Last updated: March 2026
Data Processing Agreement (DPA)
This Data Processing Agreement forms part of the agreement between:
Customer (Data Controller)
and
Mycomp IT-Services GmbH (“Processor”)
1. Subject Matter
Processing is performed to operate the easeout leave management platform.
2. Duration
Processing continues for the duration of the customer’s subscription.
3. Nature and Purpose of Processing
Processing includes:
- employee leave requests
- absence tracking
- approval workflows
- calendar synchronization
- reporting
4. Categories of Data
The processor may process:
- employee names
- email addresses
- employee identifiers
- leave requests
- absence records
- calendar entries
5. Categories of Data Subjects
Data subjects include employees and administrators of the customer organization.
6. Processor Obligations
The processor agrees to:
- process data only on documented instructions
- maintain confidentiality
- implement appropriate security measures
- assist the controller with data protection requests where applicable
7. Subprocessors
The processor may engage subprocessors including:
- infrastructure providers
- payment processors
- Microsoft services used for integration
All subprocessors must maintain appropriate data protection standards.
8. Security Measures
Security measures include:
- encrypted data transmission
- access control mechanisms
- secure cloud infrastructure
- monitoring and logging
9. Data Breach Notification
The processor will notify the customer without undue delay after becoming aware of a personal data breach.
10. Data Deletion
Upon termination of the service, personal data will be deleted within 30 days unless retention is required by law.
11. Governing Law
This agreement is governed by the laws of Switzerland.