Parties
This Data Processing Agreement ("Agreement") is entered into between:
- Client (Controller)
- TechZiel e.U. (Processor)
Purpose
This Agreement governs the processing of personal data by TechZiel on behalf of the Client in accordance with:
- GDPR (Regulation (EU) 2016/679)
- Applicable data protection laws
Definitions
- Controller: Determines purpose and means of processing
- Processor: Processes data on behalf of the Controller
- Personal Data: Any information relating to an identified or identifiable person
Scope of Processing
TechZiel processes personal data only for:
- AI system development
- Data pipeline implementation
- Document processing and analytics
- System integration and automation
Processing is limited to documented instructions from the Client.
Categories of Data
Depending on the project, this may include:
- Identification data such as name, email, and ID references
- Financial data
- Transactional data
- Operational data
- Documents including PDF, Excel, and scanned files
Categories of Data Subjects
- Customers
- Employees
- Business partners
- End users
Obligations of TechZiel (Processor)
Process Only on Instructions
Process personal data strictly according to Client instructions.
Confidentiality
Ensure all personnel are bound by confidentiality obligations.
Security Measures
Implement appropriate technical and organizational measures, including:
- Encryption where applicable
- Access control
- Secure infrastructure such as Azure environments
- Network and application security
No Unauthorized Processing
Do not use data for TechZiel's own purposes.
Subprocessors
TechZiel may use subprocessors such as:
- Cloud providers such as Microsoft Azure
- Infrastructure and hosting providers
TechZiel ensures:
- Subprocessors are GDPR-compliant
- Data protection agreements are in place
International Transfers
Where data is transferred outside the EU/EEA:
- Standard Contractual Clauses (SCCs) are applied
- Equivalent safeguards are implemented
Data Subject Rights
TechZiel shall assist the Client in fulfilling obligations related to:
- Access requests
- Data correction
- Deletion
- Restriction of processing
Data Breach Notification
TechZiel shall:
- Notify the Client without undue delay
- Provide relevant details
- Assist in mitigation and reporting
Audit Rights
The Client may request reasonable audits or documentation demonstrating compliance.
Data Retention & Deletion
Upon termination:
- Data shall be deleted or returned
- Unless retention is required by law
Liability
Each party is responsible in accordance with GDPR and applicable laws.
Duration
This Agreement remains valid for the duration of data processing activities.
Contact
All requests related to this Agreement must be submitted via the official contact form on this website.
Questions or Requests?
Please use our secure contact form for any inquiries related to privacy, compliance, or data processing.