Legal
Data processing addendum (DPA)
This document is in preparation with US telecom counsel ahead of public launch. The summary below describes what the final document will cover. For the current draft or to discuss specifics ahead of launch, email legal@kelir.io.
Kelir's Data Processing Addendum (DPA) is for customers — typically Team Pro — whose use of the service requires a written processor agreement. The DPA covers what data is processed on the customer's behalf, the security controls in place, breach notification timelines, and sub-processor disclosures.
What it will cover
- Processing scope: voice metadata, SMS content, voicemail, recordings (when enabled).
- Sub-processors: AWS, Telnyx, Adyen, FCM (full list in the DPA).
- Security controls aligned with SOC 2 trust principles (see /security).
- Breach notification: 24-hour SLA for confirmed incidents affecting customer data.
- Customer audit rights and data portability.
- Termination and data return / deletion procedures.
Questions on this document
Email legal@kelir.io for the current draft, regulatory questions, or pre-launch agreements. For privacy- or data-subject-specific requests, use privacy@kelir.io.
See also: Terms of service · Privacy policy · Cookies policy · Acceptable use policy · Consumer disclosures