Privacy, Compliance & DPA
Protecting your users’ privacy is paramount. CustomerLabs provides improved tools to manage data privacy and compliance.
Our Features
Section titled “Our Features”- PII Hashing: Automatically hash specific fields (like email) before sharing with third-party platforms
- PII Masking: Automatically mask specific fields (like email) in the dashboard protecting user privacy
- Data Residency: Options for EU, US, ME, APAC data storage
- Audit Logs: Keeps a trail of incoming and outgoing data
- Role-Based Access: Limit team access to sensitive data and view who can access the data
Data Processing Agreement (DPA)
Section titled “Data Processing Agreement (DPA)”A Data Processing Agreement (DPA) is a contract between a data controller (you, the business) and a data processor (CustomerLabs) that governs how personal data is collected, stored, processed, and protected on your behalf.
Under privacy regulations such as the EU General Data Protection Regulation (GDPR), UK GDPR, and similar laws, a DPA is mandatory whenever a data processor handles personal data on behalf of a controller. It establishes:
- The purpose and scope of data processing
- The types of personal data and categories of data subjects involved
- The obligations and rights of both parties
- Technical and organisational security measures in place to protect data
- Sub-processor disclosures and data transfer mechanisms
CustomerLabs acts as a data processor when handling personal data you collect through your website or application. The DPA outlines CustomerLabs’ commitments to data protection and your rights as a data controller.