Addmedad Data Processing Agreement (DPA)

Introduction

Purpose and Scope This Data Processing Agreement (DPA) outlines the terms and conditions under which Addmedad.com (“Addmedad”) processes personal data on behalf of its customers (“Customers”). This DPA ensures that data processing activities comply with applicable data protection laws, including the General Data Protection Regulation (GDPR).

Definitions

• Personal Data: Any information relating to an identified or identifiable natural person.
• Data Subject: The individual to whom Personal Data relates.
• Data Controller: The entity that determines the purposes and means of processing Personal Data.
• Data Processor: The entity that processes Personal Data on behalf of the Data Controller.
• Sub-processor: Any third party engaged by Addmedad to process Personal Data.
• Processing: Any operation or set of operations performed on Personal Data.

Data Processing Details

Nature and Purpose of Processing Addmedad processes Personal Data to provide shared hosting and domain registration services to Customers. This includes storing, transmitting, and managing Personal Data as necessary to fulfill the contractual obligations.

Duration of Processing Addmedad will process Personal Data for the duration of the contractual relationship with the Customer, or as required by law.

Obligations of Addmedad

1. Compliance: Addmedad shall comply with all applicable data protection laws, including the GDPR.
2. Data Processing: Process Personal Data only on documented instructions from the Customer.
3. Confidentiality: Ensure that personnel authorized to process Personal Data are committed to confidentiality.
4. Security Measures: Implement appropriate technical and organizational measures to protect Personal Data.
5. Data Subject Rights: Assist the Customer in fulfilling obligations to respond to Data Subject requests.
6. Data Breach Notification: Notify the Customer without undue delay upon becoming aware of a Personal Data breach.
7. Sub-processors: Use only Sub-processors that provide sufficient guarantees to implement appropriate measures in compliance with data protection laws.

Obligations of the Customer

1. Lawful Basis: Ensure that Personal Data is collected and processed lawfully.
2. Instructions: Provide documented instructions for the processing of Personal Data.
3. Data Subject Requests: Handle and respond to Data Subject requests regarding their Personal Data.
4. Accuracy: Ensure that Personal Data provided to Addmedad is accurate and up-to-date.
5. Cooperation: Cooperate with Addmedad in complying with data protection obligations.

Sub-processors

Addmedad uses the following Sub-processors to process Personal Data:

• Data Center Providers: For data storage and infrastructure services.
• Email Service Providers: For communication and support services.
• Payment Processors: For handling payments and billing information.

Addmedad will maintain a current list of Sub-processors and notify Customers of any intended changes, giving them the opportunity to object.

Data Security Measures

Addmedad implements the following technical and organizational measures to protect Personal Data:

• Encryption: Encrypt Personal Data during transmission and at rest.
• Access Controls: Restrict access to Personal Data to authorized personnel only.
• Regular Audits: Conduct regular security audits and vulnerability assessments.
• Incident Response: Maintain an incident response plan to address data breaches promptly.

Data Subject Rights

Addmedad will assist Customers in responding to Data Subject requests to exercise their rights under the GDPR, including:

• Right of Access: Provide access to Personal Data.
• Right to Rectification: Correct inaccurate or incomplete Personal Data.
• Right to Erasure: Delete Personal Data upon request, subject to legal obligations.
• Right to Restriction: Restrict the processing of Personal Data under certain conditions.
• Right to Data Portability: Provide a copy of Personal Data in a structured, commonly used format.

Data Breach Notification

In the event of a Personal Data breach, Addmedad will:

1. Notification: Notify the Customer without undue delay after becoming aware of the breach.
2. Details: Provide information about the nature of the breach, affected data, and measures taken to mitigate the breach.
3. Assistance: Assist the Customer in communicating with Data Subjects and supervisory authorities, if required.

Contact Information

For inquiries related to this DPA, please contact us at:

• Email: privacy@addmedad.com
• Mail: Addmedad.com, 2355, 447 Broadway, 2nd Floor, New York, NY, New York, US, 10013

User Responsibilities

Customers are responsible for:

1. Providing Accurate Data: Ensuring that the Personal Data provided to Addmedad is accurate and lawful.
2. Lawful Collection: Collecting Personal Data in compliance with applicable data protection laws.
3. Cooperation: Cooperating with Addmedad to ensure compliance with data protection laws and this DPA.

By using Addmedad.com’s Services, Customers acknowledge that they have read, understood, and agree to comply with this Data Processing Agreement. Thank you for partnering with Addmedad.com for your hosting and domain registration needs.