Customers
In our role as an agency, Zooma often processes personal data on behalf of our clients. In such cases, we act as a data processor, while our clients act as data controllers. A Data Processing Agreement (DPA) is always put in place to clearly define the scope, purpose, and safeguards related to the processing of personal data.
We are committed to
Processing personal data only in accordance with documented instructions from our clients
Implementing appropriate technical and organisational measures to protect data
Ensuring confidentiality and integrity across all systems and workflows
Suppliers
When Zooma engages third-party suppliers or tools as part of our service delivery, they act as sub-processors under contractual agreements. Data Processing Agreements are established with all relevant vendors to ensure appropriate safeguards for personal data.
Our processes and partnerships are reviewed on a regular basis to maintain compliance with applicable data protection regulations, including GDPR.
