Data Processing Agreement (DPA)

Effective Date:Jan 01, 2018

This Data Processing Agreement (DPA) is part of our Privacy Policy and outlines our responsibilities under the General Data Protection Regulation (GDPR) and similar laws when handling personal data on behalf of users.

Roles

• You (Customer): Data Controller
• The It Bulls: Data Processor

Purpose of Data Processing

We process customer data strictly for the following purposes:

• Sending bulk or transactional emails
• Hosting websites or APIs
• Providing analytics, logs, or debugging assistance
• Ensuring compliance and technical operation of our services

Types of Data Processed

• Email addresses
• User-provided names and contact details
• Message and API payloads
• Website form submissions

Security Measures

We implement appropriate technical and organizational measures to protect your data, including:

• Encryption (HTTPS, data in transit)
• Access controls and limited internal access
• Regular data backups and logging

Data Subprocessors

We may use reputable subprocessors (e.g., cloud hosting, SMTP providers, analytics tools). A current list is available upon request.
All subprocessors are contractually bound to GDPR-compliant standards.

Your Rights

As a controller, you have the right to:

• Access or request deletion of your stored data
• Request logs or records of processing
• Audit or request our list of subprocessors
• Terminate the agreement if we breach our obligations

Breach Notification

In the event of a data breach affecting your data, we will notify you within 72 hours of becoming aware of the incident.