You Are Already Covered
We know that is not always enough. Procurement and security teams usually need a document that names their own legal entity and carries a signature, so this page produces one. It restates the same terms in standalone form, counter-signed by us, with your organisation named as the Controller.
The signed copy grants nothing beyond what Section 14 already provides, and does not vary our Terms. If the two ever disagree, the Terms of Service control. That is what lets us sign it for you on the spot rather than sending you into a week of email.
What the DPA Covers
The full text is reproduced inside the PDF you download. It is the same wording as Section 14 of the Terms, which you can read in full before you sign. It covers:
- The roles of each party, including the Agency and white-label case
- Subject matter, duration, nature and purpose of the processing
- The types of personal data and categories of data subjects
- Our obligations as your Processor under Article 28(3) GDPR
- Sub-processor authorisation, the 14-day change notice, and your right to object
- Personal data breach notification within 72 hours
- Your annual audit right
- International transfers, and the safeguards we rely on
- Our commitment not to train AI models on your data
The PDF also carries three annexes: a description of the processing, our technical and organisational measures, and the current Sub-processor list with locations.
If your review needs the Standard Contractual Clauses, the UK International Data Transfer Addendum, or anything else on top, email [email protected] and we will send them over.
Sign and Download
Enter the details of the legal entity that will act as Controller. These are printed on the agreement exactly as you type them, so use your full registered name and address.
Reach our team at [email protected] and we will respond within two business days.