AppMarketScraper

Data Processing Agreement

GDPR-compliant data processing agreement for AppMarketScraper customers

Last updated: January 23, 2026

1. Introduction

This Data Processing Agreement ("DPA") is entered into between AppMarketScraper Team ("Data Processor") and the customer ("Data Controller"). This DPA addresses the requirements of the GDPR and applicable data protection laws.

2. Key Definitions

Personal Data
Information relating to an identified or identifiable natural person
Controller
Entity that determines purposes and means of processing
Processor
Entity that processes personal data on behalf of controller
Data Subject
Natural person to whom personal data relates

3. Processor Obligations

Processing Instructions

Process personal data only on documented Controller instructions, unless required by law.

Confidentiality

Ensure authorized personnel are committed to confidentiality.

Security Measures

  • TLS 1.3 encryption for data in transit
  • AES-256 encryption for data at rest
  • Role-based access with MFA
  • 24/7 intrusion detection
  • SOC 2 Type II & ISO 27001 certified

Sub-processors

Engaged sub-processors include:

  • Cloudflare (CDN & security)
  • Stripe (payment processing)
  • Vercel (application hosting)
  • Google Cloud / AWS (infrastructure)

4. Data Subject Rights

Processor shall assist Controller in fulfilling:

Access Requests

GDPR Article 15

Rectification

GDPR Article 16

Erasure

GDPR Article 17

Portability

GDPR Article 20

5. Data Breach Notification

Processor shall notify Controller without undue delay upon becoming aware of a breach, including:

  • Description of the breach
  • Categories and approximate number of data subjects concerned
  • Likely consequences of the breach
  • Measures taken or proposed to address the breach

6. International Data Transfers

Personal data may be transferred internationally. For EEA transfers without adequacy decisions, Processor relies on European Commission Standard Contractual Clauses (SCCs).

7. Audit Rights

Processor shall make available all information necessary to demonstrate compliance with this DPA. Controller may conduct audits or inspections with reasonable notice.

8. Acceptance

By accepting the Terms of Service or using the Services, the Controller agrees to this DPA. For enterprise customers requiring a separately signed DPA, contact support@appmarketscraper.com.

9. Contact Information

Data Protection Officer: AppMarketScraper Team

Email: support@appmarketscraper.com

Website: Contact Form