Witdrim Legal
Data Processing Addendum
Baseline data processing terms for qualifying business customers, merchants, partners, and integrations.
Last updated: May 8, 2026Applies to Witdrim ecosystem layer
This page is a public summary. A contract-ready DPA should be reviewed by counsel before signature.
1. Availability
Witdrim may provide a Data Processing Addendum for qualifying business customers, merchants, partners, or integrations where Witdrim processes personal data on their behalf as a processor.
2. Roles
For the core Witdrim Account, Auth, Web, API, and WDRIM Rewards layer, Witdrim generally acts as controller. For some partner integrations or business customer features, Witdrim may act as processor or subprocessor depending on the contract and data flow.
3. Baseline Commitments
- Process personal data only for documented instructions and agreed purposes where acting as processor.
- Use appropriate technical and organizational measures.
- Require confidentiality from personnel and subprocessors.
- Maintain a subprocessor register and provide notice where contractually required.
- Assist with data subject requests, security incidents, audits, and deletion or return where required.
- Use appropriate transfer mechanisms for restricted international transfers.
4. Request A DPA
Business customers and partners can request a DPA at legal@witdrim.com.
Related documents
PrivacyHow Witdrim processes account, authentication, rewards, support, security, and ecosystem service data.SubprocessorsThe provider categories Witdrim uses to operate account, security, rewards, support, and ecosystem services.SecurityHow Witdrim protects ecosystem accounts, sessions, rewards, admin access, and connected service flows.