Data Processing Agreement

This page summarises the controller-processor relationship. The full executable DPA is sent to your tenant's billing contact at signup; an executable copy is also available at legal@transcenda.io.

Roles

• Controller: your tenant (the customer who licensed Transcenda Voice).
• Processor: Transcenda DMCC.
• Sub-processors: Apple (APNs), Google (FCM), Twilio (PSTN), Cloudflare (CDN/DDoS), Sentry (crash reports), Hostinger / Contabo (hosting).

Personal data processed

• Identity: work email, display name, role, Transcenda ID user-id.
• Telephony: extension, SIP credentials, call detail records, voicemail audio, optional call recordings.
• Operational: device push tokens, session IPs, user-agents, crash data.

Security

• TLS 1.2+ for all transport. SRTP for voice media.
• Database at-rest encryption (AES-256) on managed Postgres.
• Field-level encryption (AES-GCM) for SIP passwords and Twilio sub-account secrets.
• Role-based access control internally; audit log retained 13 months.
• Annual penetration test by an independent firm.

International transfers

Standard Contractual Clauses (EU 2021/914) for transfers outside the EU/EEA. UAE PDPL Schedule 1 transfer mechanism for outbound transfers from the UAE.

Sub-processor changes

We give the tenant 14 days' notice (by email to the billing contact) before adding or replacing any sub-processor. Tenants may object during the notice window.

Audit

Tenants may audit Transcenda's data processing once per 12 months at their cost, with 30 days' notice. Reasonable confidentiality applies.

Sign and download

Email legal@transcenda.io with your tenant slug — we'll send the executable PDF for countersignature.