Legal

Data Processing Agreement

Last updated: 1 June 2026

This summary DPA describes how IgniteOS processes personal data on behalf of customers ("controllers") who use the platform. A full signable DPA is available on request.

This is a plain-English template for the IgniteOS website. Before launch, have it reviewed by a legal professional and tailored to how you actually operate.

Roles

When you use IgniteOS to manage your contacts and communications, you are the data controller and IgniteOS is the data processor acting on your documented instructions.

Scope of processing

Subject matter: providing the IgniteOS platform.
Data subjects: your contacts, leads, customers and team.
Data types: contact details, communications, booking and payment metadata you store.
Duration: for as long as your account is active, plus any legally required retention.

Our commitments

Process personal data only on your instructions and to provide the service.
Keep data confidential and ensure staff are bound by confidentiality.
Apply appropriate technical and organisational security measures.
Assist with data-subject requests and breach notification.
Support deletion or return of data on termination.

Sub-processors

We use vetted sub-processors (for example cloud hosting, messaging and payment providers) under contracts that require equivalent protection. A current list is available on request.

International transfers

Where data is transferred across borders, we rely on recognised safeguards, including the EU-U.S. Data Privacy Framework and standard contractual clauses where applicable.

Security & certifications

The platform infrastructure is independently certified (SOC 2 Type II and ISO/IEC 27001:2022). See our security page.

Questions?

Email [email protected] or visit our contact page.