Data Processing Addendum

Last updated: March 11, 2026

This DPA applies when customer personal data is processed by the service on behalf of the merchant.

Subject matter

Processing is limited to delivering the service, including onboarding, event ingestion, recovery orchestration, analytics, support, and security.

The processor acts only on documented instructions from the controller, including the merchant's configuration inside the service.

The processor will implement appropriate technical and organisational measures to protect personal data.

The processor may use subprocessors to deliver the service and will maintain a current list on the subprocessors page.