Data Processing Addendum
This page gives customers a clear DPA-style summary for GDPR, privacy, and vendor review workflows. Customers who need a signed DPA can contact support.
Last updated: May 10, 2026
For personal data submitted to Accelerate by a customer or collected through a customer-configured widget, the customer is normally the controller or business and Accelerate is normally the processor or service provider. For account administration, billing, security, and product operations, Accelerate may act as an independent controller.
Accelerate processes customer personal data only to provide, secure, support, maintain, and improve the service; to comply with law; and as otherwise documented in the Terms, Privacy Policy, or a written customer instruction.
Processed data may include account data, workspace data, prompts, uploaded files, website-imported content, visitor chat transcripts, lead details, IP address, browser metadata, support messages, and billing identifiers.
Personnel with access to customer data must use it only for authorized operational purposes. Access should be limited based on need and protected through account controls, authentication, and internal procedures.
Accelerate uses technical and organizational measures designed to protect customer data, including encrypted transport, access controls, secure credential handling, operational logging, and incident response procedures.
Accelerate may use subprocessors within the categories listed on the Subprocessors page to provide infrastructure, AI processing, email, billing, analytics, and messaging functionality. A detailed vendor list is available to customers on request.
Customer data may be processed in jurisdictions where Accelerate and its subprocessors operate, including the United States and other countries. Where required, Accelerate relies on appropriate transfer safeguards such as standard contractual clauses or vendor transfer mechanisms.
Accelerate will provide reasonable assistance for data subject requests, security questions, and deletion/export requests where technically feasible and legally required. Data deletion remains subject to backup, billing, fraud-prevention, tax, and legal retention obligations.
Accelerate will notify affected customers without undue delay after confirming a personal data breach involving customer personal data, consistent with applicable law and the information reasonably available at the time.