Data Processing Agreement

Version: 2026-07-01

This agreement governs how Field Ops ("the Operator") processes personal information on behalf of your business ("the Responsible Party") under the Protection of Personal Information Act (POPIA) and, where applicable, the General Data Protection Regulation (GDPR).

1. Scope

The Operator processes client, contact, and technician personal information solely to provide the field-service management functionality of the platform, and does not use it for any other purpose without further consent.

2. Security measures

The Operator maintains reasonable technical and organisational measures to protect personal information, including encryption in transit and at rest, access logging, and tenant-level data isolation.

3. Breach notification

The Operator will notify the Responsible Party of any personal information breach without undue delay, and in any event within 72 hours of becoming aware of it.

4. Data subject rights

The Operator provides tooling for the Responsible Party to export or erase personal information held about a data subject, subject to applicable legal-hold exceptions (e.g. financial records required under tax law).

5. Sub-processors

The Operator will not engage a new sub-processor that processes personal information without informing the Responsible Party.