Conversera Start a conversation

Legal

Data Processing Agreement

Standard terms for the processing of personal data in Conversera engagements.

Last updated: [DATE — to be set on publication]

This is a placeholder structure. Final DPA terms are to be drafted by counsel and inserted in this layout. The structure below covers the standard sections expected for a B2B services firm processing client personal data under GDPR, CCPA, and APAC privacy regimes, with ISO 27001 information security commitments.

1. Definitions

[Controller, Processor, Personal Data, Sub-processor, Data Subject, etc.]

2. Scope and roles

[Conversera as Processor; client as Controller. Scope of processing.]

3. Categories of data

[Categories of personal data processed in the course of marketing engagements.]

4. Sub-processors

[Approved sub-processor list and notification process for changes.]

5. Security measures

[ISO 27001 controls. Access, encryption, audit, incident response.]

6. Cross-border transfers

[Standard Contractual Clauses, APAC equivalents.]

7. Data subject rights

[Process for handling subject requests forwarded by Controller.]

8. Audit and inspection

[Audit rights and ISO 27001 certification reliance.]

9. Term and termination

[Duration. Return / deletion of data on termination.]

10. Contact

For DPA enquiries, contact [email protected].

Start a conversation