Data Processing Agreement
For organizations requiring a formal DPA for GDPR compliance, we offer a standard Data Processing Agreement that covers our processing of personal data on your behalf.
What's Included
Standard Clauses
- - Subject matter and duration of processing
- - Nature and purpose of processing
- - Type of personal data processed
- - Categories of data subjects
- - Obligations and rights of the controller
Security Measures
- - Technical and organizational measures
- - Sub-processor management
- - Data breach notification procedures
- - Audit rights
- - Data deletion upon termination
International Data Transfers
Our DPA includes the EU Standard Contractual Clauses (SCCs) approved by the European Commission, and the UK International Data Transfer Agreement (IDTA) for transfers from the UK. This ensures compliant data transfers regardless of where your organization is located.
EU-US Data Privacy Framework: We are committed to complying with applicable data transfer mechanisms and will update our practices as frameworks evolve.
Request a DPA
Contact us to receive our standard DPA or discuss custom requirements for enterprise agreements.
Sub-processors
The DPA includes our current list of sub-processors. You can subscribe to be notified of any changes to our sub-processor list.
| Sub-processor | Purpose | Location |
|---|---|---|
| Vercel Inc. | Hosting & CDN | United States |
| Supabase Inc. | Database & Authentication | United States |
| Stripe Inc. | Payment Processing | United States |
| OpenAI LLC | AI Processing | United States |
| Fal.ai | Image Generation | United States |
Subscribe to sub-processor updates: privacy@wilburads.com
Questions?
For questions about our DPA or data processing practices, contact our legal team at legal@wilburads.com or our Data Protection Officer at dpo@wilburads.com.
See also our Privacy Policy and Security & Compliance pages.