A batch of fake 1-star reviews can be bought from public broker networks for roughly $89. Removing the damage is slow and rarely fully succeeds.

Trust

Subprocessors

These are the third-party services Rogger uses to operate the platform. Each has a signed data-processing agreement or standard contractual clauses in place. Material changes are communicated to account owners 30 days before a new subprocessor begins handling customer data.

Last updated 2026-06-16

Cloudflare, Inc.

Privacy policy ↗
Purpose
DNS, DDoS protection, TLS termination, CDN
Data handled
Request metadata (IP, user agent, URL) only; no application data persisted by Cloudflare
Location
Global anycast; primary AU edge for AU traffic
Transfer mechanism
Standard Contractual Clauses + Cloudflare DPA

Stripe Payments Australia Pty Ltd

Privacy policy ↗
Purpose
Subscription billing and card processing
Data handled
Billing name, email, last-4 of card, transaction history. Full PAN never touches Rogger.
Location
Australia + United States (processed in US under Stripe DPA)
Transfer mechanism
Standard Contractual Clauses + Stripe DPA

Fastmail Pty Ltd

Privacy policy ↗
Purpose
Hosted mailbox provider for Rogger's own @rogger.io email
Data handled
Email message contents, sender + recipient addresses, delivery metadata
Location
Australia (primary infrastructure in Melbourne)
Transfer mechanism
Within Australia — no cross-border transfer for inbox storage

Sentry (Functional Software, Inc.)

Privacy policy ↗
Purpose
Error tracking and performance monitoring
Data handled
Error payloads, stack traces, request metadata; PII redacted where feasible
Location
United States
Transfer mechanism
Standard Contractual Clauses + Sentry DPA

Anthropic PBC / OpenAI / Moonshot (via LiteLLM proxy)

Privacy policy ↗
Purpose
AI vision and language models used as fallback for receipt parsing, fraud analysis, and content moderation
Data handled
Receipt image or review text sent for real-time inference only; no training on customer data
Location
United States / China (depending on configured provider)
Transfer mechanism
Standard Contractual Clauses + provider commercial terms

Optional customer-configured providers

If you configure your own email or SMS provider in Rogger, that provider becomes a subprocessor of yours, not ours. Your agreement with that provider governs their handling of the data.

Postmark / ActiveCampaign, Inc.

Privacy policy ↗
Purpose
Optional customer-selected email provider for review invitations
Data handled
Recipient email hash, invitation payload. Only used if you configure Postmark in your own account.
Location
United States
Transfer mechanism
Customer-controlled; DPA between you and Postmark

Resend, Inc.

Privacy policy ↗
Purpose
Optional customer-selected email provider for review invitations
Data handled
Recipient email hash, invitation payload. Only used if you configure Resend in your own account.
Location
United States
Transfer mechanism
Customer-controlled; DPA between you and Resend

Mobile Message Pty Ltd

Privacy policy ↗
Purpose
Optional customer-selected SMS provider
Data handled
Recipient mobile number, invitation payload. Only used if you configure Mobile Message in your own account.
Location
Australia
Transfer mechanism
Within AU — no cross-border transfer

Notifications of change

To receive email notifications when this list changes, email [email protected] with the subject line "Subprocessor notifications — [your business]". We notify all account owners of material changes regardless.

Subprocessors — Rogger