Data Processing Agreement (DPA)

EFFECTIVE DATE: August 9, 2019

LAST UPDATED:  May 15, 2025

We are committed to safeguarding your data and operating in compliance with applicable data protection laws. Our Data Processing Agreement (DPA) outlines how we handle personal data, including responsibilities under the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and SOC 2 security standards.

This Data Processing Agreement (“DPA”) supplements the Terms of Service between [Your Company Name] and the customer using our services (the “Customer”). It reflects the parties’ agreement regarding the processing of personal data in accordance with applicable data protection laws, including the GDPR, CCPA, and the American Institute of Certified Public Accountants (AICPA) Trust Services Criteria for SOC 2.

Key Provisions:

• Scope and Purpose: Data is processed solely for the provision of services as described in our Terms of Service.

• Data Security Measures: We implement industry-standard administrative, technical, and organizational measures to protect personal data, including encryption, access controls, regular audits, and secure software development processes aligned with SOC 2 controls.

• Sub-processors: A list of authorized sub-processors is maintained here, and customers are notified of any changes.

• Data Subject Rights: We support access, correction, deletion, and restriction requests, consistent with our Privacy Policy.

• Data Transfers: All international transfers of personal data are conducted using appropriate safeguards (e.g., SCCs or equivalents).

• Audit Rights: Customers may request information demonstrating compliance or conduct reasonable audits, subject to confidentiality obligations.

A signed version of the full DPA is available upon request for enterprise clients.  Download Full DPA PDF

Contact Us

For any questions regarding this DPA, please contact at: Privacy@ePlannerPro.com