Data Processing Addendum (DPA)

This DPA forms part of your agreement with Class Ledger™ when we process personal data on your behalf.

Roles

You are the Controller; we are the Processor with respect to Customer Data.

Instructions

We process Customer Data only on your documented instructions.

Security

We implement appropriate technical and organizational measures designed to protect Customer Data, including selective field-level encryption for designated sensitive data, access controls, logging, and infrastructure security controls appropriate to the nature of the processing.

Subprocessors

We engage vetted subprocessors under written contracts.

Assistance & Deletion

We assist with data subject requests where feasible and delete or return Customer Data upon termination.

Audits

We provide information necessary to demonstrate compliance and allow audits as permitted under the Agreement.