At Toolyt, we care deeply about your privacy and the security of your data. This Data Processing Agreement (“DPA”) explains how we handle, process, and protect the personal data you entrust to us when using our sales productivity platform. It forms part of our Terms of Service and ensures compliance with data protection laws, including the General Data Protection Regulation (GDPR).
1. Roles and Responsibilities
You (the Customer): The Data Controller – you decide what data is collected and how it should be used.
Toolyt: The Data Processor – we process personal data strictly on your instructions, only to deliver and improve our services.
2. Data We Process
When you use Toolyt, we may process:
Basic details: name, email address, phone number
Job details: role, organization information
Login and authentication data
Usage and activity logs within the app
Any other information you or your team choose to provide
We do not intentionally collect sensitive personal data unless you choose to provide it.
3. Purpose of Processing
We use your data solely to:
Provide and maintain our services
Improve features and performance
Offer secure and reliable access to our platform
We never sell your data or use it for unrelated marketing purposes.
4. Sub-processors
We work with carefully selected third-party providers for hosting, analytics, and support.
All sub-processors are bound by strict data protection terms.
A current list of sub-processors is available on request.
5. Security Commitments
We apply strong technical and organizational measures to protect your data, including:
Encryption of data in transit and at rest
Multi-factor authentication and access controls
Continuous monitoring and security testing
Secure backups and disaster recovery planning
Regular employee training and confidentiality obligations
6. Your Rights & Our Assistance
We will support you in meeting your obligations under GDPR, including:
Access, correction, or deletion of personal data
Data portability requests
Responding to objections or restrictions on processing
Assistance with regulatory inquiries or audits
7. International Data Transfers
If data is transferred outside your jurisdiction (e.g., outside india ), we ensure appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place.
8. Data Retention & Deletion
We retain data only as long as necessary for our services.
On request or service termination, we will securely delete or return your data unless required by law to retain it.
9. Security Incidents
In the unlikely event of a security incident:
We will notify you promptly.
We will provide available details to help you assess the impact.
We will work with you to address and mitigate the issue.
10. Transparency & Audit
You may request details about how we process your data. We can provide documentation, certifications, or reports to demonstrate compliance.
11. Governing Law
This DPA follows the same governing law as our Terms of Service, unless required otherwise by applicable data protection laws
Contact Us
For questions about this DPA or data protection at Toolyt:
privacy@toolyt.com
