Data Processing Agreement (DPA)

The Data Processing Agreement (DPA) between Shapr3D and its clients ensures compliance with GDPR and other relevant data protection laws.

Confidentiality & Security

  • Confidentiality Obligations: Shapr3D personnel are required to sign confidentiality agreements and undergo privacy training to ensure client data is protected.
  • Security Measures: Shapr3D implements robust security protocols, including encryption and access controls, to protect personal data.

Data Access & Processing

  • Limited Access: Shapr3D only grants access to client data on a need-to-know basis and ensures data is only processed in accordance with client instructions.
  • Cessation of Services: Upon service termination, Shapr3D will either delete or anonymize client data within 45 business days, unless otherwise required by law.

Audit Rights

  • Client Audits: Clients may audit Shapr3D’s compliance with the DPA, subject to reasonable notice and conditions outlined in the DPA. Shapr3D will provide documentation and support to demonstrate compliance.

Sub-processing & Data Transfers

  • Sub-processors: Clients will be notified of new Sub-processors and have the right to object. Shapr3D ensures all Sub-processors offer the same level of data protection.
  • International Transfers: Shapr3D complies with GDPR’s requirements for data transfers outside the EEA, using Standard Contractual Clauses where necessary.

 

To learn more about your rights, what kind of personal data we collect, and other related information about these types of policies, visit our Privacy Policy, Data Processing Agreement, and Terms and Conditions pages.

Return to top
Was this article helpful?
0 out of 0 found this helpful

Topics