This addendum sets out data processing terms for customer business data handled by SikaBooks.
Last Updated: February 27, 2026
This DPA applies when a customer uses SikaBooks to process personal data in connection with business operations.
Processing is limited to providing the subscribed SaaS services, support, security operations, and legally required obligations for the duration of the service relationship.
SikaBooks applies technical and organizational safeguards appropriate to the risk, including access controls, encryption in transit where supported, audit logging, and operational monitoring.
SikaBooks may engage trusted subprocessors (for hosting, email, payment, and infrastructure) only as needed to deliver the service. SikaBooks remains responsible for subprocessor obligations under this DPA.
Where legally required, SikaBooks will provide reasonable assistance so customers can respond to access, correction, deletion, or objection requests related to personal data they control.
If data transfer across borders is required to provide the service, SikaBooks will apply appropriate contractual and technical safeguards consistent with applicable law.
SikaBooks will notify affected customers without undue delay after confirming a personal data incident with material impact.
Upon contract end and subject to legal retention requirements, customer data is deleted or returned according to product retention/deletion processes and customer request.