Latus Labs, Inc., Inc. · Last updated June 2026
Data Processing Agreement
This is a template DPA. Have it reviewed by an attorney before relying on it for GDPR or CCPA compliance. For enterprise customers, a countersigned PDF version is available on request — email
[email protected].
Data Processing Agreement
This Data Processing Agreement ("DPA") is entered into between Latus Labs, Inc., Inc. ("Processor") and the Customer organization ("Controller") that has accepted the Terms of Service.
1. Definitions
- Controller — the organization using Latus Labs, Inc. to manage its operations and data
- Processor — Latus Labs, Inc., Inc., which processes data on behalf of the Controller
- Personal Data — any information relating to an identified or identifiable natural person
- Data Subject — participants, customers, workers, or other individuals whose data is processed
2. Nature and Purpose of Processing
Latus Labs, Inc. processes Personal Data solely to provide the Service features selected by the Controller, including: event registration, scheduling, lodging bookings, GPS tracking, and directory management.
3. Controller Obligations
The Controller is responsible for: ensuring a lawful basis for processing, obtaining necessary consents from Data Subjects, and not submitting data that violates applicable law.
4. Processor Obligations
Latus Labs, Inc. shall:
- Process Personal Data only on documented instructions from the Controller
- Ensure personnel authorized to process the data are bound to confidentiality
- Implement appropriate technical and organizational security measures
- Assist the Controller in responding to Data Subject rights requests
- Delete or return all Personal Data upon termination of the Service relationship
- Make available information necessary to demonstrate compliance
5. Sub-Processors
Latus Labs, Inc. uses the following approved sub-processors:
- DigitalOcean LLC — cloud infrastructure (USA)
- Stripe, Inc. — payment processing (USA)
- Twilio Inc. — SMS delivery (USA)
- Google LLC — OAuth authentication (USA)
6. Data Transfers
Data is stored and processed in the United States. Cross-border transfers are covered by Standard Contractual Clauses where required.
7. Security Incidents
Latus Labs, Inc. will notify the Controller without undue delay upon becoming aware of a Personal Data breach that may affect Data Subjects.
8. Duration
This DPA remains in effect for the duration of the Service relationship and terminates automatically upon account deletion.
Contact
DPA inquiries or countersigned copies: [email protected]