To ensure full compliance with the General Data Protection Regulation (GDPR), we have established a comprehensive Data Processing Agreement (DPA) that governs the processing of personal data when customers use our services.
This agreement outlines the roles and responsibilities of Enalyzer as the data processor and our customers as data controllers. It sets forth the legal framework, including the nature and purpose of the data processing, types of personal data processed, categories of data subjects involved, and the technical and organizational measures we implement to protect that data.
Our DPA ensures that:
-
Personal data is processed only in accordance with documented instructions from the controller.
-
Appropriate security measures are in place to safeguard data.
-
Sub-processors are carefully selected and governed by contractual obligations ensuring compliance.
-
Data subjects’ rights are respected, and assistance is provided with data protection impact assessments and breach notifications.
Enalyzer’s DPA is fully aligned with Article 28 of the GDPR and reflects our commitment to transparency, accountability, and the protection of individual rights.