Top Background
Top Background
Top Background
Heading Background
Heading Background
Heading Background

BlueQuincy Data Processing Agreement (DPA)

DATA PROCESSING AGREEMENT


Welcome to BlueQuincy!

This Data Processing Agreement ("DPA") is entered into between BlueQuincy ("we," "our," "us") and any client ("Client," "you") utilizing our automation and AI services. This DPA outlines the roles and responsibilities regarding data protection, processing, and security when using third-party automation and AI tools within our service framework.

This DPA ensures compliance with relevant data protection laws, including but not limited to the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable regulations.

Icon

Last Updated on February 9, 2024

Introduction

This Data Processing Agreement ("DPA") is entered into between BlueQuincy ("we," "our," "us") and any client ("Client," "you") utilizing our automation and AI services. This DPA outlines the roles and responsibilities regarding data protection, processing, and security when using third-party automation and AI tools within our service framework.

This DPA ensures compliance with relevant data protection laws, including but not limited to the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable regulations.

  1. Scope & Applicability Use of Our Service

This DPA applies when BlueQuincy processes personal data on behalf of its Clients while utilizing automation and AI tools for business operations.

This agreement supplements our Privacy Policy and is distinct from it, focusing specifically on data processing activities.

  1. Data Processing Details

2.1 Categories of Data Processed

If you require a Data Processing Agreement (DPA), you can access it here. BlueQuincy may process the following data categories:

  • Personally Identifiable Information (PII): Names, emails, phone numbers, business information

  • Behavioral Data: User interactions, timestamps, automation logs

  • Third-Party Data: Any client-owned proprietary or sensitive data used for automations

2.1 Purpose of Processing

  • Provide automation and AI-driven services to Clients

  • Optimize business processes using third-party integrations

  • Improve service performance and analytics

2.3 Duration of Processing

Data will be processed for the duration necessary to fulfill the Client's automation requirements and retained according to applicable legal and regulatory obligations.

  1. Third-Party Subprocessors

BlueQuincy leverages various third-party automation and AI tools to deliver its services. Below is a non-exhaustive list of subprocessors we may engage:

3.1 Automation Platforms

  • Zapier (Workflow automation)

  • Make (Integromat) (Workflow automation)

  • n8n (Self-hosted workflow automation)

  • Tray.io (Enterprise-grade automation)

3.2 AI & Machine Learning Tools

  • OpenAI (ChatGPT API) (AI-generated insights and chatbot automation; does not store data processed via API)

  • Anthropic (Claude API) (AI-powered business solutions)

  • Google Vertex AI (ML model training & inference)

3.3 Cloud Hosting & Storag

  • Amazon Web Services (AWS) (Cloud infrastructure & data storage)

  • Google Cloud Platform (GCP) (Cloud computing)

  • Microsoft Azure (AI services & hosting)

  • Supabase (PostgreSQL database and authentication services)

3.4 Cloud Hosting & Storag

  • Google Analytics (Web activity tracking)

  • HubSpot CRM (Customer data & automation)

  • Salesforce (Customer data management)

  • Notion (Database and workflow management)

  • Google (Sheets, Docs, Forms) (Data storage, processing, and collaboration)

If additional subprocessors are engaged, we will update this agreement accordingly.

  1. Data Security & Privacy Measures

BlueQuincy employs industry-standard measures to protect personal data, including:

  • Encryption: Data encryption at rest and in transit

  • Access Controls: Role-based access restrictions

  • Data Minimization: Redacting private information where feasible

  • Logging & Audits: Regular security audits of third-party tools

Clients are responsible for ensuring they comply with their own privacy policies and regulatory obligations when integrating our services.

  1. Data Subject Rights

Clients and their end-users have the right to:

  • Access the data we process

  • Request corrections to inaccurate data

  • Request deletion of personal data

  • Restrict processing where applicable

  • Receive data portability upon request

Requests can be submitted to Support@BlueQuincy.ai.

  1. Client Responsibilities

Clients must ensure:

  • They inform users about third-party data processing.

  • They obtain necessary consents where required.

  • They comply with applicable data protection laws.

Requests can be submitted to Support@BlueQuincy.ai.

  1. Liability & Indemnification

BlueQuincy is not liable for:

  • Client misconfigurations leading to unauthorized data access.

  • Client use of third-party tools beyond our recommended security practices.

  • Unauthorized access due to weak Client security measures.

Clients agree to indemnify BlueQuincy against claims arising from misuse of data processed through our services.

  1. Updates to This DPA

We may update this DPA periodically. Clients will be notified of significant changes and are responsible for reviewing updates.

  1. Contact Information

For any data privacy concerns or requests related to this DPA, contact us at:

📧 Support@BlueQuincy.ai 📍212 East 22nd Street Cheyenne, WY 82001

@2025, BlueQuincy All Rights Reserved.