Data Processing and Sub-processors
Last updated: June 24, 2026
This page describes how RoushTech, LLC ("Raptify", "we", "us") handles personal data on behalf of customers, and lists the sub-processors we rely on. It supplements our Privacy Policy and Terms of Service.
How Raptify processes data
Raptify uses synthetic monitoring. We run our own scheduled tests against the URLs you choose. We do not place tracking scripts on your storefront, and we do not collect personal data about your visitors or customers. As a result, Raptify does not process your end-users' personal data on your behalf.
The personal data we do handle is limited to your account and configuration data (for example your email address, shop domain, monitoring settings, and alert destinations). For this data we generally act as an independent controller, as described in our Privacy Policy.
Data Processing Addendum
If you are subject to the GDPR, UK GDPR, or a similar law and require a Data Processing Addendum ("DPA") to cover any personal data we process on your behalf, the following terms apply once you accept these Terms or request a DPA in writing:
- Scope. We process personal data only to provide the service and on your documented instructions, which include these Terms and your use of the product.
- Confidentiality. Personnel authorized to process personal data are bound by confidentiality obligations.
- Security. We maintain the technical and organizational measures described in the Security section of our Privacy Policy.
- Sub-processors. You authorize us to use the sub-processors listed below. We will give notice before adding a new sub-processor that processes your personal data, and you may object on reasonable grounds.
- Assistance. We will provide reasonable assistance with data-subject requests, security incidents, and any required impact assessments.
- Deletion. On termination, we delete or return personal data as described in the Data Retention section of our Privacy Policy, subject to legal retention requirements.
- International transfers. Where personal data is transferred internationally, we rely on appropriate safeguards, such as Standard Contractual Clauses where applicable.
To put a countersigned DPA in place, contact privacy@roushtech.net.
Sub-processors
We use the following sub-processors to provide Raptify. Each processes only the data needed for its role.
| Sub-processor | Purpose | Location |
|---|---|---|
| Shopify | App distribution and subscription billing (Shopify merchants) | United States / Canada |
| Stripe | Subscription billing (direct customers) | United States |
| Cloudflare | Website delivery, DNS, and spam protection (Turnstile) | United States (global edge) |
| DigitalOcean | Application backend, database, and monitoring infrastructure | United States |
| Sentry | Crash and error diagnostics | United States |
| Resend | Transactional and alert email delivery | United States |
We will update this list as our providers change and, where required, give notice before a new sub-processor begins processing personal data.
Contact
Questions about data processing: privacy@roushtech.net
RoushTech, LLC