EYELEVEN
Legal Center
Data Processing Addendum

Data processing terms for customer data

This DPA describes how Eyeleven processes customer personal data as a processor for organizations using AI employees, workflows, communication channels, and Voice Center.

Last updated
May 4, 2026

For legal, privacy, or compliance questions, contact privacy@eyeleven.com.

This DPA is a professional product draft. Final data processing terms should be reviewed and approved by qualified counsel before contractual use.
01

Scope

This Data Processing Addendum applies where Eyeleven processes personal data on behalf of a customer through the Eyeleven AI Workforce OS, connected communication channels, integrations, Voice Center, workflows, memory, and analytics.

02

Controller and Processor Roles

The customer acts as controller for customer personal data processed through the platform. P9 AA, operating Eyeleven, acts as processor for customer data handled according to customer configuration and documented instructions.

03

Processing Instructions

Eyeleven processes customer data to provide, maintain, secure, support, and improve the services according to customer instructions, platform configuration, applicable agreements, and applicable law.

04

Nature of Processing

  • Receiving, storing, routing, analyzing, and summarizing business communications.
  • Executing configured workflows, follow-ups, bookings, reminders, escalations, and reports.
  • Processing documents, business memory, prompts, responses, call metadata, transcripts, and analytics.
  • Connecting customer-approved third-party services such as messaging, voice, CRM, calendar, and payment systems.
05

Subprocessors

Eyeleven may use subprocessors for cloud infrastructure, databases, security, messaging, voice transport, AI inference, payments, analytics, and support operations.

Subprocessors are expected to be subject to contractual safeguards appropriate to the processing they perform.

06

Security Measures

  • Access controls and role-based permissions.
  • Operational monitoring and logging.
  • Encryption and secure transmission where appropriate.
  • Tenant separation and administrative controls.
  • Incident review and escalation procedures.
07

Breach Notification

Upon confirmation of a personal data breach affecting customer data, Eyeleven will notify affected customers without undue delay and provide information reasonably available to support customer obligations.

08

Customer Assistance

Eyeleven will provide reasonable assistance for data subject requests, deletion, access, security inquiries, and compliance support to the extent applicable to the services and customer configuration.

09

Return or Deletion

Upon termination or verified request, Eyeleven will support return or deletion of customer data in accordance with contractual commitments, technical feasibility, and legal retention obligations.