1. Definitions
"Controller" means the customer organisation that determines the purposes and means of processing personal data.
"Processor" means DomainGuard, which processes personal data on behalf of the Controller.
"Personal Data" means any information relating to an identified or identifiable natural person processed under this agreement.
"Processing" has the meaning given in UK GDPR Article 4(2).
"UK GDPR" means the UK General Data Protection Regulation as retained in UK law.
2. Subject Matter and Duration
DomainGuard processes personal data on behalf of the Controller for the purpose of providing the DomainGuard browser extension and admin console service ("the Service"). Processing continues for the duration of the subscription and ceases upon termination.
3. Nature and Purpose of Processing
DomainGuard processes personal data solely to provide the Service, which includes:
- Enforcing corporate email domain policies on browser login pages
- Logging policy match events in the audit log
- Authenticating admin users to the management console
- Syncing domain policy rules to deployed browser extensions
4. Categories of Personal Data
| Category | Examples | Purpose |
|---|---|---|
| Admin identity | Email address, password hash | Console authentication |
| Audit events | Browser activity timestamps, matched policy rules | Compliance logging |
| Device identifiers | Machine ID generated by extension | Policy sync tracking |
| Authentication tokens | API tokens (hashed), JWT tokens | Service access control |
5. Data Subject Categories
- Employees of the Controller organisation whose browsers have the extension deployed
- Administrators who access the DomainGuard management console
6. Processor Obligations
DomainGuard shall:
- Process personal data only on documented instructions from the Controller
- Ensure persons authorised to process personal data are bound by confidentiality obligations
- Implement appropriate technical and organisational security measures (Article 32 UK GDPR)
- Not engage sub-processors without prior written consent from the Controller
- Assist the Controller in responding to data subject rights requests
- Delete or return all personal data upon termination of the Service
- Provide all information necessary to demonstrate compliance with this DPA
7. Sub-processors
DomainGuard currently uses the following sub-processors:
| Sub-processor | Purpose | Location |
|---|---|---|
| Railway (PaaS) | API and console hosting | United States |
| PostgreSQL via Railway | Database storage | United States |
| Resend | Transactional email delivery | United States |
| Stripe | Payment processing | United States |
| Cloudflare | DNS, CDN and DDoS protection | United States |
DomainGuard will notify the Controller of any intended changes to sub-processors with at least 14 days notice.
8. International Transfers
Where personal data is transferred outside the UK, DomainGuard ensures appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) or equivalent mechanisms as approved by the UK ICO.
9. Security Measures
DomainGuard implements the following technical and organisational measures:
- Encryption in transit (TLS 1.2+) for all data communications
- Passwords stored using bcrypt hashing (cost factor 12)
- API tokens stored as SHA-256 hashes — never in plaintext
- Mandatory two-factor authentication (TOTP) for all admin accounts
- Role-based access control with audit logging
- Regular dependency updates and security patching
10. Data Retention
- Audit logs: retained for the duration of the subscription plan (30, 90, or 365 days)
- Admin account data: deleted within 30 days of account termination
- Backup data: purged within 90 days of deletion
11. Data Subject Rights
DomainGuard will assist the Controller in fulfilling data subject rights requests (access, rectification, erasure, portability) within the timescales required by UK GDPR. Requests should be directed to privacy@domainguard.co.
12. Data Breach Notification
DomainGuard will notify the Controller without undue delay and within 72 hours of becoming aware of a personal data breach that is likely to result in a risk to the rights and freedoms of natural persons.
13. Termination
Upon termination of the Service, DomainGuard will, at the Controller's choice, delete or return all personal data and delete existing copies unless storage is required by applicable law.
14. Contact
For data protection enquiries, contact: privacy@domainguard.co
For security concerns: security@domainguard.co