Data Processing Agreement
Effective date: May 8, 2026
This Data Processing Agreement summary describes the main processing commitments that apply when CORLIN processes personal data on behalf of a customer as part of the platform or CORLIN+ services.
1. Roles and instructions
For customer-provided prospect, user, or campaign data, the customer generally acts as controller and CORLIN acts as processor, processing data only according to documented customer instructions and the service agreement.
Customers are responsible for the lawfulness, accuracy, transparency, and appropriateness of the personal data they provide or instruct CORLIN to process.
2. Security and subprocessors
CORLIN applies administrative, technical, and organizational safeguards appropriate to the nature of the processing. Subprocessors may be used for hosting, communication, analytics, security, payment, and operational support.
Where legally required, CORLIN expects subprocessors to be bound by written terms that protect personal data and restrict processing to authorized purposes.
3. Assistance, deletion, and transfers
CORLIN will provide reasonable assistance with data subject requests, security obligations, and compliance inquiries where required by applicable law and the relevant customer agreement.
At the end of services, data may be returned, deleted, or retained only where necessary for legal, security, accounting, or dispute-resolution purposes. International transfers should rely on appropriate safeguards where required.