Data Processing Agreement
Included on every paid plan (Pro, Business). Free plan customers can request a DPA on request.
Our DPA follows the standard EDPB controller-to-processor model and includes the EU SCCs as Annex II for any sub-processor outside the EU/EEA. The full DPA covers:
- Roles and responsibilities (controller / processor)
- Subject matter, duration, nature, and purpose of processing
- Categories of personal data and data subjects
- Technical and organisational measures (TOMs)
- Sub-processor list with right to object
- International transfer mechanism (EU SCCs where applicable)
- Audit rights and breach-notification timeline (72 hours)
Sentinode is the processor; you remain the controller of your customers' personal data.
Get the signed DPA
Email support@sentinode.app with your company name. We'll send a counter-signed PDF within one business day. The DPA terms are accepted on signup for paid plans; the PDF is for your records.