Data Processing Agreement (DPA)

Effective Date: 1. July 2025

This Data Processing Agreement (“DPA”) is entered into between Wismatics EOOD (“Processor”) and you, the Client (“Controller”), to define data processing under the EU General Data Protection Regulation (GDPR).

1. Purpose

Wismatics will process personal data strictly for providing its SaaS, consultancy, and related services to the Client.

2. Processing Details

Data subjects: employees, contractors, customers of the Client
Categories of data: name, contact details, job role, user credentials, system activity
Purpose: provision and operation of the Wismatics platform

3. Processor Obligations

Process data only under the Client’s instructions
Implement technical and organizational security measures
Support the Client with data subject requests
Notify the Client without undue delay in case of a personal data breach

4. Subprocessors

Wismatics may use trusted subprocessors (e.g., hosting providers). A list is available upon request, and the Client has the right to object to changes.

5. Data Transfers

Data is stored in secure hosting centers within the EU, unless otherwise agreed.

6. Audit Rights

The Client has the right to request documentation and evidence of Wismatics’s compliance with this DPA.

7. Termination

Upon termination, Wismatics will return or securely delete personal data, unless legal retention requirements apply.

8. Governing Law

This DPA shall be governed by the laws of Bulgaria.

1. July 2025

eBusiness Management Systems built for the Tech-Industry.