Data Processing Agreement (DPA)

Pursuant to Art. 28 GDPR

This page provides access to our Data Processing Agreement (DPA) pursuant to Article 28 of the General Data Protection Regulation (GDPR). The DPA governs the processing of personal data by Purpit on behalf of our customers.

Sub-processors

We engage the following sub-processors, all of which are bound by appropriate data protection agreements:

Provider	Purpose	Location	Safeguard	DPA
Supabase	Hosting & Database	US	SCCs	PDF
OpenAI	AI Processing	US	SCCs	PDF
Google Cloud	Cloud Services	US / IE	DPF	PDF
Slack	Integration	US	SCCs	PDF
Resend	Email Delivery	US	SCCs	PDF

Request Custom DPA

For customer-specific requirements or if you need a customized DPA, please contact us directly.

Request DPA via Email

Standard Contractual Clauses (SCCs)

For international data transfers to countries outside the EEA without an adequacy decision, we use the EU Standard Contractual Clauses (Decision 2021/914). Copies of SCCs and DPF certifications are available on request.

Contact

For questions regarding data protection or our data processing agreements:

jonathan@purpit.ai
Schonensche Straße 13, 10439 Berlin, Germany

Last Updated: 12 December 2025

← Back to Privacy Policy ← Back to Home