This Data Processing Agreement (“Agreement”) explains how Netlas LLC (“we,” “us,” or “our”) handles personal data on behalf of users of our services (“you” or “your”). It is designed to comply with the General Data Protection Regulation (GDPR) and other relevant data protection laws. By using our services, you agree to this Agreement.
1. Definitions
1.1 GDPR: The General Data Protection Regulation (EU) 2016/679.
1.2 Personal Data: Information that can identify you or another individual (e.g., names, email addresses, IP addresses).
1.3 Processing: Any action performed on Personal Data, such as collecting, storing, or sharing it.
1.4 Subprocessor: A third-party service provider we use to process Personal Data.
2. Scope of This Agreement
2.1 This Agreement applies to any Personal Data you provide to us when using our services.
2.2 We process your Personal Data to deliver and improve our services, in line with our
Privacy Policy.
2.3 We act as the “Data Processor” for your Personal Data, and you act as the “Data Controller” when you decide how and why the data is collected and processed.
3. What Data We Process
We may process the following types of Personal Data:
- Names, email addresses, and contact details.
- IP addresses and metadata from your use of our services.
- Other data you provide to us through your account or communication.
4. How We Protect Your Data
We take your privacy seriously and implement industry-standard measures to protect your data, including:
- Encryption: Data is encrypted in transit.
- Access Control: Personal Data is only accessible to authorized personnel.
- Monitoring: Regular checks to identify and address vulnerabilities.
5. Subprocessors
We use trusted third-party providers (Subprocessors) to support our services. These include:
- Paddle.com: Payment processing.
- Pipedrive: Customer relationship management.
- Postmark (ActiveCampaign): Email delivery.
- Cloudflare: DDoS protection, proxy services, and content delivery.
A complete and up-to-date list of subprocessors is available at Subprocessors List.
6. Data Transfers
6.1 We may transfer Personal Data outside the European Economic Area (EEA) when necessary. Any such transfer complies with GDPR through safeguards like Standard Contractual Clauses.
6.2 For users in other regions, we follow applicable local laws to ensure data protection.
7. Your Rights
Under GDPR and other privacy laws, you have the following rights regarding your data:
- Access: Request a copy of your data.
- Correction: Correct inaccuracies in your data.
- Erasure: Request deletion of your data.
- Restriction: Limit how your data is used.
- Portability: Transfer your data to another provider.
To exercise your rights, please contact Netlas Support.
8. Data Breaches
We will notify you without undue delay if a data breach occurs that may impact your Personal Data. This includes information about the breach, its impact, and actions to mitigate any risks.
9. Data Retention
We keep your Personal Data only as long as necessary to provide our services or as required by law. Once no longer needed, your data will be securely deleted.
10. Changes to This Agreement
We may update this Agreement to reflect changes in our services or legal requirements. Any updates will be posted on this page with the effective date clearly noted.
11. Contact Us
If you have any questions about this Agreement or how we process your data, you can contact us.
Acceptance of Terms
By using our services, you agree to the terms of this Data Processing Agreement. If you do not agree, please discontinue use of our services.