Legal

Subprocessors

Last updated: June 9, 2026

To run Shopper we rely on a focused set of trusted providers. Each processes data only to deliver part of the service and is bound to protect it. We list them here in the open so you always know who touches your data. This page is referenced by our Data Processing Addendum.

1. Infrastructure

  • Vercel: application hosting and serverless compute.
  • Supabase: managed Postgres database and vector memory (pgvector) where your wish list is stored.
  • Upstash: rate limiting and ephemeral queues.
  • Inngest: scheduled and background jobs (intent monitors and research runs).
  • Uploadthing: file uploads.

2. Identity and payments

  • Clerk: authentication and account management.
  • Stripe: subscription billing and payment processing.

3. Intelligence and data providers

These power item hunts, seller vetting, and research. Shopper orchestrates them, applies its accuracy rule, and writes only verified results into your wish list. We orchestrate providers; we do not sell data.

  • Exa: web-wide item hunts and Radar scans.
  • Explorium: company firmographics and people data.
  • Pipe0: contact enrichment (work email and phone).
  • Bright Data: web search and structured extraction.
  • Tavily: web search and crawl.
  • Linkup: sourced deep research.
  • AgentMail: per-user email sending and threading.
  • OpenAI: the model behind the built-in agent and the small model that refines noisy results.

4. Changes to this list

We update this page when we add or remove a subprocessor. If you have a data processing agreement with us that requires advance notice of changes, we will provide it as agreed.

Questions about this document? Email hello@shopper.sh.