This Data Processing Agreement (“DPA”) forms part of the Terms of Service between Wise Solutions LG Ltd. (“Processor”, “we”) and the customer (“Controller”, “you”) and governs the processing of personal data contained in Customer Content. It reflects the requirements of Israel’s Protection of Privacy Law and, where applicable, Article 28 of the EU/UK GDPR. If there is a conflict on data-protection matters, this DPA prevails.
You are the Controller and we are the Processor of personal data you submit for processing. We process such data only to provide the Service and on your documented instructions (including via configuration and the Terms), unless required by law.
You authorize us to engage the sub-processors listed in Annex III and to add or replace sub-processors, provided we impose data-protection obligations no less protective than this DPA and give you reasonable notice of changes so you may object on legitimate data-protection grounds.
Where processing involves transfer of personal data across borders, we rely on lawful transfer mechanisms, including the EU Standard Contractual Clauses, which are incorporated by reference where required.
We will make available compliance information and, on reasonable prior notice and subject to confidentiality, allow the Controller (or an independent auditor) to verify compliance, no more than once per year unless required by a supervisory authority or following a breach.
Each party’s liability under this DPA is subject to the limitations of liability in the Terms of Service.
| Subject matter | CDR sanitization and managed file transfer of Customer Content |
|---|---|
| Duration | For the term of the Service plus any retention/grace period |
| Nature & purpose | Receiving, scanning, reconstructing, transferring, and returning files; caching verdicts |
| Categories of data subjects | Determined by the Controller (e.g. Controller’s employees, customers, partners whose data appears in files) |
| Types of personal data | Any personal data contained within the files the Controller submits; account contact data |
| Special categories | Only if the Controller chooses to submit such data; the Controller is responsible for its lawfulness |
| Sub-processor | Purpose | Location |
|---|---|---|
| Microsoft Azure | Cloud hosting, storage, compute | EU (North Europe) / as configured |
| Resec | CDR sanitization engine | As deployed |
| Clerk | Authentication / identity (where enabled) | US/EU |
| Microsoft Entra | Enterprise SSO (where enabled) | EU / as configured |
Contact: privacy@wise.co.il · Wise Solutions LG Ltd., 21 Hamelachot Boulevard, Modi'in, Israel.