1. Purpose

Defines data handling responsibilities between Hiyara (Processor) and customer (Controller).

2. Processor Obligations

• Process data only under documented instructions

• Keep data confidential

• Maintain security standards

• Assist with compliance audits

• Support data subject rights

• Use approved subprocessors only

3. Subprocessors

List available on request.

4. International Transfers

Use SCCs (Standard Contractual Clauses) where required.

5. Security Measures

• Encryption

• Access control

• Incident response procedures

6. Breach Notification

Notify customer without undue delay (usually within 72 hours).

6. ACCESSIBILITY STATEMENT

Hiyara is committed to making our website and SaaS platforms accessible to all individuals, including persons with disabilities.

We follow:

• WCAG 2.1 AA standards

• Keyboard navigation support

• High contrast mode

• Screen reader compatibility

For accessibility assistance:
Email: accessibility@hiyara.tech

DATA PROCESSING ADDENDUM (DPA)

For Enterprise customers & GDPR Compliance