This Data Processing Agreement (“DPA”) forms part of the agreement between CloudAxis Labs LLC (“Processor,” “we,” “us”) and the business customer (“Controller,” “you”) for CloudAxis (the Agentic Cloud OS at app.cloudaxis.ai).
1. Scope and roles
When you use CloudAxis to process personal data on behalf of your organization or end users, you are the Controller and CloudAxis Labs LLC is the Processor. This DPA applies to personal data submitted to the Service, including account data, agent inputs/outputs, integration tokens, and support communications.
2. Processing instructions
We process personal data only on your documented instructions as set out in the Terms of Service, your account configuration, and this DPA — unless required by applicable law. You are responsible for establishing a lawful basis and providing required notices to data subjects.
3. Subprocessors
We use infrastructure and service providers listed on our Subprocessors page. We impose data-protection obligations on subprocessors consistent with this DPA. We will update the Subprocessors page when we add or change providers; you may subscribe to change notifications by emailing privacy@cloudaxis.ai (subject: “Subprocessor updates”).
4. Security
We implement technical and organizational measures described in our Security page and Privacy Policy, including encryption in transit, access controls, and vulnerability disclosure practices.
5. International transfers
Personal data may be processed in the United States and other countries where our subprocessors operate. Where required, we offer appropriate safeguards (such as Standard Contractual Clauses) upon request.
6. Data subject requests
We assist you in responding to data subject requests to the extent required by law and technically feasible. Direct privacy requests may also be sent to privacy@cloudaxis.ai.
7. Breach notification
We will notify you without undue delay after becoming aware of a personal data breach affecting your account data, and provide information reasonably required for you to meet regulatory obligations.
8. Deletion and return
Upon termination of the Service, we delete or return personal data per our retention practices in the Privacy Policy, unless law requires retention.
9. Audits
Upon reasonable written request, we provide information necessary to demonstrate compliance with this DPA. Formal audits are subject to confidentiality, frequency limits, and mutual scheduling.
10. Executed copy
Enterprise customers may request a countersigned DPA by emailing privacy@cloudaxis.ai with your company legal name, address, and signatory contact. This web version is effective for all B2B use of CloudAxis unless a separate signed agreement states otherwise.
← Back to CloudAxis · Privacy Policy · Terms of Service · SLA · Subprocessors