Data Privacy Addendum

Who is this addendum relevant for?#

If you have determined that you qualify as a data controller under the GDPR, and need a data processing addendum (DPA) in place with vendors that process personal data on your behalf, we want to help make things easy for you. This GDPR compliant DPA is attached and ready for your signature in accordance with the instructions below.

How to execute this DPA?#

  1. This DPA consists of two parts: the main body of the DPA, and Annexes 1, 2, and 3 (including Appendices 1 and 2).
  2. This DPA has been pre-signed on behalf of Scaleflex. The Standard Contractual Clauses in Annex 2 (including Appendix 1 thereto) and the Security Measures in Annex 3 have been pre-signed by Scaleflex as the data importer.
  3. To complete this DPA, you (Customer) must complete the information in the signature boxes and sign on Pages 9, 17, 19 and 23.
  4. Send the completed and signed DPA to Scaleflex by email, indicating the Customer’s Legal Name (as set out on the Billing section of the Cloudimage admin interface), to privacy@scaleflex.it.

Upon receipt of the validly completed DPA by Scaleflex at this email address, this DPA will become legally binding.

Download Scaleflex DPA (english)

For our German customers, we have created a German-version of the DPA. You can counter-sign it and send it back to privacy@scaleflex.it for the DPA to become effective:

Download Vertrag zur Auftragsverarbeitung (deutsch)