DATA PROCESSING AGREEMENT

Effective date: 2025-06-13

This Data Processing Agreement ("DPA") is entered into by and between TOPCALLS SRL ("TopCalls", "we", "us", or "our") and the user of TopCalls services ("you").

At TopCalls, we understand the importance of safeguarding your data and maintaining transparency in our data-processing practices.

TopCalls is HIPAA-compliant and aligned with all major regulatory frameworks, ensuring your data is processed securely and responsibly.

1. Purpose

Establishes the legal framework for processing personal data within TopCalls services, ensuring compliance with relevant regulations.

2. Scope

This DPA applies to all personal data processed by TopCalls on behalf of our users, across all services and platforms.

3. Data-Processing Principles

We follow strict principles that prioritize confidentiality, integrity, and availability of personal data.

4. Security Measures

Robust protocols—including encryption, granular access controls, and regular audits—safeguard data confidentiality and integrity.

5. Data-Subject Rights

Describes rights such as access, rectification, and deletion, plus the mechanisms we provide for prompt fulfillment.

6. Sub-processors

Any engaged sub-processors must meet the same stringent standards laid out in this DPA.

7. Duration of Processing

Specifies processing duration and clear conditions for deletion or anonymization once the purpose is fulfilled.

8. International Data Transfers

TopCalls complies with GDPR and uses recognized transfer mechanisms for cross-border data flows.

9. Regulatory Compliance

We comply with HIPAA (healthcare), GDPR (EU), CCPA (California), and other major frameworks to ensure responsible data handling across industries.

10. Commitment to Data Protection

This DPA is an integral part of TopCalls' dedication to privacy and security. By leveraging cutting-edge AI technology and adhering to strict compliance standards, we ensure your data is processed and protected with the utmost care.