Data Processing Addendum

Last updated 25 June 2026

This Data Processing Addendum forms part of the Terms of Service between you (the "Business") and Magnifecent Dragon LTD and applies whenever we process personal data on your behalf relating to your customers.

1. Roles of the parties

This Addendum applies where we process personal data on your behalf relating to your customers. For that data, you (the Business) are the controller and Magnifecent Dragon LTD is the processor. Each party will comply with the data-protection laws that apply to it.

2. Scope and purpose of processing

We process your customers' personal data only to provide the Service and in line with your documented instructions, including the configuration choices you make in the product. We will not use that data for our own purposes.

3. Duration

We process the data for as long as your account is active, and then for the limited period needed to delete or return it as described below.

4. Types of data and data subjects

The personal data typically includes your customers' names, contact details (email and, optionally, phone), time zone, booking and attendance details, and any messages or intake answers they provide. The data subjects are your customers and prospective customers.

5. Our obligations

  • Process personal data only on your documented instructions, unless required by law.
  • Ensure that people authorized to process the data are bound by confidentiality.
  • Apply appropriate technical and organizational security measures.
  • Assist you, where reasonable, in responding to data-subject requests.
  • Assist you with security, breach-notification, and impact-assessment obligations.
  • Notify you without undue delay after becoming aware of a personal-data breach.

6. Sub-processors

You authorize us to use the sub-processors listed at /subprocessors to help provide the Service. We remain responsible for their performance, and we will give notice of changes so you have the opportunity to object on reasonable data-protection grounds.

7. International transfers

Personal data may be processed in the United States and other countries where we or our sub-processors operate. Where required, we rely on appropriate transfer safeguards, such as standard contractual clauses.

8. Data-subject requests

If we receive a request from one of your customers, we will, where permitted, refer them to you and assist you in responding within the time limits the law requires.

9. Deletion and return

On termination of your account, and at your choice, we will delete or make available for export the personal data we process on your behalf, except where we must retain it to comply with the law.

10. Audit and assistance

On reasonable request, we will provide information necessary to demonstrate our compliance with this Addendum.

11. Liability and contact

This Addendum forms part of, and is subject to, the Terms of Service, including their limitations of liability. Questions? Email support@viktorzaharov.com.