← All legal documents

Data Processing Addendum

Effective 15 July 2026

Controller–processor terms for customers subject to GDPR and similar laws.

1. Roles

For Customer Data containing personal data, you are the controller and ethTV Inc. (a company incorporated in the United States), together with its affiliate Sivakasi Rockets Private Limited (India) is the processor, processing only on your documented instructions (including via your configuration of the Service).

2. Our obligations

We will: process personal data only per your instructions and applicable law; ensure personnel are bound by confidentiality; implement appropriate technical and organizational security measures; assist you with data-subject requests, DPIAs and breach notification; and make available information to demonstrate compliance.

3. Subprocessors

You authorize our use of subprocessors listed in the Privacy Policy and provided on request. We impose data-protection terms on subprocessors no less protective than this DPA and remain responsible for their performance. We will give notice of material changes and you may object on reasonable data-protection grounds.

4. International transfers

Where transfers outside the EEA/UK occur, the EU Standard Contractual Clauses (and UK Addendum where relevant) are incorporated by reference and apply with the parties as data exporter (you) and data importer (us/affiliate).

5. Security, breach & deletion

We maintain safeguards including encryption in transit, tenant isolation and access controls, and will notify you without undue delay after becoming aware of a personal-data breach affecting your data. On termination we will delete or return Customer Data as you instruct, subject to legal retention.

6. Audits

We will make available compliance information and, on reasonable request and subject to confidentiality, support audits of our processing relevant to your data.

Not legal advice. This is a template for setup convenience and should be reviewed by qualified counsel before you rely on it.