WeShield← Home
Draft templates pending review by legal counsel — not legal advice. The sub-processor list is current and accurate.

Data Processing Agreement

Terms governing WeShield’s processing of personal information on your organization’s behalf. Draft template pending review by counsel.

Roles

Your organization is the data controller; WeShield is the data processor. WeShield processes personal information only on your documented instructions and as needed to provide the service.

Sub-processors

WeShield engages the sub-processors listed on the Sub-processors page. Each is bound to confidentiality and security obligations. We will give notice of new sub-processors so you can object.

Security and breach notification

WeShield maintains technical and organizational measures including tenant-level row security, an audited capability gateway, a tamper-evident audit log, and outbound PII redaction. We will notify you without undue delay of any breach affecting your data.

Return and deletion

On termination, or on request, WeShield returns (via export) or permanently deletes tenant personal information, subject to any legal retention obligation.