Data Processing Addendum
Last updated: 2026-04-30
This Data Processing Addendum ("DPA") forms part of the agreement between Martin Regec ("Processor") and the customer ("Controller") whenever VoxelRun processes personal data on behalf of the Controller in connection with the Service.
1. Scope
Subject matter: processing necessary to provide the Service. Duration: as long as the customer's account exists. Nature and purpose: hosting Minecraft servers and related services. Data subjects: end users of the customer's Minecraft servers. Data: gameplay data the customer chooses to store on the Service.
2. Processor obligations
We process personal data only on documented instructions from the Controller; ensure persons authorised to process are bound by confidentiality; implement appropriate technical and organisational measures (encryption in transit, access controls, audit logging); assist the Controller with data-subject requests, security incidents, DPIAs and prior consultations; delete or return personal data on termination, except where retention is required by law.
3. Sub-processors
Authorised sub-processors are listed in the Privacy Policy. We will give prior notice of changes; the Controller may object on reasonable data-protection grounds.
4. International transfers
Any transfer of personal data outside the EU/EEA is covered by Standard Contractual Clauses (Module 3 - processor to processor) or another lawful transfer mechanism.
5. Audits
We will make information available to demonstrate compliance and allow audits, including inspections, by the Controller or another auditor mandated by it, on reasonable notice and at the Controller's expense.