Data Processing Agreement (DPA)

Effective date: 14th of November, 2025

This Data Processing Agreement (“DPA”) describes at a high level how AOA Element P.S.A. (“AOA Element”) will process personal data on behalf of customers when they use the NAOA services. The text on this page is a temporary draft for design and structure testing only and does not constitute a final, legally binding agreement.

A full DPA will be provided before the commercial launch of the product. It will explain in detail the roles and responsibilities of AOA Element (as processor) and the customer (as controller), the scope and subject matter of processing, the categories of data and data subjects, as well as applicable security, subprocessor and international transfer terms.

1. Subject matter and duration

1.1. Subject matter. In the final version of the DPA, this section will define which parts of the NAOA services involve personal data processing, for what business purposes and on what legal basis under applicable data protection law (for example GDPR).

1.2. Duration. The production DPA will describe for how long data is processed and retained in relation to the main subscription agreement, including high level rules for data deletion and export after the end of the service.

This page is a non-final placeholder for layout and copy exploration. The definitive DPA will be shared and agreed with customers before production use of NAOA.