The RChilli Data Processing Agreement (DPA), including details about Sub-Processors, is available through the RChilli Compliance and Certification documentation. Here's a summary of relevant details and where to access further information:
π RChilli Data Processing & Sub-Processor Overview
RChilli adheres to global standards in data protection, processing, and privacy. Key components include:
β Certifications That Support Secure Data Processing
RChilli holds several data protection certifications that directly relate to its DPA obligations:
-
ISO/IEC 27001:2022 β Valid until February 2027
-
SOC 2 Type 2 β Valid until January 2025
-
HIPAA β Valid until September 2024
-
PCI β Valid until September 2024
These certifications demonstrate that RChilli has the proper technical and organizational measures in place to handle and process data securely.
π Sub-Processor Information
While the Compliance and Certification documentation confirms secure data practices and regional hosting options, it does not directly list all sub-processors. However:
-
RChilli's Search & Match indexing feature does temporarily store documents for searchability in specific data centers (e.g., US, EU, SG), suggesting that regional infrastructure providers (likely cloud vendors like AWS or Azure) may act as sub-processors.
-
Data storage is limited to what is required for processing, and indexing can be controlled or purged by the customer using available API endpoints.
π Where to Find the DPA and Sub-Processor List
To obtain a copy of the full Data Processing Agreement (including a list of sub-processors), you should:
-
Email: support@rchilli.com
-
Request Access: Ask for the latest DPA and Sub-Processor documentation applicable to your region or data residency requirements.
-
Compliance Inquiry: If youβre an enterprise customer or evaluating compliance, you may also request third-party audit reports or certifications as part of vendor due diligence.
π Helpful Links
Comments
0 comments
Please sign in to leave a comment.