Legal
Data Processing Addendum
Cited can provide a Data Processing Addendum (“DPA”) for eligible customers upon request. This page explains how to request one. It is not an automatically accepted signed DPA, not a clickwrap agreement, and does not claim formal compliance certifications.
1. How to request a DPA
Email hello@cited.cc with the subject line “DPA request” and include:
- Workspace name
- Company legal name
- Billing email
- Primary contact name and title
- Any required vendor security questionnaire deadline
- Whether you require specific transfer clauses or governing-law preferences
2. Eligibility and process
Cited reviews DPA requests in light of plan, use case, and processing volume. Submission of a request does not create an obligation to execute a DPA on any particular form or timeline.
Cited may propose its standard DPA or negotiate in good faith where commercially reasonable. Cited is not obligated to accept customer paper that conflicts with Cited’s security model or product architecture.
3. Current processing practices
Until a DPA is issued and executed for your account, the Privacy Policy and Subprocessors page describe current processing practices.
Cited processes Customer Content to provide monitoring, Evidence storage, alerts, billing, and support as described in those pages.
Subprocessors may change. Material subprocessor changes are reflected on /subprocessors.
4. What this page is not
This page is not a signed contract, not a self-serve clickwrap DPA, and not a claim of SOC 2, ISO, HIPAA, or similar certification.
Nothing on this page modifies the Terms of Service unless and until a DPA is fully executed by authorized representatives of both parties.