RGL8R Data Processing Addendum (v1)

Effective date: 2026-03-02

Roles

• Customer is the controller/business.
• RGL8R is the processor/service provider.

Processing scope

RGL8R processes customer-provided data solely to deliver contracted services, support, and security operations.

Security measures

• Access controls with tenant isolation
• Audit logging for privileged and workflow actions
• Provider-level encryption and secure transport

Subprocessors

RGL8R may use subprocessors for hosting, authentication, and payment processing. Subprocessor changes follow contract notice terms.

Data subject requests

RGL8R assists customer with lawful data subject requests within contractual and legal boundaries.

Breach notice

RGL8R will notify customer of confirmed security incidents affecting customer data without undue delay.

Deletion and return

On termination or request, RGL8R supports data export/deletion per retention policies and customer agreement.