This Data Processing Agreement (DPA) governs the processing of personal data on behalf according to Art. 28 GDPR.
The subject of this DPA is the processing of personal data by DoctoPoint on behalf of the customer as part of using the software.
DoctoPoint processes personal data exclusively within the scope of contractually agreed services for practice management.
DoctoPoint has implemented extensive technical and organizational measures to protect data, including encryption and access control.
DoctoPoint may only engage subprocessors with prior written consent of the customer. A list of all subprocessors is provided.
The customer remains the controller within the meaning of the GDPR and bears responsibility for the legality of data processing.
DoctoPoint supports the customer in fulfilling their obligations under the GDPR, especially regarding data subject rights.
Do you have questions about data processing? Contact Us