Official Document

Data
Processing Addendum

Enterprise-grade data processing agreements for global compliance.

Legal Officer
Reviewed ByLegal Operations
Last Updated
February 3, 2026
Status
Active & Binding
01

Scope of Agreement

This DPA forms part of the OkayIQ Terms of Service and applies where we process Personal Data on your behalf. It reflects our commitment to GDPR, CCPA, and other global privacy frameworks.

02

Roles & Instructions

For the purposes of this agreement, You are the Data Controller and OkayIQ is the Data Processor. We will only process data based on your documented instructions as provided through the platform interface.

03

Technical Security

We maintain rigorous technical and organizational measures to ensure your data remains secure.

AES-256 encryption for all data at rest.
TLS 1.3 encryption for all data in transit.
SOC2 Type II vetted infrastructure partners.
Regular external penetration testing.
04

Sub-processor Audit

We maintain a list of all sub-processors and will notify you of any changes. All sub-processors are required to meet or exceed the security standards defined in this DPA.

Need specific legal language?

For Scale and Enterprise customers, we offer custom Data Processing Agreements (DPA) and Master Service Agreements (MSA) tailored to your specific compliance needs.