Start Free

Data Processing Agreement (DPA)

  • Updated May 8, 2026

This Data Processing Agreement (“DPA”) forms part of the agreement between Webueno LLC (“Webueno”, “Processor”) and the customer (“Customer”, “Controller”) using Webueno’s platform, hosting, support, maintenance, SEO, design, and related services.
This DPA governs the processing of personal data where Webueno processes personal data on behalf of the Customer.

Table Of Content

Purpose

The purpose of this DPA is to define the responsibilities and obligations of both parties regarding the processing of personal data in accordance with applicable data protection laws, including:

  • General Data Protection Regulation (GDPR)
  • UK GDPR
  • Applicable privacy and data protection regulations

Definitions

For the purposes of this Agreement:

Controller

The entity that determines the purposes and means of processing personal data.
In most cases, the Customer acts as the Controller.

Processor

The entity that processes personal data on behalf of the Controller.
Webueno acts as the Processor when providing services to Customers.

Personal Data

Any information relating to an identified or identifiable individual.
Examples include:

  • Names
  • Email addresses
  • Phone numbers
  • IP addresses
  • Customer records
  • Website user data

Processing

Any operation performed on personal data including:

  • Collection
  • Storage
  • Access
  • Transfer
  • Modification
  • Deletion

Scope of Processing

Webueno processes personal data only to provide services requested by the Customer.

Services may include:

  • Website hosting
  • Website maintenance
  • Development services
  • SEO services
  • Design services
  • Technical support
  • Platform functionality

Processing activities are limited to what is reasonably necessary to deliver services.

Categories of Data

Depending on the services used, Webueno may process:

Customer Account Data

  • Names
  • Email addresses
  • Company information
  • Contact details

Website Data

  • Form submissions
  • Website content
  • User-generated content
  • Customer databases

Technical Data

  • IP addresses
  • System logs
  • Security logs
  • Website analytics data

Categories of Data Subjects

Data subjects may include:

  • Customers
  • Website visitors
  • Employees
  • Contractors
  • Leads
  • Subscribers
  • End users of customer websites

Processing Instructions

Webueno will process personal data only:

  • According to Customer instructions
  • To deliver contracted services
  • To comply with legal obligations

Webueno will not use customer data for unrelated purposes.

Confidentiality

All Webueno personnel with access to personal data are subject to confidentiality obligations.
Access is limited to authorized personnel who require access to perform their duties.

Security Measures

Webueno maintains appropriate technical and organizational measures designed to protect personal data.

Security measures may include:

  • Access controls
  • Authentication systems
  • Infrastructure monitoring
  • Firewall protection
  • Secure backups
  • Encryption where appropriate
  • Security patching

Additional details are available within the Security Policy.

Subprocessors

Webueno may use trusted third-party service providers (“Subprocessors”) to deliver services.

Examples may include:

  • Cloud infrastructure providers
  • Payment processors
  • Backup providers
  • Monitoring providers
  • Email service providers

Webueno remains responsible for ensuring subprocessors provide appropriate safeguards.
A current list of subprocessors may be published separately.

International Transfers

Customer data may be processed in countries outside the Customer’s jurisdiction.

Where required, Webueno will implement appropriate safeguards to support lawful international data transfers.

These safeguards may include:

  • Standard Contractual Clauses (SCCs)
  • Contractual protections
  • Provider compliance commitments

Data Subject Rights

Where applicable, Webueno will assist Customers in responding to requests related to:

  • Access
  • Correction
  • Deletion
  • Restriction
  • Portability
  • Objection to processing

Customers remain responsible for evaluating and responding to such requests.

Security Incidents

If Webueno becomes aware of a confirmed personal data breach affecting Customer data, Webueno will:

  • Investigate the incident
  • Take reasonable containment measures
  • Notify affected Customers where required by law
  • Provide available information regarding the incident

Notification timing may depend on the circumstances and legal requirements.

Assistance & Cooperation

Where reasonably possible, Webueno will assist Customers with:

  • GDPR compliance obligations
  • Security-related inquiries
  • Data subject requests
  • Regulatory requirements

Assistance may be subject to reasonable administrative fees where substantial effort is required.

Data Retention

Webueno retains personal data only for as long as necessary to:

  • Deliver services
  • Meet legal obligations
  • Resolve disputes
  • Maintain security

Retention periods may vary depending on service type and applicable legal requirements.

Data Deletion

Upon termination of services, Customers may request deletion of personal data stored by Webueno.

Webueno may retain certain information where required for:

  • Legal compliance
  • Accounting records
  • Fraud prevention
  • Security purposes

Deletion requests may be subject to verification procedures.

Audits

Upon reasonable request, Webueno may provide information regarding security and data protection practices sufficient to demonstrate compliance with this DPA.
To protect the security and confidentiality of all customers, direct infrastructure access or unrestricted audits may not be permitted.

Liability

Upon reasonable request, Webueno may provide information regarding security and data protection practices sufficient to demonstrate compliance with this DPA.
To protect the security and confidentiality of all customers, direct infrastructure access or unrestricted audits may not be permitted.

Governing Terms

This DPA supplements the following Webueno documents:

  • Terms of Service
  • Privacy Policy
  • Security Policy
  • Hosting Terms
  • GDPR Policy

In the event of a conflict regarding personal data processing, this DPA shall prevail.

Changes to This DPA

Webueno may update this DPA as services, technologies, or legal requirements evolve.
Updated versions will be published within the Legal Center.
Continued use of Webueno services constitutes acceptance of the updated DPA.

Contact

Questions regarding this Data Processing Agreement may be submitted through the Webueno platform.

For legal inquiries:

Webueno LLC
16192 Coastal Highway
Lewes, Delaware 19958
United States

Can’t find what you’re looking for?

If you have any questions about our policies or need clarification, our team is here to help.

Contact Support
Webueno logo
Login
Register
Back to Main Menu
Back to Main Menu