KINDI — A bureau for handling sensitive language.
Subprocessor Listقائمة المعالجين من الباطن
Third parties that participate in operating the KINDI service, the data each receives, and the region in which each operates. This list is exhaustive as of the date at the head of this document.
- Issued by
- KINDI
- Effective
- Draft, subject to revision
- Version
- v0.1 · 2026-05-28
Current sub-processorsالسّجلّ الحالي
KINDI engages the following sub-processors to provide the service. Each entry lists what the sub-processor receives, where it operates, and what it is not permitted to receive. For the definition of “Sub-processor” and the contractual safeguards KINDI flows down, see the Data Processing Addendum.
| Role | Vendor | What it receives | Region |
|---|---|---|---|
| Hosting | LightNodelightnode.com | Compute, primary storage, backups, and operational logs. Receives the encrypted envelope and the masked text in transit during a request; never receives raw request text in cleartext at rest. | Riyadh, Kingdom of Saudi Arabia |
| DNS and TLS issuance | Cloudflarecloudflare.com | DNS records for kindi.me and subdomains. Used for ACME DNS-01 certificate issuance only. Does not proxy customer traffic. Does not receive request text, response text, encrypted envelopes, or any personal data submitted to the service. | Global edge; DNS records only |
| Transactional email | Resendresend.com | The registered email address of an account and the body of operational notices to that address (account-creation confirmation, password reset, billing receipt, incident notice). Never receives the body of a masking request, the body of a masking response, or any encrypted envelope. | United States and European Union |
| Payment processing | Tap Payments (forthcoming)tap.company | The top-up amount, the billing identity of the paying account, and a card token. Engaged only at the moment of a top-up. Forthcoming under Phase C4.5; KINDI is not yet integrated with a live payment provider, and customer self-checkout is not enabled. | Kingdom of Saudi Arabia |
Notice of changesإشعار التّعديل
KINDI will publish a notice at least 14 days in advance of adding, replacing, or materially changing the role of any sub-processor listed above. Notices are posted on this page, with a corresponding version increment at the head of the document, and emailed to the address on file for each account with the “Subprocessor notices” preference enabled.
Right of objectionحقّ الاعتراض
A Customer that objects to a new sub-processor on reasonable data-protection grounds may, within the 14-day notice period, terminate the affected service and receive a pro-rata refund of any unused prepaid balance. The objection must be sent in writing to dpo@kindi.me and must state the basis for the objection.
Cross-border transfersالنّقل عبر الحدود
Hosting, primary storage, and operational logs all remain inside the Kingdom of Saudi Arabia. The two non-KSA sub-processors in the table above receive the data described in the “What it receives” column and no more.
For the avoidance of doubt, the masked text and the encrypted envelope that traverse a frontier language model of the Customer’s choosing are not transmitted by KINDI to that model. The Customer’s client makes that call directly. The Customer is the Controller for that cross-border transfer and is responsible for satisfying the requirements of the Transfer Regulation, including any Transfer Risk Assessment expected under Article 7 of the same regulation.