Data Processing Agreement

What's Covered

Our standard DPA addresses the following areas:

• Scope and purpose of processing

  Defines the categories of processing activities performed by A2Go, the nature and purpose of processing, and the duration of processing in relation to your service agreement.

• Data categories and data subjects

  Specifies the types of personal data processed and the categories of data subjects whose data may be included in Platform inputs or outputs.

• Sub-processor obligations

  Details our obligations when engaging sub-processors, including prior notification, contractual requirements, and your right to object to new sub-processors.

• Security measures

  Describes the technical and organizational measures A2Go implements to protect personal data, including encryption, access controls, and incident management.

• Data breach notification procedures

  Establishes notification timelines and procedures in the event of a personal data breach, including the information we will provide and our cooperation obligations.

• Data subject rights assistance

  Outlines how A2Go will assist you in responding to data subject requests for access, rectification, erasure, portability, and other rights under applicable law.

• Data deletion and return

  Defines procedures for returning or securely deleting personal data upon termination of the service agreement, with written confirmation provided.