Data Processing Commitment

Where Applique processes personal data on behalf of customers, we act as a data processor and process personal data only in accordance with customer instructions and applicable data protection laws.

Applique agrees to:

• Process personal data only for agreed purposes
• Maintain appropriate technical and organizational security measures
• Restrict access to authorized personnel only
• Ensure confidentiality obligations for personnel handling customer data
• Assist customers in meeting applicable data protection obligations
• Notify customers of relevant data breaches as required by law
• Delete or return customer data upon termination of services, where applicable
• Use trusted subprocessors only where appropriate safeguards are in place

A formal Data Processing Agreement (DPA) may be made available to enterprise customers upon request.

We take reasonable measures to protect customer data against unauthorized access, disclosure, loss, alteration, or misuse.

Questions regarding data processing and data protection may be directed to Applique through the contact information available on applique.se.