Subprocessors
Last updated: 2026-06-18
EloLin uses a small number of trusted third-party companies (“subprocessors”) to operate the service. Each subprocessor handles only the data necessary for their role. This list is updated as subprocessors change — check back periodically.
| Subprocessor | Purpose | Data shared | Location |
|---|---|---|---|
| Supabase Inc. | Authentication backend and database hosting | Email, display name, hashed IP address, User-Agent string, session tokens, audit timestamps | Singapore (ap-southeast-1) |
| Cloudflare Inc. | CDN, edge Workers, and Pages hosting | HTTP request metadata (headers, URL path). No personal profile data is stored by Cloudflare. Web Analytics is cookieless. | Global edge (100+ countries) |
| Google LLC | OAuth 2.0 identity provider (opt-in: “Sign in with Google”) | Email address and basic profile (name) are returned to EloLin at sign-in. Only email and profile scopes are requested. | USA |
| GitHub Inc. | OAuth 2.0 identity provider (opt-in: “Sign in with GitHub”) | Email address and basic profile (name/username) are returned to EloLin at sign-in. Only the user:email scope is requested. | USA |
Data processor agreements
Each subprocessor listed above has a Data Processing Agreement (DPA) or equivalent privacy commitments in place. Links to their privacy policies are provided in the table above.
Questions
If you have questions about our subprocessors or data handling, contact us at hello@elolin.com.