TimeDodo LogoTimeDodoalpha

Data Processing Agreement (DPA)

This document legally governs the relationship between the "Data Controller" (The Company buying TimeDodo) and the "Data Processor" (TimeDodo).

Effective Date: March 5, 2026

1. Definitions

  • "Customer" refers to the entity prescribing the TimeDodo Service (Data Controller).
  • "TimeDodo" refers to us, acting as the Data Processor.
  • "Personal Data" means any information relating to an identified or identifiable natural person (your team members).

2. Scope of Processing

TimeDodo will process Personal Data strictly on behalf of the Customer and only to provide the agreed-upon Services (Time Tracking, Whiteboards, Voice Rooms, Screen Recording) as outlined in the Terms of Service. TimeDodo will not process Personal Data for its own independent purposes.

3. Types of Data Processed

Includes Employee Names, Emails, Time Logs, Task Descriptions, In-App Chat, Voice Data, and Screen Captured Data.

4. Security Measures

TimeDodo implements and maintains appropriate technical and organizational measures to protect Personal Data against accidental or unlawful destruction, loss, alteration, or unauthorized disclosure. This includes:

  • Data encryption at rest and in transit.
  • Role-Based strict access controls (RBAC) to production servers.

5. Sub-Processors

The Customer agrees that TimeDodo may engage sub-processors (e.g., AWS, Zeptomail) to fulfill the Service. TimeDodo will ensure all sub-processors are bound by data protection obligations equal to this DPA.

6. Assistance and Audits

TimeDodo will assist the Customer, insofar as possible, in fulfilling their obligation to respond to requests from individuals exercising their Data Subject Rights (e.g., Right to Erasure).

7. Deletion of Data

Upon termination of the Service, TimeDodo will securely delete or return all Personal Data to the Customer, except where required by applicable law to retain such data.

8. International Data Transfers

If TimeDodo transfers Personal Data outside the European Economic Area (EEA), we will ensure adequate safeguards are in place, such as Standard Contractual Clauses (SCCs).