priowise

Data Processing Addendum

Last Updated: January 15, 2026

This Data Processing Addendum ("Addendum") forms part of the Terms of Service ("Agreement") between you ("Customer") and Priowise ("Processor"). The purpose of this Addendum is to ensure that the processing of personal data by Priowise, on behalf of the Customer, complies with applicable data protection laws, including the General Data Protection Regulation ("GDPR").

1. Scope and Roles

This Addendum applies when Priowise processes personal data on behalf of the Customer in the course of providing services under the Agreement. In this context, the Customer is the Data Controller and Priowise is the Data Processor.

2. Nature and Purpose of Processing

Priowise processes Customer Data solely for the purpose of providing the strategy execution and prioritization services defined in the Agreement. This may include storing, retrieving, analyzing, and transmitting data as required for platform functionality.

3. Data Categories and Subjects

The personal data processed includes names, email addresses, and business data provided by the Customer. The data subjects may include employees, contractors, and users authorized by the Customer.

4. Subprocessors

Priowise uses trusted third-party subprocessors to support the delivery of services. These include infrastructure, hosting, and AI services providers such as:

  • OpenAI – for AI model execution (to generate responses and insights)
  • Google Gemini – for AI model execution.
  • Airtable – for structured data storage and organization.
  • Supabase – as our database provider for storing application data.
  • Make.com – for automated workflows and integration services.
  • Vercel – for hosting, content delivery, and static asset management.
  • Clerk – for user authentication, identity management, and subscription services.
  • Perplexity AI – for research summarization and competitive intelligence insights.

GenAI tools are used solely for generating generalized market and competitor research summaries that support AI-assisted strategy suggestions. It does not receive or process Customer Data submitted through the Priowise platform.

All subprocessors are bound by obligations of data protection, confidentiality, and compliance.

5. Data Transfers

Where personal data is transferred outside the European Economic Area (EEA), Priowise ensures that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs).

6. Security Measures

Priowise implements technical and organizational measures to ensure a level of security appropriate to the risk, including encryption in transit, access control, and activity logging.

7. Rights of Data Subjects

Priowise shall assist the Customer in fulfilling its obligations to respond to requests from data subjects exercising their rights under applicable laws, including access, correction, and deletion.

8. Data Breach Notification

In the event of a data breach affecting Customer Data, Priowise will promptly notify the Customer and provide relevant details to support compliance with legal obligations.

9. Termination and Deletion

Upon termination of the Agreement, Priowise will, at the Customer’s choice, return or delete all personal data processed on behalf of the Customer, unless retention is required by law.

10. Audit Rights

The Customer has the right to request information or an audit to verify Priowise’s compliance with this Addendum. Audits may be conducted once annually with reasonable notice.

11. Miscellaneous

This Addendum shall remain in effect for the duration of the Agreement and shall prevail in the event of any conflict with the Terms of Service relating to data processing.