👉 Join our next live webinar
See how HeySummit works, get your questions answered, and walk away ready to launch your first event.
Download our Data Processing Agreement (DPA) template or request a signed version to ensure compliance with UK GDPR, EU GDPR, and the Data Protection Act 2018.
A Data Processing Agreement (DPA) is a legal contract between HeySummit (as Data Processor) and our customers (as Data Controller) that outlines how personal data is processed, stored, and protected when using our services. This agreement is essential for UK GDPR, EU GDPR, and Data Protection Act 2018 compliance and ensures that both parties understand their responsibilities regarding data protection.
A DPA is a legally binding document that defines:
If you are using HeySummit to process personal data of UK or EU residents, or if your organization is subject to GDPR or similar data protection regulations, you will need a DPA in place. This includes:
Our DPA covers the processing of personal data including names, email addresses, IP addresses, event registration data, usage data, and support queries for data subjects such as event attendees, speakers, organisers, and team members.
The agreement also includes transparency about our trusted subprocessors:
The list of subprocessors may be updated from time to time. Customers will be notified where legally required.
We provide a comprehensive DPA template that covers all essential aspects of data processing when using HeySummit services, including virtual events, attendee registration, ticketing, content delivery, support, and analytics. This template has been designed to meet UK GDPR, EU GDPR, and international data protection standards, and includes provisions for international data transfers under Standard Contractual Clauses (SCCs) and the EU-US Data Privacy Framework (DPF).
Download our standard Data Processing Agreement template that you can customize for your organization's specific needs.
Download DPA Template (PDF)If you require a fully executed DPA signed by HeySummit, we can provide this service. A signed DPA provides additional legal certainty and may be required by your organization's compliance policies or legal requirements.
To request a signed Data Processing Agreement, please contact our legal team with the following information:
Our DPA is governed by the laws of England and Wales. The agreement becomes effective upon acceptance of our Terms and Conditions, providing immediate legal protection for your data processing activities.
We aim to process all DPA requests within 5-7 business days. Our legal team will typically contact you within 1 business day to confirm receipt of your request and provide an estimated timeline.
If you have any questions about our Data Processing Agreement, data protection practices, or need assistance with GDPR compliance, please don't hesitate to contact us:
For general support questions, please contact our support team.
Important: This page provides general information about Data Processing Agreements. For specific legal advice regarding your organization's data protection obligations, please consult with your legal counsel or a qualified data protection professional.
Start Building Your Thriving Community
Join thousands of creators and educators using HeySummit to host impactful events and grow their audience. Start your free trial today, no credit card required.