Data Processing Agreement | CatchIQ
📄

Data Processing Agreement

DPA for Enterprise Customers

Our Data Processing Agreement (DPA) ensures GDPR compliance for enterprise customers who process personal data through CatchIQ.

📋 What is a DPA?

A Data Processing Agreement (DPA) is a legally binding contract between a data controller (your organization) and a data processor (CatchIQ) that governs the processing of personal data.

Key DPA Components

  • Subject matter and duration of processing
  • Nature and purpose of processing
  • Categories of personal data and data subjects
  • Obligations and rights of the controller
  • Security measures and data protection
  • Sub-processor arrangements

🏢 Who Needs a DPA?

You may need a DPA if you:

✅ Required

  • Process EU citizens' personal data
  • Are subject to GDPR compliance
  • Have enterprise or business accounts
  • Need formal data processing documentation
  • Work in regulated industries

⚠️ Consider

  • Internal compliance requirements
  • Customer data processing policies
  • Legal or audit requirements
  • Risk management practices
  • Contractual obligations

📄 Our DPA Coverage

CatchIQ's DPA covers all aspects of data processing required for GDPR compliance:

🎯 Processing Details

Clear definition of what data we process and why:

  • Website visitor behavior and interaction data
  • Exit intent patterns and conversion metrics
  • User preferences and campaign responses
  • Technical data (IP addresses, browser info)

🔒 Security Measures

Comprehensive technical and organizational measures:

  • Encryption in transit and at rest
  • Access controls and authentication
  • Regular security audits and monitoring
  • Data backup and disaster recovery

🤝 Sub-processors

Transparent list of authorized sub-processors:

  • Cloud infrastructure providers (AWS, Google Cloud)
  • Analytics and monitoring services
  • Customer support platforms
  • Payment processing services

📥 Download Our DPA

📄

CatchIQ Data Processing Agreement

Version 2.0 • Updated December 2024

📋 Document Details

  • • 12 pages comprehensive coverage
  • • GDPR Article 28 compliant
  • • Standard Contractual Clauses included
  • • Ready for legal review

🔍 What's Included

  • • Processing instructions and limitations
  • • Security measures and breach procedures
  • • Data subject rights procedures
  • • International transfer safeguards

🔄 DPA Process

Follow these steps to execute our DPA:

1

Review the DPA

Download and review our standard DPA with your legal team to ensure it meets your compliance requirements.

2

Request Execution

Contact our legal team to request a signed copy of the DPA. We'll coordinate the execution process with you.

3

Sign and Store

Both parties sign the DPA and maintain copies for compliance records. The DPA becomes effective immediately upon execution.

🔄 Updates and Amendments

We may update our DPA to reflect changes in:

  • Data protection laws and regulations
  • Our data processing practices
  • Security measures and technologies
  • Sub-processor arrangements

Notice: We will notify existing DPA customers of any material changes at least 30 days in advance via email.

❓ Frequently Asked Questions

Do I need a DPA for my CatchIQ account?

If you process personal data of EU citizens through CatchIQ, you likely need a DPA for GDPR compliance. Contact us to discuss your specific requirements.

Is there a cost for the DPA?

No, our standard DPA is provided free of charge to all enterprise customers. Custom DPA terms may require additional review and negotiation.

📞 Legal Contact

⚖️ Legal Department

Email: legal@catchiq.com

DPA Requests: dpa@catchiq.com

Response Time: Within 2 business days

Address: [Your Legal Department Address]

Phone: [Legal Department Number]

Office Hours: Monday-Friday, 9 AM - 5 PM