Data Processing Agreement (DPA)

1. Roles

• Customer = Controller
• Kallglot = Processor

2. Purpose

Kallglot processes personal data only to provide translation, telephony, transcription, and related features.

3. Instructions

We process data only according to documented instructions from the Controller.

4. Confidentiality

All personnel with access to personal data are bound by confidentiality obligations.

5. Technical and Organisational Measures

We maintain appropriate security measures, including:

• Encryption
• Access control
• Monitoring
• Incident response
• EU-hosted infrastructure (where applicable)

6. Sub-processors

You authorize the use of sub-processors listed on the Sub-processor List. We will notify you before adding or replacing sub-processors.

7. Assistance

We assist the Controller in:

• Responding to data subject requests
• Managing data breaches
• Conducting DPIAs where required

8. Deletion or Return of Data

After service termination, we will delete or return data unless EU law requires retention.

9. Audits

Upon request, we will provide documentation necessary to demonstrate compliance. Audits may be performed with reasonable notice.

10. International Transfers

Where data is transferred outside the EU, we use:

• Standard Contractual Clauses (SCCs)
• DPAs
• Additional safeguards

11. Telecom Compliance Documents

When you request phone numbers in regulated jurisdictions, you authorize us to process and transmit necessary company documents to telecom providers.

12. Contact

Email: legal@kallglot.com