Data Processing Agreement

This Data Processing Agreement ("DPA") forms part of the GlobiGuard Terms of Service between Globi Explore, Inc. ("GlobiGuard," "Processor") and the Customer ("Controller"). It governs the processing of Personal Data by GlobiGuard on behalf of the Customer.

Customers who require a countersigned DPA for regulatory purposes should contact [email protected].

1. Definitions

• Personal Data: Any information relating to an identified or identifiable natural person under applicable data-protection law.
• Controller: The Customer, who determines the purposes and means of processing Personal Data in their AI workflows.
• Processor: GlobiGuard, processing Personal Data on behalf of the Controller.
• Sub-processor: Any third party engaged by GlobiGuard to process Personal Data.
• Enforcement Event: A GlobiGuard decision to block, modify, queue, or allow a data field or action.

2. Nature and Purpose of Processing

GlobiGuard processes Personal Data solely to provide the services: inspecting data flowing through Customer AI workflows, applying Customer-configured enforcement policies, generating audit records, and routing decisions to human reviewers.

GlobiGuard does not process Personal Data for its own commercial purposes, sell or share it with third parties, use it to train its own AI models, or retain raw Personal Data beyond what is necessary to provide the contracted service, configured review workflow, or audit record.

3. How GlobiGuard Processes Personal Data

GlobiGuard's sidecar intercepts data payloads before they reach AI models. When a payload contains fields classified as Personal Data:

• BLOCKED fields are removed before reaching the AI model. The raw value is never transmitted externally.
• MODIFIED fields are tokenised — replaced with a reversible token (e.g., [GG-7f3a]) before the payload proceeds.
• QUEUED fields are held for human review. The raw value is retained temporarily until the reviewer acts.
• ALLOWED fields pass through without modification and are not retained.

Raw values of BLOCKED fields are never persistently stored. Tokens for MODIFIED fields are retained only until detokenisation is complete, then purged per the Customer's configured retention policy.

4. Audit Logs

Audit records contain: timestamp, workflow ID, field type, enforcement decision, policy applied, and confidence score. They do not contain raw values of BLOCKED or MODIFIED fields. Retention period: 12 months by default, with longer retention windows available where specified in the applicable order form, enterprise agreement, or customer-configured retention settings.

5. Security Measures

EU AI Act Data Processing

Where Customer Data is processed in connection with AI systems subject to the EU AI Act, GlobiGuard's processing activities are designed to support the data governance and record-keeping requirements of that regulation. Customers deploying high-risk AI systems remain responsible for ensuring that all data processing — including processing performed by GlobiGuard on their behalf — meets the requirements of Article 10 (data and data governance) and Article 12 (record-keeping) of the EU AI Act.

6. Sub-processors

Named sub-processors are available on request at [email protected]. We provide 30 days' notice before adding a new sub-processor that processes Personal Data. If you object and we cannot resolve it, you may terminate the affected services.

7. Data Subject Rights

The Customer is the primary party responsible for responding to Data Subject requests. GlobiGuard will provide reasonable assistance, including export of audit logs, confirmation of enforcement decisions, and deletion of audit records on Customer instruction (subject to legal retention obligations).

8. Breach Notification

GlobiGuard will notify the Customer of any Personal Data breach involving Customer Data in accordance with applicable law and the governing contract or DPA, including the nature of the breach, categories and approximate number of records affected, likely consequences, and measures taken or proposed.

9. International Transfers

Transfers from the EEA or UK to third countries are conducted under Standard Contractual Clauses (SCCs) or equivalent lawful mechanisms. By accepting the Terms of Service, Customer authorises GlobiGuard to execute SCCs with sub-processors located outside the EEA on its behalf where applicable.

10. Return and Deletion of Data

On termination, GlobiGuard will provide return, export, deletion, or handoff assistance for Customer Data according to the governing order form, deployment model, and any applicable legal retention obligations. If no specific timeline is stated in the governing agreement, GlobiGuard will use commercially reasonable efforts to complete the applicable return or deletion process promptly after verified Customer instruction. Anonymised aggregate statistics that do not relate to identifiable individuals may be retained.

11. Audits

With 30 days' advance notice, Customers may audit GlobiGuard's processing activities to verify DPA compliance, once per calendar year (more frequently if a breach has occurred). GlobiGuard may satisfy an audit request by providing a recent independent security or compliance report, supporting controls documentation, or another evidence package where available, in lieu of direct inspection.

12. Contact

[email protected]
GlobiGuard — Globi Explore, Inc. · Georgia, United States