This DPA governs how Fintelli.Pro processes personal data on behalf of clients as a Data Processor under GDPR (Regulation (EU) 2016/679) and applies where clients are established in the EEA or the UK.
Fintelli.Pro may process personal data in the course of providing consulting, data engineering, dashboard development, or related services. The specific categories of data processed, the duration, and the purpose will be defined in the applicable Statement of Work or Service Agreement.
Fintelli.Pro undertakes to:
Fintelli.Pro implements industry-standard technical measures including: encrypted communications (TLS), access controls, password management, and secure deletion practices. Measures are reviewed regularly and updated as necessary.
The following sub-processors may be engaged in delivery of services: Microsoft 365 (email and document storage), Netlify (hosting), Google (analytics — anonymised data only). A full list is available on request.
Where personal data is transferred outside the EEA, such transfers are covered by Standard Contractual Clauses (SCCs) or an adequacy decision, as applicable.
This DPA is in force for the duration of the applicable engagement and the data retention period specified therein.
This DPA may be incorporated by reference in the engagement agreement. A standalone signed DPA is available on request — email hello@fintelli.pro.
Questions about this policy?
hello@fintelli.pro — we respond within one business day.