Home / Data Processing Addendum

Data Processing Addendum

This DPA describes how CloudLiberty processes personal data on behalf of customers under applicable data protection laws.

Last updated: June 1, 2026

On this page

  1. Roles
  2. Scope of processing
  3. Subprocessors
  4. Security measures
  5. International transfers
  6. Data subject requests
  7. Breach notification
  8. Return and deletion

1. Roles

For customer content, the customer is the data controller and CloudLiberty is the data processor. We process personal data only on documented instructions from the customer.

2. Scope of processing

We process personal data as needed to provide the service — including hosting, syncing, and supporting your workspace — for the duration of the agreement.

3. Subprocessors

We use vetted subprocessors (such as cloud hosting providers) under contracts that impose data-protection obligations consistent with this DPA. A current list is available on request, and we provide notice of changes.

4. Security measures

We maintain technical and organizational measures appropriate to the risk, including encryption, access controls, and monitoring, as described on our Security page.

5. International transfers

Where personal data is transferred across borders, we rely on appropriate safeguards such as standard contractual clauses.

6. Data subject requests

We assist customers in responding to requests from individuals to exercise their rights, taking into account the nature of the processing.

7. Breach notification

We notify affected customers without undue delay after becoming aware of a personal data breach affecting their data, and provide information to help them meet their obligations.

8. Return and deletion

On termination, we return or delete personal data in accordance with the agreement, except where retention is required by law.

Questions about this document? Contact our team at legal@cloudliberty.cc.

This page is provided for general information and does not constitute legal advice.