Data Processing Agreement (DPA)

This Data Processing Agreement applies to business and enterprise users (“Customers”) who use Cevon LLC services and act as a data controller under applicable data protection laws.

1. Roles of the Parties

• Customer is the Data Controller
• Cevon LLC is the Data Processor

Cevon LLC processes personal data solely to provide and operate the Service as instructed by the Customer.

2. Types of Data Processed

• Account and user identifiers
• Social media content metadata
• Usage and analytics data

3. Processing Obligations

Cevon LLC agrees to:

• Process data only on documented instructions
• Maintain appropriate technical and organizational safeguards
• Ensure personnel are bound by confidentiality

4. Subprocessors

Cevon LLC may engage trusted subprocessors (e.g., cloud infrastructure, payment processors such as Stripe). A current list is available upon request.

5. Data Subject Rights

Cevon LLC will assist Customers in responding to data subject requests where required by law.

6. Data Retention & Deletion

Upon termination of services, Customer data will be deleted or returned within a reasonable timeframe unless legally required to retain it.

7. Compliance

This DPA is designed to support compliance with GDPR, CCPA, and similar global data protection frameworks.