This Data Processing Agreement is incorporated into and made part of Volarym’s Terms of Service. It applies only when Volarym processes Personal Data on your behalf as part of the services.
You are the Data Controller, and Volarym is the Data Processor.
We will process Personal Data only per your instructions and for the purpose of delivering Volarym services.
We may use trusted third-party subprocessors (e.g., hosting, analytics, CRM). We ensure they provide at least the same level of data protection required by this DPA.
Volarym implements appropriate technical and organizational security measures to protect Personal Data from unauthorized access, disclosure, or destruction.
We will assist you, where possible, in fulfilling your obligation to respond to data subject requests (e.g., access, correction, deletion).
In the event of a data breach, we will notify you without undue delay after becoming aware of the breach.
We may transfer Personal Data to countries outside of your jurisdiction. Where we do, we ensure lawful mechanisms are in place (e.g., Standard Contractual Clauses).
Upon termination of our services, we will delete or return all Personal Data unless legally required to retain it.
