Skip to main content
Genie9
Legal Agreement

Data Processing Agreement

Our Data Processing Agreement (DPA) ensures GDPR compliance and defines how we process personal data on behalf of our customers as a data processor.

This Data Processing Agreement ("DPA") forms part of the Terms of Service between Genie9 Limited ("Processor") and the customer ("Controller") for the purchase of services from Processor. This DPA reflects the parties' agreement with regard to the Processing of Personal Data in accordance with the requirements of Data Protection Laws and Regulations.

Key Features

GDPR Compliance Features

Our platform includes built-in features to help you meet GDPR requirements

eDiscovery Capabilities

Locate and classify personal data across your organization

Data Governance Tools

Comprehensive tools for managing data subject requests

User Management

Track and manage user access with detailed audit logs

Data Retention Policies

Automated retention and deletion based on your policies

Multi-Factor Authentication

Enhanced security with 2FA/MFA requirements

256-bit AES Encryption

Military-grade encryption for data at rest and in transit

Comprehensive Data Protection

Our DPA covers all aspects of data processing required for GDPR compliance

Data Subject Rights

  • Right to access personal data
  • Right to rectification
  • Right to erasure (right to be forgotten)
  • Right to restrict processing
  • Right to data portability
  • Right to object

Security Measures

  • Encryption of personal data
  • Ongoing confidentiality of processing
  • Ability to restore access to data
  • Regular security testing
  • Data breach notification procedures
  • ISO 27001 certification

Sub-Processors

  • Written authorization required
  • Same data protection obligations
  • Regular audits and assessments
  • Notification of changes
  • Right to object to new sub-processors
  • Liability for sub-processor actions

International Transfers

  • EU Standard Contractual Clauses
  • Adequate safeguards in place
  • Data localization options
  • Transfer impact assessments
  • Transparency about data locations
  • Compliance with local laws

Processing Details

Subject Matter

Processing of personal data in connection with the provision of cloud backup and storage services.

Duration

Processing will continue for the duration of the agreement plus any retention period required by law or requested by the Controller.

Nature and Purpose

Storage, backup, and recovery of data; provision of cloud services; technical support; and service improvement.

Categories of Data

Personal Data Types

Names, email addresses, phone numbers, addresses, and any other personal data included in backed up files

Special Categories

May include health data, financial data, or other sensitive information as determined by Controller's use

Data Subjects

Controller's employees, customers, suppliers, and any other individuals whose data is processed

Audit Rights

The Controller has the right to conduct audits to verify compliance with this DPA. We provide:

  • Annual third-party security audits and certifications
  • Self-assessment questionnaires
  • On-site audits with reasonable notice
  • Comprehensive audit logs and reports

Important Information

This DPA is a legally binding agreement. By using our services, you acknowledge that you have read, understood, and agree to be bound by this DPA.

For Enterprise customers requiring custom terms or specific clauses, please contact our legal team to discuss modifications.

AI Built