Data Processing Agreement (DPA)

Last Updated: March 1, 2026

1. Parties

This DPA forms part of the Terms between:

  • Syncworx Ltd (Processor)
  • Customer (Controller)

2. Subject Matter

Processing of booking-related personal data via AppointMe.

3. Nature of Processing

Storage, organization, transmission, deletion.

Duration: subscription term.

4. Categories of Data Subjects

  • End customers booking appointments
  • Customer employees

5. Categories of Data

  • Names
  • Phone numbers
  • Booking details
  • Notes

No special category data intended.

6. Subprocessors

Syncworx uses:

  • AWS (hosting infrastructure)

Customers independently configure:

  • Twilio
  • ElevenLabs

These are not subprocessors of Syncworx when used under customer accounts.

7. Security Measures

  • Encryption in transit and at rest
  • Access controls
  • Secure cloud hosting
  • Patch management
  • Incident response plan

8. Breach Notification

Syncworx shall notify Customer without undue delay and within 72 hours of becoming aware of a breach affecting customer data.

9. Assistance

Syncworx will assist with:

  • Data subject requests
  • DPIAs
  • Regulatory inquiries

10. Deletion

Upon termination, data is deleted or returned upon request, subject to backup lifecycle retention.

Back to HomePrivacy PolicyTerms of Service