
Masonic Memory may use trusted providers to operate the app.
| Provider | Purpose | Data processed | Location or transfer note | Status |
|---|---|---|---|---|
| Supabase | Database, authentication, and account management. | User account data, approved user records, permission levels, province, lodge, training progress, walkthrough attempts, feedback, and activity records. | Check current Supabase project region and Data Processing Addendum before wider launch. | Active |
| Poynter Systems | App build, technical setup, maintenance, support, and platform administration. | Limited account, support, configuration, and technical information where needed to build, maintain, troubleshoot, or support the service. | UK-based service provider. Any underlying tools used for delivery should be reviewed and documented before wider launch. | Active |
| Cloudflare | Security, bot protection, DNS, performance, and Cloudflare Turnstile security checks. | IP address, device/browser data, request data, security logs, and Turnstile verification data where applicable. | Check Cloudflare Data Processing Addendum and international transfer safeguards before wider launch. | Active |
| Resend | Transactional email delivery, including account invitations, email confirmation, password setup, and password reset emails. | Email address, email delivery metadata, and the content of transactional account emails. | Check Resend Data Processing Addendum and sending region before wider launch. | Active |
Note: This list should be reviewed and updated before pilot or wider launch. Where an underlying provider processes personal data, it should be recorded and assessed as part of Masonic Memory’s data protection documentation.