Data Processing Agreement

Last updated: 2026

This DPA governs processing of personal data by The Connect (processor) on behalf of institutional customers (controllers).

Scope: account, usage, and content data processed to deliver the subscription service.

Security: technical and organisational measures including encryption in transit and at rest, access control, and least-privilege service operations.

Sub-processors: hosting and infrastructure providers listed on our Sub-processors page; customers are notified of material changes.

International transfers: governed by appropriate safeguards. Data-subject requests are supported.

A countersigned DPA is available to institutional customers on request.

← Back to home