USA | |
| Email Marketing | Loops | USA | |
| Email Processing | Postmark | USA | |
| Compute Services | Modal | USA | |
| Document Processing | Datalab | USA |
AI Services:
All subprocessors listed above are bound by data processing agreements that require them to process Customer Personal Data only on our documented instructions and in compliance with applicable data protection laws.
For updates to this list or questions about our subprocessors, please contact us at support@trychroma.com.