Fieldd's Data Processing Agreement

This Data Processing Agreement ("DPA") forms part of the Terms and Conditions ("Agreement") between Fieldd Inc. ("Processor") and the customer entity that has agreed to those terms ("Controller").

Fieldd's Data Processing Agreement

This Data Processing Agreement ("DPA") forms part of the Terms and Conditions ("Agreement") between Fieldd Inc. ("Processor") and the customer entity that has agreed to those terms ("Controller").

Fieldd's Data Processing Agreement

This Data Processing Agreement ("DPA") forms part of the Terms and Conditions ("Agreement") between Fieldd Inc. ("Processor") and the customer entity that has agreed to those terms ("Controller").

1. Definitions

"Personal Data" means any information relating to an identified or identifiable natural person processed by Fieldd on behalf of the Controller.

  • "Processing" has the meaning given under applicable Data Protection Law.

  • "Data Protection Law" means the EU GDPR (Regulation 2016/679), UK GDPR, and any other applicable data protection legislation.

  • "Sub-processor" means any third party engaged by Fieldd to process Personal Data.

2. Scope and Roles

2.1 The Controller appoints Fieldd as Processor to process Personal Data for the purpose of providing the Fieldd platform and associated services.

2.2 Fieldd shall process Personal Data only on documented instructions from the Controller, unless required to do so by applicable law.

3. Nature and Purpose of Processing

Element

Duration

Nature

Purpose

Data types

Data subjects

Element

For the term of the Agreement plus any legally required retention period

Storage, retrieval, display, and transmission of data via the platform

Enabling customer bookings, scheduling, staff management, and communications

Names, contact details, booking history, location data, payment references

Controller's customers, staff, and contractors

4. Obligations of Fieldd (Processor)

Fieldd shall:

4.1 Process Personal Data only on the Controller's documented instructions.

4.2 Ensure that all personnel authorised to process Personal Data are bound by appropriate confidentiality obligations.

4.3 Implement appropriate technical and organisational security measures in accordance with Article 32 GDPR, including encryption at rest and in transit, access controls, and regular security reviews.

4.4 Not engage a new Sub-processor without prior written notice to the Controller, providing at least 14 days for the Controller to object.

4.5 Assist the Controller in fulfilling its obligations to respond to data subject requests (access, erasure, portability, etc.) within a reasonable timeframe.

4.6 Notify the Controller without undue delay (and within 72 hours where feasible) upon becoming aware of a Personal Data breach.

4.7 At the Controller's election, delete or return all Personal Data upon termination of the Agreement, except where retention is required by law.

4.8 Make available all information necessary to demonstrate compliance with this DPA and permit audits upon reasonable written notice.

5. Sub-processors

5.1 The Controller provides general authorisation for Fieldd to engage the following Sub-processors:

Sub-processor

Twilio Inc.

Twilio SendGrid

Google Maps Platform

Amazon Web Services

Stripe Inc.

Square Inc.

Purpose

SMS & voice communication

Email delivery

Mapping & loc. services

Cloud infra & data storage

Payment processing

Payment processing

Location

USA

USA

USA / Global

USA / Global

USA

USA

5.2 Fieldd shall notify the Controller of any intended changes to the above list at least 14 days in advance, providing the Controller the opportunity to object.

5.3 Fieldd shall ensure all Sub-processors are bound by data protection obligations no less protective than this DPA.

6. International Transfers

6.1 Where Personal Data is transferred outside the EEA or UK, Fieldd shall ensure such transfers are subject to appropriate safeguards (e.g. Standard Contractual Clauses, adequacy decisions) in accordance with applicable Data Protection Law.

7. Controller Obligations

The Controller warrants that it has a lawful basis for processing Personal Data and for instructing Fieldd to process it on its behalf.

8. Liability

Each party's liability under this DPA is subject to the limitations set out in the main Agreement.

9. Governing Law

This DPA is governed by the laws of the State of Delaware, USA, without prejudice to the data subject's rights under applicable EU/UK law.

10. Acceptance

By creating a Fieldd account and agreeing to the Terms and Conditions, the Controller confirms acceptance of this DPA. A copy of this DPA is available for download at https://fieldd.co/dpa.

This policy is effective as of Dec 4th 2025.
View our Terms.
View our Privacy Policy.

View our GDPR

PRODUCT

CRM

Customer Hub

Team App

Pricing

SOLUTIONS

Sales

Marketing

Payments

Scheduling

Automation

Communication

Sales

Organization

TEAM SIZE

Starting Up

Gaining Momentum

Running at Scale

COMPANY

About Us

Help Center

Media Center

Compare fieldd

Industries

Blog

© 2026 Fieldd Inc. Built on Clulo.

© 2026 Fieldd Inc - Built on clulo.

Live Status

Privacy

Terms