SoftGrid ← Back to home

Legal

Data Processing Addendum

Last updated: 30 June 2026

1. Purpose

This Data Processing Addendum ("DPA") forms part of the Master Services Agreement between SoftGrid (Processor) and the Customer (Controller) and governs processing of personal data under GDPR.

2. Scope of processing

3. Processor obligations

4. Subprocessors

Customer authorizes SoftGrid to engage subprocessors listed at request. SoftGrid will notify 30 days before adding a new subprocessor; Customer may object on reasonable grounds.

5. International transfers

Transfers outside the EEA are made under EU SCCs (Commission Decision 2021/914) with supplementary measures where required.

6. Audit

SoftGrid will make available information necessary to demonstrate compliance and allow audits once per year on reasonable notice.

7. Return or deletion

On termination, SoftGrid will return or delete all personal data within 60 days, unless retention is required by law.

8. Contact

Data Protection Officer: dpo@softgrid.example.com

Questions? Email legal@softgrid.example.com.