Version: 1.0
Date: 2025. December 07.
This DPA forms part of the contractual relationship between Nations Overload OÜ (“Processor”) and customers (“Controller”).
1. Scope
Processor processes personal data solely to provide and improve Lean Maintenance Scheduler, and only according to Controller instructions.
2. Responsibilities
Controller Responsibilities
- Obtain legal consent
- Provide lawful data only
- Manage access and user permissions
Processor Responsibilities
- Follow documented instructions
- Keep data confidential
- Implement security measures
- Assist with GDPR requests
- Maintain processing records
4. Security
Processor uses appropriate technical & organizational measures such as encryption, access control, network security, and monitoring.
5. Data Breach
Processor will notify Controller without undue delay after confirmed breach discovery, providing known facts and remediation steps.
6. International Transfers
Any non-EU data transfer will use approved legal frameworks.
7. Data Return or Deletion
Upon contract end or request, Processor will delete or return all personal data within 30–90 days, unless legally required to retain.
8. Governing Law
This DPA is governed by the laws of European Union and subject to applicable data protection regulation.