Data Processing Agreement
Last updated: January 2025
Enterprise DPA
Our Data Processing Agreement (DPA) is available for enterprise customers to ensure GDPR compliance and data protection standards. The DPA covers data processing activities, security measures, and your rights as a data controller.
Request DPA1. Definitions
This Data Processing Agreement incorporates and is subject to the terms of the Master Services Agreement between DeltaBits (the "Processor") and the Customer (the "Controller").
2. Scope and Applicability
This DPA applies to the processing of Personal Data by DeltaBits on behalf of the Customer in connection with the Services, as defined in the Master Services Agreement.
3. Data Processing
DeltaBits shall:
- Process Personal Data only on documented instructions from the Controller
- Ensure that persons authorized to process Personal Data are bound by confidentiality
- Implement appropriate technical and organizational measures
- Assist the Controller in responding to data subject requests
- Delete or return Personal Data upon termination of services
4. Security Measures
DeltaBits maintains SOC 2 Type II certification and implements industry-standard security measures including:
- Encryption of data in transit and at rest
- Regular security assessments and penetration testing
- Access controls and authentication mechanisms
- Incident response and breach notification procedures
- Regular employee security training
5. Sub-Processors
DeltaBits may engage sub-processors to assist in providing the Services. A current list of sub-processors is available upon request. We will provide notice of any changes to sub-processors.
6. Data Subject Rights
DeltaBits will assist the Controller in fulfilling data subject requests, including access, rectification, erasure, restriction, portability, and objection rights under applicable data protection laws.
7. Data Breach Notification
DeltaBits will notify the Controller without undue delay upon becoming aware of a Personal Data breach affecting the Controller's data, and will provide reasonable assistance in investigating and mitigating the breach.
8. International Transfers
Where Personal Data is transferred outside the EEA, DeltaBits ensures appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission.
9. Audits and Compliance
DeltaBits will make available to the Controller information necessary to demonstrate compliance with this DPA and allow for audits, including inspections, by the Controller or an auditor mandated by the Controller.
10. Contact Information
For questions about this DPA or to request a signed copy, please contact:
Email: legal@deltabits.in
Data Protection Officer: dpo@deltabits.in