Trust Package Detail
Subprocessor list
Current core vendors involved in hosting, billing, identity, messaging, and model operations.
Procurement and legal teams reviewing vendor dependencies and external service providers.
Why this matters
Organizations should not have to guess which outside services are involved when they partner with Blacklight. This summary identifies the core vendors in the service path so reviews can start from a real list instead of assumptions.
Current summary
Current core vendors include Supabase for application data, auth, and storage; Stripe for payments; Postmark for transactional email delivery; Cloudflare for web delivery and edge infrastructure; and OpenAI for model processing inside resume generation.
Each provider is tied to a specific operational role in the service path rather than being part of a larger advertising, analytics, or reseller network.
The vendor footprint is intentionally narrow and service-specific so partner review can focus on the providers actually involved in hosting, delivery, payments, and bounded model processing.
How to use it in review
Start with this summary to align your reviewer on scope before sending a longer questionnaire.
Use the partner portal for active trial, billing, and support-configuration actions if your organization already has partner access.
Use the trust contact flow when your institution needs a deeper procurement, privacy, or questionnaire follow-up than the public trust center provides.