Data Processing Addendum
Last updated May 27, 2026
This Data Processing Addendum ("DPA") forms part of the agreement between Digital David AG ("processor") and the customer ("controller") and describes how we process personal data contained in Customer Data on your behalf.
Roles
You are the controller of the personal data in your Customer Data. We process that data only on your documented instructions, which include the configuration choices you make in the product.
Scope and purpose
We process Customer Data to provide observability, feedback, health, and product features as described in our documentation, and for no other purpose.
Sub-processors
We use the following sub-processors to deliver the service:
- Cloudflare, Inc. — edge compute, databases, object storage, and queues (hosting and processing).
- Stripe, Inc. — payment processing.
- PayPal — payment processing.
- [Add email delivery, error monitoring, or other sub-processors as applicable.]
Security measures
- Role-based access control across owner, admin, engineer, support, and stakeholder roles.
- Per-project data isolation.
- Encryption in transit, and at rest where provided by our infrastructure.
- [Document additional organizational and technical measures.]
International transfers
Where personal data is transferred across borders, we rely on appropriate safeguards such as Standard Contractual Clauses where required. [Confirm mechanism with counsel.]
Data subject requests and breach notification
We will assist you in responding to data subject requests and will notify you without undue delay after becoming aware of a personal data breach affecting Customer Data.
Deletion and return
On termination, we will delete or return Customer Data in accordance with your instructions and applicable retention settings, subject to legal retention requirements.
Contact
DPA and sub-processor questions: privacy@perspectify.dev.