This Data Processing Agreement (“DPA”) forms part of the Terms of Service and governs the processing of Customer Data.
TuringX processes Customer Data solely on behalf of the Customer and in accordance with documented instructions. The scope of processing includes storage, transformation, querying, and visualization of data within the Nexus platform.
The Customer is responsible for ensuring that all data processed through the Service has a lawful basis and complies with applicable data protection laws. This includes obtaining all necessary consents and ensuring that sensitive personal data is handled in accordance with applicable regulations.
TuringX implements appropriate technical and organizational measures to protect Customer Data against unauthorized access, disclosure, or loss. These measures include encryption in transit, access controls, and infrastructure safeguards.
In the event of a data breach, TuringX will notify the Customer without undue delay and provide relevant information to the extent available.
TuringX may engage subprocessors to provide components of the Service, including infrastructure providers, payment processors, and analytics services. The Customer consents to the use of such subprocessors.
Upon termination of the Service, Customer Data will be deleted in accordance with retention policies unless otherwise required by law.