Subprocessors & Vendors.

This page describes the vendor categories and subprocessor practices POLAR CIRCUIT LLC uses for the public website and for client engagements.

A "subprocessor" is a service provider that may process personal information on our behalf. Exact vendor use can vary by client project, hosting choice, CMS, analytics preference, and Statement of Work.

The current public site does not intentionally use analytics, advertising, chat, payment, or behavioral tracking vendors.

Client projects may require additional vendors. Common categories include:

• Hosting platforms and CDNs.
• Headless CMS platforms.
• Search providers and site-search tools.
• Privacy-friendly analytics or reporting tools.
• Email delivery or CRM systems selected by the client.
• Payment processors if a client site includes commerce.
• Monitoring, uptime, and security tools.

Engagement-specific vendors, data types, and controller/processor responsibilities should be documented in the applicable SOW, DPA, or vendor appendix before production launch.

If a client engagement requires Polar Circuit to process personal information on the client's behalf, we will use data-processing terms appropriate to the role and jurisdiction. Those terms may cover subject matter, duration, processing purpose, personal data categories, data-subject categories, confidentiality, security measures, subprocessors, data-subject request assistance, breach notification, deletion or return, and audit rights.

For GDPR or UK GDPR engagements, Standard Contractual Clauses or another valid transfer mechanism may be required if personal data is transferred internationally.

For active client engagements where we act as a processor, subprocessor-change notice periods and objection rights should be defined in the DPA or SOW. If no written notice process exists, clients may request the current vendor list by emailing signal@polarcircuit.com.

Questions about vendors, subprocessors, or data-processing terms can be sent to signal@polarcircuit.com.