Data Processing Agreement

This Data Processing Agreement ("DPA") forms part of the Terms and Conditions between Synaptic and the Customer organization.

1. Scope and Purpose

This DPA applies to the processing of personal data by Synaptic on behalf of the Customer in the course of providing its HR intelligence services.

2. Roles and Responsibilities

The Customer is the Data Controller, and Synaptic is the Data Processor. Both parties agree to comply with their respective obligations under applicable data protection laws, including GDPR.

3. Technical and Organizational Measures

Synaptic has implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption, confidentiality, and regular security testing.

4. Sub-processors

Synaptic may engage sub-processors to assist in providing its services. A list of current sub-processors is available upon request.

5. Data Subject Rights

Synaptic will assist the Customer in responding to requests from data subjects to exercise their rights under data protection laws.

6. Audits and Compliance

Synaptic will make available to the Customer all information necessary to demonstrate compliance with this DPA and will allow for and contribute to audits conducted by the Customer or its appointed auditor.

7. Governing Law

This DPA is governed by the same laws as the Terms and Conditions.

8. Contact

For any DPA-related inquiries, please contact privacy@synaptic.ai.