DPA
A signed addendum that documents how we process your customers' personal data on your behalf. Required by GDPR and similar laws when you handle data of people in regulated regions.
A Data Processing Addendum ("DPA") is a contract between two parties, typically a controller and a processor - that sets out how personal data will be handled by the processor on the controller's behalf. Under the EU/UK GDPR (and equivalent laws in other regions), a controller is required to have one with each of its processors.
When you use TraceTxn to handle personal data about your customers (their names, contact details, order metadata), you are the controller and we are your processor. A signed DPA documents that relationship.
You typically need a DPA with TraceTxn if:
Our standard DPA covers:
Email [email protected] from the email associated with your TraceTxn workspace. Include:
We acknowledge every DPA request within one business day and send a counter-signed PDF as soon as our standard template is ready, today that's typically inside a week for a first-time agreement. If your procurement timeline is tighter, flag the deadline in your initial email and we'll work backwards from it.
We process personal data about: workspace users, members invited to your workspace, customers you create orders for, and recipients of transactional emails you send through the Service. Detailed categories and retention periods are in our Privacy Policy.
Privacy or DPA questions? Email [email protected]. For non-legal product questions, see our Contact page.