Compliance posture by region.
We work with clients across 40+ countries and across regulated industries (healthcare, finance, legal). Below is exactly where we stand against each major regulatory framework. If your procurement team needs more detail or a specific document, request it and we will respond within 1 business day.
Where we operate.
European Union
GDPR
Compliant
Article 28 DPA available. EU data residency on request via AWS eu-west-1 or Azure West Europe.
United Kingdom
UK GDPR · ICO
Compliant
UK GDPR-aligned DPA available. UK data residency on AWS eu-west-2.
United States
CCPA · CPRA · HIPAA
Compliant (CCPA/CPRA) · BAA available (HIPAA)
Subject rights honoured within 30 days. HIPAA BAA available for healthcare clients.
Canada
PIPEDA
Aligned
PIPEDA principles followed. Canadian data residency available via AWS ca-central-1.
India
DPDP Act 2023
Aware · Implementing
Implementing Data Protection officer designation and consent management. Full compliance Q3 2026.
Australia · NZ · Singapore
Privacy Act · NZPA · PDPA
Aligned
Privacy principles followed. APAC data residency via AWS ap-southeast region on request.
Documents ready for your procurement team.
Data Processing Agreement (DPA)
Article 28 compliant DPA covering all paid engagements. Includes subprocessor list and security controls.
Download DPA template →Master Services Agreement (MSA)
Standard master services agreement for ongoing retainers and multi-project engagements.
Request MSA template →HIPAA Business Associate Agreement (BAA)
For healthcare clients we sign a BAA before any client data flows. Mutually-executed.
Request BAA →Subprocessor List
Current list of all subprocessors and the data categories they may access. Updated quarterly.
Request subprocessor list →Security Questionnaire Response
Pre-filled response to common procurement security questionnaires (CAIQ, SIG Lite, custom).
Request security packet →Insurance Certificates
Professional liability ($1M), general liability ($2M), cyber liability ($1M). Certificate of insurance on request.
Request COI →Need something specific for your procurement?
Send us your questionnaire, custom DPA, or vendor onboarding form. Most responses go back in 1 business day. We have done hundreds of these.