Last updated: May 2026

Data Processing Addendum

Our standard DPA governs the processing of personal data under GDPR Article 28 and is available to customers on every plan.

The DPA forms part of your agreement with LeakJar and covers roles (controller / processor), processing scope, security measures, sub-processing, international transfers (SCCs), and breach notification.

Download standard DPA Visit Trust Center

Sub-processors

Our current sub-processor list (Convex, Stripe, SendGrid, ClickHouse, Vercel, Cloudflare) is maintained in the Trust Center and updated with notice before any change.

Need a countersigned copy or custom terms?

Enterprise customers can request a countersigned DPA and negotiate an MSA. See our Security & Trust page or contact us.