• info@outzion.com
  • Amsterdam, Netherland
  • 24/7 Availability
  • Quick Respnse
  • Innovative Solutions

Contact Info

DPA

Our Data Processing Agreement

 

 

Effective Date: [20 December 2025]

This Data Processing Agreement (“DPA”) forms part of the agreement between Outzion (“Processor”) and the Client (“Controller”) for the provision of services.

This DPA ensures compliance with the General Data Protection Regulation (GDPR).

1. Scope & Roles

  1. The Client acts as the Data Controller
  2. Outzion acts as the Data Processor

We process personal data solely on behalf of and under instructions from the Client.

 

2. Nature & Purpose of Processing

Processing activities may include:

 

  1. Data hosting and SaaS operations
  2. Staff augmentation and recruitment processes
  3. IT system management and support
  4. Financial and operational data processing

 

3. Types of Personal Data

Depending on services, data may include:

 

  1. Names, email addresses, phone numbers
  2. Employee or candidate data
  3. Financial and billing data
  4. System usage and technical data

 

4. Processor Obligations

Outzion shall:

 

  1. Process data only on documented instructions
  2. Ensure confidentiality of personnel
  3. Implement appropriate technical and organizational security measures
  4. Assist the Controller in fulfilling GDPR obligations
  5. Notify the Controller of any data breach without undue delay

 

5. Sub-Processors

Outzion may engage sub-processors, including:

 

  1. Google Analytics
  2. RompSlomp
  3. Atlassian Jira
  4. The Jobbits

We ensure all sub-processors comply with GDPR standards and provide adequate data protection safeguards.

 

6. International Transfers

Where data is transferred outside the EEA, we implement safeguards such as Standard Contractual Clauses (SCCs).

 

7. Data Subject Rights

Outzion will assist the Client in responding to requests related to:

 

  1. Access
  2. Rectification
  3. Erasure
  4. Data portability
  5. Restriction or objection

 

8. Security Measures

We implement:

 

  1. Encryption and secure data storage
  2. Access control and authentication
  3. Monitoring and incident response systems

 

9. Data Breach Notification

In case of a data breach, Outzion will:

 

  1. Notify the Client promptly
  2. Provide relevant details
  3. Assist in mitigation and reporting

 

10. Data Retention & Deletion

Upon termination of services:

 

  1. Data will be returned or deleted as per Client instructions
  2. Legal retention obligations may apply

 

11. Audit Rights

The Client may request reasonable evidence of compliance, subject to confidentiality and operational constraints.

 

12. Governing Law

This DPA is governed by the laws of the Netherlands.

 

13. Contact

Email: info@outzion.com
Website: https://outzion.com/