1. Definitions
Terms such as 'Personal Data', 'Data Subject', 'Processing', and 'Processor' shall have the meanings given to them in the NDPR and GDPR, or other applicable Data Protection Laws.
2. Scope of Processing
Dugble shall process Personal Data only for the purposes of providing billing infrastructure services, including subscription management, usage metering, and payment orchestration via Kora.
3. Technical & Organizational Measures
Dugble implements industry-standard security measures, including encryption at rest (AES-256), TLS in transit, and edge-level threat protection via Arcjet to ensure the confidentiality of customer data.
4. Sub-processors
Customer provides a general authorization for Dugble to engage sub-processors (such as Kora for payment rails and Vercel/Docker for hosting). Dugble remains fully liable for the performance of its sub-processors.