Data processing agreement

This Data Processing Agreement ("DPA") is concluded pursuant to Article 28 of the General Data Protection Regulation (GDPR) between Kirca IT Services (Chamber of Commerce: 91781418, trading as Aqlemy, hereinafter "Processor") and the organization registered on the Platform (hereinafter "Controller"). This DPA applies to all situations in which the Processor processes personal data on behalf of the Controller. By registering on the Platform or using the services, you accept this DPA. This DPA should be read in conjunction with Aqlemy's Terms of Service and Privacy Policy.

**Personal Data:** Any information relating to an identified or identifiable natural person (GDPR Article 4(1)). **Processing:** Any operation performed on personal data, including collection, recording, organization, storage, adaptation, alteration, retrieval, consultation, use, disclosure, erasure or destruction (GDPR Article 4(2)). **Controller:** The organization using the Platform that determines the purposes and means of processing personal data of its members/students. **Processor:** Kirca IT Services (Aqlemy), the party processing personal data on behalf of the Controller. **Sub-processor:** A third party engaged by the Processor for the processing of personal data. **Data Breach:** The accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data. **Data Subject:** The natural person whose personal data is processed.