BizExchangeX
BizExchangeX
Bringing Businesses Together!
Buyer Portal
Help
Contact UsFAQAbout Us
Log In
Document: subprocessor-policy
Status: DRAFT
Version: 1.0.0
Classification: PUBLIC
Effective: 2026-06-19
Review: 2026-12-19

This page is generated from the controlled Markdown source: docs/privacy/subprocessor-policy.md

Subprocessor Policy

Purpose

This Policy explains how BizExchangeX ("BEX") evaluates, approves, monitors, and manages subprocessors that support platform operations.

Definition

A subprocessor is a third party engaged by BEX to process personal information on behalf of BEX customers.

Selection Criteria

BEX evaluates subprocessors based on:

  • Security controls
  • Privacy practices
  • Regulatory compliance
  • Business continuity capabilities
  • Contractual protections
  • Incident response maturity

Current Subprocessor Categories

CategoryPurposeData Types
Cloud InfrastructureApplication hostingAccount, procurement, operational data
Email ServicesTransactional messagingContact information
Monitoring ServicesPerformance and security monitoringSystem telemetry
Support PlatformsCustomer support workflowsSupport records
Analytics ProvidersService improvementUsage information

Subprocessor Obligations

BEX requires subprocessors to:

  • Maintain appropriate security safeguards
  • Protect confidential information
  • Process data only for authorized purposes
  • Notify BEX of security incidents
  • Support applicable privacy obligations

Change Management

BEX maintains an inventory of subprocessors and reviews changes periodically.

Material changes will be communicated as required by applicable law or contract.

Customer Rights

Customers may request information regarding subprocessors supporting BEX services.

Contact Information

compliance@bizexchangex.io

Revision History

VersionDateSummary
1.0.02026-06-19Initial draft