Effective Date: 18th January 2025
This Data Processing Agreement (“DPA”) is entered into by and between Ripplor, Inc. (“Ripplor,” “we,” “our,” or “us”) and you (“Customer,” “you,” or “your”), and forms part of the Terms of Service between you and Ripplor.
1.1 Data Controller: The entity that determines the purposes and means of processing personal data.
1.2 Data Processor: The entity that processes personal data on behalf of the Data Controller.
1.3 Personal Data: Any information relating to an identified or identifiable natural person.
1.4 Processing: Any operation performed on Personal Data, including collection, storage, use, transfer, or deletion.
2.1 Customer as Data Controller: You acknowledge that you are the Data Controller of the Personal Data processed through your use of Ripplor’s services.
2.2 Ripplor as Data Processor: Ripplor acts as the Data Processor and processes Personal Data solely for providing our services to you.
3.1 Purpose: To provide payment processing and business analytics services.
3.2 Nature of Processing: Collection, storage, and analysis of payment data and customer information.
3.3 Duration: For the term of your use of Ripplor’s services.
3.4 Categories of Data Subjects: Your customers and end-users.
3.5 Types of Personal Data: Names, contact details, payment information, transaction data.
4.1 Confidentiality: Ripplor ensures that all personnel authorized to process Personal Data are committed to confidentiality.
4.2 Security Measures: Ripplor implements appropriate technical and organizational measures to protect Personal Data against unauthorized access, loss, or destruction.
4.3 Data Subject Rights: Ripplor will assist you in responding to data subject requests, such as access, correction, or deletion of their Personal Data.
4.4 Subprocessors: Ripplor may engage subprocessors to assist in processing Personal Data. A list of subprocessors is available upon request.
Ripplor ensures that any transfers of Personal Data outside the European Economic Area (EEA) comply with applicable data protection laws.
Upon termination of the services, Ripplor will delete or return all Personal Data processed on your behalf, unless required otherwise by applicable law.
This DPA is governed by the same laws as outlined in Ripplor’s Terms of Service.