DATA PROCESSING AGREEMENT (DPA)

1. Purpose

This Data Processing Agreement (“DPA”) governs the processing of personal data by KwiqSync (“Processor”) on behalf of the customer (“Controller”) in connection with the use of the Services.

2. Scope of Processing

The Processor shall process personal data solely for the purpose of providing, maintaining, supporting, and improving the Services, and as otherwise instructed by the Controller in accordance with applicable law.

3. Roles and Responsibilities

The Customer acts as the Data Controller and determines the purposes and means of processing.
KwiqSync acts as the Data Processor and processes data only on documented instructions from the Controller.

4. Categories of Data

Personal data may include names, contact details, user identifiers, usage data, and business-related information uploaded by the Customer.

5. Security Measures

KwiqSync shall implement appropriate technical and organizational measures to protect personal data, including access controls, encryption in transit, system monitoring, and regular security updates.

6. Confidentiality

All personnel involved in data processing are bound by confidentiality obligations and trained in data protection practices.

7. Sub-Processors

KwiqSync may engage sub-processors for infrastructure or service delivery. Such sub-processors shall be bound by equivalent data protection obligations.

8. Data Subject Rights

KwiqSync shall assist the Customer in responding to data subject requests where legally required, subject to verification and reasonable limitations.

9. Data Breach Notification

In the event of a confirmed personal data breach, KwiqSync shall notify the Customer without undue delay and provide reasonable assistance.

10. Data Retention and Deletion

Upon termination of Services, personal data shall be retained or deleted in accordance with internal policies and legal obligations.

11. Compliance

This DPA is intended to comply with applicable data protection laws including the Indian DPDP Act and, where applicable, GDPR.

SERVICE LEVEL AGREEMENT (SLA)

1. Service Availability

KwiqSync aims to provide commercially reasonable availability of the Services, excluding scheduled maintenance and force majeure events.

2. Maintenance

Scheduled maintenance may occur periodically and may result in temporary service interruption. Reasonable efforts will be made to provide advance notice.

3. Support Services

Support is provided through designated channels during published business hours, subject to the Customer’s subscription plan.

4. Incident Classification

Issues are classified based on severity, including critical service outages, partial disruptions, and non-critical issues.

5. Response Objectives

KwiqSync will use reasonable efforts to respond to reported issues within timeframes aligned with severity levels, without guaranteeing resolution times.

6. Service Credits

Service credits, if applicable, may be provided under separately agreed enterprise contracts. No automatic compensation is provided under standard subscriptions.

7. Exclusions

The SLA does not apply to issues caused by customer misuse, third-party services, internet failures, or force majeure events.

8. Modifications

KwiqSync reserves the right to modify the SLA with reasonable notice.

INFORMATION SECURITY POLICY

1. Objective

This policy defines KwiqSync’s approach to safeguarding information assets and ensuring confidentiality, integrity, and availability of data.

2. Security Governance

Security responsibilities are defined internally and reviewed periodically to address evolving risks.

3. Access Control

Access to systems and data is granted on a need-to-know basis using role-based permissions.

4. Data Protection

Sensitive data is protected through encryption, access restrictions, and secure handling procedures.

5. Infrastructure Security

KwiqSync uses secure cloud infrastructure, monitored systems, and vulnerability management practices.

6. Incident Management

Security incidents are identified, assessed, and addressed promptly using internal response procedures.

7. Employee Responsibilities

Employees and contractors are required to follow security policies and confidentiality obligations.

8. Continuous Improvement

Security controls are reviewed and improved periodically based on risk assessments and industry practices.

ACCEPTABLE USE POLICY

1. Permitted Use

Users may use the Services solely for lawful business purposes in accordance with these policies and applicable laws.

2. Prohibited Activities

Users must not attempt unauthorized access, disrupt system integrity, upload malicious code, violate intellectual property rights, or misuse the Services.

3. User Content

Users are responsible for the legality, accuracy, and appropriateness of content uploaded to the Services.

4. Monitoring and Enforcement

KwiqSync reserves the right to monitor usage for compliance and suspend or terminate access for violations.

5. Consequences of Violation

Violations may result in account suspension, termination, or legal action where applicable.

COOKIE POLICY

1. Introduction

This Cookie Policy explains how KwiqSync uses cookies and similar technologies on its websites and applications.

2. Types of Cookies

Cookies may include essential cookies for functionality, analytics cookies for performance monitoring, and preference cookies for user experience.

3. Purpose of Cookies

Cookies are used to operate the website, analyze usage patterns, improve performance, and enhance user experience.

4. Third-Party Cookies

Some cookies may be set by third-party services such as analytics or payment providers. These are governed by their respective policies.

5. Cookie Management

Users may control or disable cookies through browser settings. Disabling cookies may affect functionality.

6. Policy Updates

This Cookie Policy may be updated periodically. Continued use of the website constitutes acceptance of changes.