Data Processing Addendum

Last updated June 2, 2026

This Data Processing Addendum ("DPA") applies where Cloackit processes personal data on your behalf (for example, visitor IPs, headers, and session recordings). For this processing you are the controller and we are the processor.

Scope & roles

We process visitor personal data only to provide the filtering, hosting, analytics, and recording features you configure, and on your documented instructions (your dashboard settings).

Our commitments

Process personal data only as needed to provide the Service.
Apply appropriate technical and organizational security measures.
Ensure people authorized to process the data are bound by confidentiality.
Assist you, where reasonable, with data-subject requests and security obligations.
Delete or return personal data on termination, subject to legal retention.

Subprocessors

You authorize us to engage the subprocessors listed on our Subprocessors page. We remain responsible for their compliance with this DPA.

International transfers

Where data is transferred across borders, we rely on appropriate safeguards as required by applicable law.

Your responsibilities

You are responsible for having a lawful basis to collect and process your visitors' data, for providing any required notices, and for obtaining any required consent.

Contact

Data-protection contact: privacy@cloackit.com.

More policies

Terms of Service Acceptable Use Policy Privacy Policy Cookie Policy Refund & Cancellation Policy Disclaimer Copyright / DMCA Policy Service Level Commitment Subprocessors AML & KYC Policy Security & Responsible Disclosure Anti-Spam & Communications Policy Fair Use & Rate Limits Accessibility Statement Children's Privacy