Last updated: March 4, 2026
This Data Processing Agreement ("DPA") applies to the processing of personal data by ConfiDoq on behalf of the customer in connection with the Service.
The customer acts as the Data Controller. ConfiDoq acts as the Data Processor, processing data only on documented instructions from the Controller.
Personal data is processed solely for the purpose of providing SAP transport documentation services as described in the main agreement.
ConfiDoq implements appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption at rest and in transit.
ConfiDoq may engage subprocessors to assist in providing the Service. A current list is available on our Subprocessors page. We will notify you of any changes.
ConfiDoq will assist the Controller in responding to data subject requests regarding access, rectification, erasure, or portability of personal data.
ConfiDoq will notify the Controller without undue delay upon becoming aware of a personal data breach, providing all necessary information for the Controller to meet its obligations.
Upon termination of the Service, ConfiDoq will delete or return all personal data within 30 days, unless retention is required by applicable law.
For DPA-related inquiries, contact us at legal@confidoq.ai.