This Data Processing Agreement (“Agreement”) is entered into between: - SVERESCO OÜ, a private limited company incorporated in Estonia (registry code: 10074005), located at Tallinna 3, Võhma, Viljandimaa, Estonia ("Controller"), and - **The Processor**, any third-party service provider processing data on behalf of the Controller. This Agreement supplements our Terms of Service and Privacy Policy and governs the processing of personal data by Article 28 of the GDPR
The Processor shall process personal data on behalf of the Controller strictly for the purpose of providing services defined in the primary service agreement.
This Agreement shall remain in effect for as long as the Processor processes personal data on behalf of the Controller
- Process data only on documented instructions from the Controller.
- Ensure confidentiality, security, and compliance with GDPR Article 32.
- Assist the Controller in responding to data subject requests.
- Enable audits and provide information necessary to demonstrate compliance.
The Processor shall not engage sub-processors without prior written authorization from the Controller.
Transfers of data outside the EEA must comply with GDPR Chapter V and be covered by Standard Contractual Clauses or an equivalent legal mechanism.
Upon termination, the Processor shall delete or return all personal data unless required by law to retain it.
SVERESCO OÜ
Tallinna 3, Võhma,
Viljandimaa, Estonia
Email: legal@sveresco.com