Our commitment to protecting and processing your data responsibly
This Data Processing Agreement governs the processing of personal data by ChatSa on behalf of its customers. It ensures compliance with applicable data protection laws and regulations, including GDPR.
This Data Processing Agreement ("DPA") forms part of the agreement between ChatSa ("Processor") and the Customer ("Controller") and applies to all processing of personal data carried out by ChatSa on behalf of the Customer.
ChatSa processes personal data only for the purpose of providing AI chatbot services, including: - Customer service conversations - User behavior analytics - Training data for AI models - Performance optimization
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including: - End-to-end encryption - Access control and authentication - Regular security audits - Employee training - Data backup and recovery procedures
ChatSa may engage sub-processors to assist in providing the services. We maintain a list of approved sub-processors and will inform customers of any intended changes.
We assist the Controller in responding to requests from data subjects to exercise their rights under applicable data protection laws, including rights of access, rectification, erasure, and data portability.
In the event of a personal data breach, we will notify the Controller without undue delay and provide assistance in addressing the breach.
The Controller has the right to audit ChatSa's compliance with this DPA, subject to reasonable notice and confidentiality obligations.
Upon termination of services, we will delete or return all personal data to the Controller, unless required by law to retain it.
If you have any questions about this Data Processing Agreement or our data practices, please contact our Data Protection Officer.