Legal
Data Processing Addendum
Our DPA covers our role as data processor under GDPR (EU and UK), Swiss FADP, and the California Consumer Privacy Act.
What's included
- Standard Contractual Clauses (EU 2021/914 and the UK IDTA)
- A list of current sub-processors and a 30-day advance-notice commitment for new ones
- Our technical and organizational measures (encryption, access controls, incident response)
- Audit and data subject request procedures
How to get it signed
Two paths, depending on your plan:
- Team and Enterprise: Email legal@spendslicer.com with your entity details. We'll send a pre-signed PDF within one business day and counter-sign within two.
- Starter: Our DPA is available for review on request. Signed execution is included with Team and up.
Sub-processors
Always current at /sub-processors/. Subscribe to updates by emailing privacy@spendslicer.com.