Go back

Data Processing Agreement

How Astell's Data Processing Agreement works and how to request a signed copy.

Summary

Astell acts as a data processor for content you connect through integrations. A Data Processing Agreement (DPA) formalizes that relationship and is incorporated into our Terms of Service.

• Available to all customers on request
• Covers security, subprocessors, cross-border transfers, and data deletion
• Enterprise customers receive customized DPAs as part of their contract

To request a signed DPA, email legal@labtwofour.com with your organization name and the email address on your Astell account.

---

When you connect integrations to Astell, your organization remains the data controller. Astell processes that content on your behalf to deliver search, automation, and the rest of the service.

What the DPA covers

The DPA describes how Astell handles personal data you connect through the service. It includes:

• The scope and purpose of processing
• Security and confidentiality obligations
• Subprocessor requirements and how we notify you of changes
• Data subject request support
• Cross-border transfer mechanisms, including Standard Contractual Clauses for EU customers
• Deletion and return of data when your subscription ends

The DPA works alongside the Privacy Policy.

Who needs a DPA

Any customer whose connected data includes personal information should have a DPA in place. This applies to self-serve and enterprise accounts alike.

How to request a DPA

Email legal@labtwofour.com to request a signed DPA. Include your organization name and the email address associated with your Astell account. We will send the current version for your review and signature.

For subprocessors, data retention, and your rights as a controller, see Security and privacy commitments.