For Pixla Hosting and Pixla Mail customers who need a DPA.
Effective July 3, 2026 · Version 1.0
This Data Processing Addendum ("DPA") forms part of, and is incorporated into, the Terms of Service between Pixla and the customer ("Customer," "you") for use of the online Services. It applies where and to the extent Pixla processes Personal Data on Customer's behalf as a processor in connection with Pixla Hosting and Pixla Mail. Where there is a conflict, this DPA controls over the Terms with respect to the processing of Customer Personal Data.
Pixla will process Customer Personal Data only on Customer's documented instructions, including as set out in the Terms and this DPA and as necessary to provide the Services, unless required by law (in which case Pixla will, where legally permitted, inform Customer). Pixla will inform Customer if, in its opinion, an instruction infringes Data Protection Laws.
Pixla ensures that personnel authorized to process Customer Personal Data are bound by appropriate confidentiality obligations.
Pixla will implement and maintain appropriate technical and organizational measures designed to protect Customer Personal Data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access, taking into account the state of the art, the costs of implementation, and the nature, scope, and purposes of processing. These measures include encryption in transit, access controls, and secured infrastructure, as further described in the Privacy Policy and Pixla's security practices.
Taking into account the nature of the processing, Pixla will provide reasonable assistance to help Customer respond to requests from data subjects to exercise their rights. If Pixla receives such a request directly, it will, where permitted, refer the data subject to Customer.
Pixla will notify Customer without undue delay after becoming aware of a Personal Data Breach affecting Customer Personal Data, and will provide information reasonably available to Pixla to help Customer meet its notification obligations.
Where Pixla transfers Customer Personal Data from the EEA, UK, or Switzerland to a country without an adequacy decision, the parties will rely on an appropriate transfer mechanism, such as the European Commission's Standard Contractual Clauses (and the UK Addendum where applicable), which are incorporated by reference. [ATTACH/REFERENCE THE APPLICABLE SCC MODULES AND ANNEXES.]
Upon termination or expiry of the Services, Pixla will delete or return Customer Personal Data in accordance with the Terms and the retention periods described in the Privacy Policy, unless retention is required by law.
Pixla will make available information reasonably necessary to demonstrate compliance with this DPA and will allow for and contribute to audits, including inspections, conducted by Customer or an auditor mandated by Customer, subject to reasonable confidentiality, scope, frequency, and notice conditions. [SPECIFY AUDIT PROCEDURE.]
Each party's liability under this DPA is subject to the limitations and exclusions of liability set out in the Terms.
This DPA takes effect when incorporated into the Terms and continues until Pixla has ceased all processing of Customer Personal Data.
Data protection: privacy@pixla.app
Pixla LLC · 5706 Neubert Springs Rd, Knoxville, TN 37920